Top of my free OSINT tools in 2023


In this article, we will look at the tools that are used every day in my work related to the investigation of crimes. Last year was tough but interesting. Some developments stopped working in Russia. Many, on the contrary, were created in our country. Including with my participation. So let’s go!

Datashare and Pinpoint


Datashare


Pinpoint

Datashare and Pinpoint are for eDiscovery… The term is unfamiliar for Russia, so I’ll explain it. eDiscovery is the process of identifying, collecting, validating, and analyzing digital evidence. If it is quite simple — the electronic material of the investigation. Compare, 10 volumes of a criminal case or a link to a similar case that can be shared online with external users, and it also has the ability to end-to-end analytics and search through materials. In other words, a must have for the execution of investigations.

Archivarius 3000 and DtSearch


Archivarius 3000


DtSearch

Archivarius 3000 and DtSearch are designed to work with arrays of textual information. They are omnivorous, can read most types of files, and also extract entities from them (nicknames, email addresses, phone numbers, hyperlinks). Allows you to search for information in large amounts of information, including using extended search operators. They also have the functionality to search for information on partial data (for example, by email address or phone number, partially hidden by privacy settings). These two tools can also serve as a means to quickly create a non-relational database.

Venator


A multifunctional Venator OSINT browser based on Librewolf (it’s a fork of Firefox with an emphasis on privacy and security). The browser is focused on use in Eastern Europe, which distinguishes it from analogues such as Oryon, CSI and others. The browser interface includes additional panels for a quick transition to search engines, as well as to specialized OSINT resources divided by research topics (telephone, mail, nickname, website, etc.).

Spreadsheets


Don’t underestimate the power of Google Sheets. This is a universal tool that allows you to prototype almost any service in terms of collecting data from open sources. Leveraging the Google ecosystem, including dorks, makes Sheets a powerful OSINT tool. Based on it, I personally created a media monitoring system for key queries, a system for identifying Telegram channels, checking e-mail addresses and user nicknames.

Breadcrumbs and Shard


Breadcrumbs


Shard

Breadcrumbs is an analytical platform that allows you to explore the blockchain of individual cryptocurrencies, including functionality for conducting investigations, monitoring, tracking and sharing up-to-date information about blockchain transactions, as well as identifying individual crypto wallets. Closer to the middle of last year, a Russian analogue appeared on the market — the Shard service, which could be connected to at no extra charge.

Start


Start is a bookmark manager that is very popular with OSINT experts. In addition to its main task of being a collection of useful resources, the service can perform the functions of a dashboard, be used to organize network monitoring for key queries, collect RSS feeds, and also be an effective honeypot (cyberdetective trap), since it allows tracking pixels to be placed on its pages.

Maltego and SpiderFoot


Maltego


SpiderFoot

Maltego and SpiderFoot are entire software systems for OSINT, which may include other services (by API), as well as databases. Allow connection of own services and data. Despite some antediluvian interfaces (lack of file forensics, timelines and cartographic presentation of data), they allow you to build an investigation graph, as well as transfer it to other users. Depending on the filling of programs with external modules, they can conduct any kind of investigation.

Dork Search, Advangle and DorkGenius


Dork Search


Advangle


DorkGenius

Dork Search is a tool for automating and suggesting advanced search operators (Google Dorks). It is useful not to delve into long manuals and select dorks by the “scientific poke method”. In 2023, I found an alternative service, Advangle, which turned out to be at least as good. Well, besides him, I advise you to try the DorkGenius service, which uses AI to create advanced search queries for Google, Bing and DuckDuckGo. Now I use all three products in my work.

CanaryTokens and IP Logger


CanaryTokens


IP Logger

CanaryTokens and IP Logger are popular loggers, that is, services that allow you to get information about the connection and devices of Internet users. They are the basis for creating the simplest honeypots in the form of a hyperlink, an image, an email, a document, an invisible pixel, and even a credit card. Over the past year, both services have significantly added functionality. Now they allow the collection of a complete digital fingerprint of users, which increases the effectiveness of their use for the investigation of crimes, as well as in active OSINT events.

Universal Search and Yandex.Audience


Universal Search


Yandex.Audience

And finally, I also cannot fail to mention these tools in the selection. Universal Search collects and automates various OSINT methods. And it does it so well that young professionals using it in their work give the impression of experienced gurus. Yandex.Audience is a promising domestic tool for ADINT (advertising identifier intelligence). ADINT allows you to get a social graph and track movements by email address, phone number, MAC address, and identifiers of iOS and Android operating systems.

Igor S. Bederov

Comments

Post a Comment

Popular posts from this blog

OSINT by nickname…

Image
OSINT by nickname is the process of collecting and analyzing information about a nickname on the Internet. Thanks to this collection method, we can build a chain of all mentions on the Internet, be it social networks or websites. WhatsMyName — a simple, fast and reliable service. Presented as an online service and open source software . Checks the presence of a nickname (strict compliance only) on 600 web resources. Also displays results from Google’s main search results and document searches. It does not provide additional types of search. Maigret is a more advanced service. Presented in the form of a Telegram bot and open source software . Checks the presence of a nickname (strict compliance only) on 3000 web resources. Allows you to upload an extended report on the inspection performed, including additional data on identified profiles. It does not provide additional types of search. mailcat is a service designed to search for the use of a nickname as part of an electronic address
Read more

Identification of web resource owners

Image
A WEBSITE (or simply a site) is a collection of web pages and related resources that are accessible via the Internet. Each web page within a site has a unique URL (Uniform Resource Locator) that allows users to easily find and access a specific page. Web pages are usually linked together by hyperlinks to enable navigation throughout the site. Websites can be static or dynamic. A static site consists of pre-built web pages that remain the same for all users. A dynamic website is built on templates and a database, which allows you to generate unique content and interact with users. WHO IS THE OWNER OF THE SITE? The site owner is the person or organization that owns the domain name and/or hosting. Depending on his status, he can be an individual or a legal entity. A website administrator is usually the name of the person or group of people responsible for managing and maintaining the site. It can perform tasks such as hosting management, installing and updating software, backing up data,
Read more