<?xml version="1.0" encoding="UTF-8"?><rss xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:atom="http://www.w3.org/2005/Atom" version="2.0" xmlns:itunes="http://www.itunes.com/dtds/podcast-1.0.dtd" xmlns:googleplay="http://www.google.com/schemas/play-podcasts/1.0"><channel><title><![CDATA[The OSINT Newsletter]]></title><description><![CDATA[OSINT news, tools, tactics, and techniques]]></description><link>https://osintnewsletter.com</link><image><url>https://substackcdn.com/image/fetch/$s_!yF4I!,w_256,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png</url><title>The OSINT Newsletter</title><link>https://osintnewsletter.com</link></image><generator>Substack</generator><lastBuildDate>Sat, 18 Jul 2026 11:27:15 GMT</lastBuildDate><atom:link href="https://osintnewsletter.com/feed" rel="self" type="application/rss+xml"/><copyright><![CDATA[Jake Creps]]></copyright><language><![CDATA[en]]></language><webMaster><![CDATA[contact@osint.news]]></webMaster><itunes:owner><itunes:email><![CDATA[contact@osint.news]]></itunes:email><itunes:name><![CDATA[The OSINT Newsletter]]></itunes:name></itunes:owner><itunes:author><![CDATA[The OSINT Newsletter]]></itunes:author><googleplay:owner><![CDATA[contact@osint.news]]></googleplay:owner><googleplay:email><![CDATA[contact@osint.news]]></googleplay:email><googleplay:author><![CDATA[The OSINT Newsletter]]></googleplay:author><itunes:block><![CDATA[Yes]]></itunes:block><item><title><![CDATA[The OSINT Newsletter - Issue #114]]></title><description><![CDATA[Reply Guys & Power Users: OSINT on Forums and Online Communities]]></description><link>https://osintnewsletter.com/p/114</link><guid isPermaLink="false">https://osintnewsletter.com/p/114</guid><pubDate>Thu, 16 Jul 2026 15:02:04 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/19d4041b-c53d-4471-82fe-cf984089c322_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 114th issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:</p><ul><li><p><span>What long-term posting history reveals</span></p></li><li><p><span>Where to find high-value discussions (beyond just Reddit)</span></p></li><li><p><span>A clean simple workflow</span></p></li><li><p><span>&#8230;and why rollercoasters capture that one user&#8217;s imagination.</span></p></li></ul><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://osintnewsletter.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">This Substack is reader-supported. To receive new posts and support my work, consider becoming a free or paid subscriber.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p>&#9889; <strong>Turning Physical Media into an OSINT Archive Powered by AI</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;185e3a7b-1e68-414f-904b-c7006d7d9483&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 113th issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence.&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #113&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-07-09T03:00:42.664Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/b2dca80b-4d9f-489e-8398-4e7d9a426665_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/113&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:203920550,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:23,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>&#127897;&#65039; <strong>If you prefer to listen, here&#8217;s a link to the podcast instead.</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;b09cc8d9-cbf1-4911-9ffa-976f503376c3&quot;,&quot;caption&quot;:&quot;Three issues, three completely different corners of the OSINT world collide in this episode. Jake Creps opens with the latest OSINT news, including AI-powered note-taking with Claude and Obsidian, tracking ships through the Strait of Hormuz, and Bellingcat&#8217;s machine learning approach to surfacing civilian harm reports. From there he covers three new too&#8230;&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Episode 21: From Exposed Files to AI Archives: Tracking Ships, Building Smarter Investigations, and Turning Books into Data&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-07-10T15:02:17.163Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/464ca7e7-3e5b-4ef3-93cd-2ffe483755cf_1200x630.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/episode-21-from-exposed-files-to&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:205737845,&quot;type&quot;:&quot;podcast&quot;,&quot;reaction_count&quot;:4,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1><span>Reply Guys &amp; Power Users: OSINT on Forums and Online Communities</span></h1><p><span>The reply guy who just </span><em><span>has</span></em><span> to weigh in on every thread. The power user with 30,000 posts and even more opinions. The Boomer with a sign-off more dated than a digital calendar. The obsessive who&#8217;s been answering the same question about rollercoaster lugnuts since 2009 and </span><em><span>still isn&#8217;t tired of it</span></em><span>.</span></p><p><span>Every forum has them. From a real-life perspective, these people are (mostly) insufferable. From an OSINT perspective? These people are MVPs - the most valuable posters.</span></p><p><span>Give someone a forum and enough time, and they&#8217;ll build a record of everything: phases and bad takes included. That&#8217;s what makes forums powerful for OSINT. They track how users evolve when only their friends are watching.</span></p><p><strong><span>This issue will teach you:</span></strong></p><ul><li><p><span>What long-term posting history reveals</span></p></li><li><p><span>Where to find high-value discussions (beyond just Reddit)</span></p></li><li><p><span>A clean simple workflow</span></p></li><li><p><span>&#8230;and why rollercoasters capture that one user&#8217;s imagination.</span></p></li></ul><h2><span>What Makes Forums Useful</span></h2><p><span>Forums actually </span><a href="https://en.wikipedia.org/wiki/Usenet"><span>predate the Internet</span></a><span>. Long before modern platforms, people were gathering in digital spaces to talk&#8230; and talk&#8230; and talk. Discussions are usually organised by topic, making it easy to follow context. Plus, small forum-specific details like join dates, post counts, locations, or signatures really add up.</span></p><p><span>Still - there&#8217;s more:</span></p><h3><span>Long-term User History</span></h3><p><span>What divides a forum from a chatroom? Post length is one thing, as is content being at least semi-public, and that post material is at least temporarily archived. The latter part means forums are built for persistence. Users keep the same account for years and years, and can build up thousands of posts tied to one identity.</span></p><p><span>For OSINT, you can see not just what somebody says now, but how these views and interests rise, fall and evolve over time. Once they were super into frogs, now they&#8217;re super into </span><a href="https://open.spotify.com/track/7HgeLClgMNB5hjUiuBWUio"><span>Alex Jones</span></a><span>. Looks like a pipeline.</span></p><h3><span>Unfiltered Personal Discussion</span></h3><p><span>Forums tend to feel smaller and more community-driven than mainstream social platforms. As a result, users are often more direct and less curated in what they say.</span></p><p><span>It&#8217;s common to find users drop their filters as they get more comfortable on a site. Some platforms are more unfiltered than others. You might think this will give you better material, but don&#8217;t expect what you find on Kiwifarms or </span><a href="https://www.wired.com/story/4chan-is-dead-its-toxic-legacy-is-everywhere/"><span>4chan&#8217;s /b/ board</span></a><span> to be genuinely useful. Or even </span><a href="https://www.dazeddigital.com/life-culture/article/69637/1/language-looksmaxxing-jestergooning-incel-4chan-clavicular-adam-aleksic"><span>make sense</span></a><span>.</span></p><h2><span>Beginner Platforms for Forum Surfing</span></h2><p><span>Different platforms attract different types of users; all are annoying in their own special ways. Understanding where certain types gather and certain posts are made is key to finding the richest, most consistent data trails. Try:</span></p><h3><span>Reddit</span></h3><p><span>If you don&#8217;t already scroll your free time away here, welcome to Reddit. Large, active, and </span><a href="https://www.howtogeek.com/reddits-search-is-not-good-but-these-tricks-will-help/"><span>searchable(ish)</span></a><span>, Reddit is useful for identifying usernames, interests, and initial posting behaviour. Subreddits act like mini-forums, centred around specific topics or communities. These could be big subreddits for games or TV, like </span><a href="https://www.reddit.com/r/BaldursGate3/"><span>r/BaldursGate3</span></a><span> or </span><a href="https://www.reddit.com/r/breakingbad/"><span>r/breakingbad</span></a><span>; or really niche stuff like </span><a href="https://www.reddit.com/r/mousepadreview/"><span>r/mousepadreview</span></a><span>, or people who </span><a href="https://www.rollingstone.com/culture/culture-features/sink-pisser-reddit-community-save-water-1234695758/"><span>pee in the sink</span></a><span>.</span></p><p><span>Bear in mind: r/ for a community, and u/ for a user.</span></p><h3><span>Niche Forums</span></h3><p><span>These are smaller, topic-specific communities where users post more consistently and in greater depth about their Thing. Hobby, profession, or interest, these are spaces with higher-signal content and long-term engagement.</span></p><h3><span>Comment Sections</span></h3><p><span>Comment sections on blog and news sites are often overlooked, but sometimes valuable. These spaces can contain older, less moderated discussions&#8230; with </span><a href="https://www.pewresearch.org/journalism/2026/02/11/the-age-divide-in-how-americans-think-about-news/"><span>older, less moderated users</span></a><span>. Comment section posters can be more flip than usual about identity and information sharing, but certain sites - looking at you, </span><a href="http://pcmag.com/news/youtube-to-remind-users-not-to-be-a-jerk-in-the-comment-sections"><span>Youtube</span></a><span> - are less profitable than others.</span></p><h2><span>A Four-Fold Workflow For Making Forums Work For You</span></h2><p><span>Now say that title at double speed. By the time your Fs don&#8217;t falter, you&#8217;ll have found the forum post you were foreseeing you might find in the first place.</span></p><p><span>Give the following a try:</span></p><h3><span>Step 1: Search Username or Topic</span></h3><p><span>Start by identifying the username or discussion topic relevant to your investigation. Use search engines and/or platform search functions to locate where OSINT-useful activity is most likely happening.</span></p><h3><span>Step 2: Track History</span></h3><p><span>Once you&#8217;ve found that user, review their full post history. Once you find that post, review all the posts that led up to it. Don&#8217;t just skim - look across time and mark recurring themes, preoccupations, and activity patterns.</span></p><h3><span>Step 3: Identify Behavioral Patterns</span></h3><p><span>Look for consistency. Writing style, posting times, interests, interactions with other users. Do they build a clearer picture of the individual behind the account? Do they give context to the comment you were searching for?</span></p><h3><span>Step 4: Profit!!!!</span></h3><p><span>OK - four steps were necessary to pull off </span><a href="https://knowyourmeme.com/memes/profit"><span>several jokes</span></a><span> in this section, but this final link in the chain is in fact extremely necessary. Always </span><strong><span>cross-reference</span></strong><span> your OSINT findings, to avoid weak leads and mistakes.</span></p><h2><span>Key Insights</span></h2><h3><span>People Reuse Usernames</span></h3><p><span>Many forums reward repeated use of the same username, through point systems like Reddit karma or Stack Overflow badges. Even up- or down-vote systems encourage sticking with one profile. For ease or kudos, many users link accounts or carry the same handle across multiple platforms - making an OSINT pivot a breeze.</span></p><h3><span>Oversharing Is Normal</span></h3><p><span>Frequent posters tend to reveal more over time. As a user gets cosy in their home community, they can overshare: opinions, experiences, and sometimes even more personal details that can be pieced together.</span></p><h3><span>Dusty Old Posts</span></h3><p><span>Old forums rarely get cleaned up, and older content is often less guarded. The web of the past was a </span><a href="https://www.ft.com/content/e6e94bea-b61e-11e6-961e-a1acd97f622d"><span>more innocent place</span></a><span>. Before privacy awareness increased, users were more open. As a result, historical posts are especially valuable for investigators.</span></p><p><span>Thread closed. You&#8217;ve survived the forum trenches. You&#8217;re now - officially - a forum OSINT power user.</span></p><p><span>You should know:</span></p><ul><li><p><span>What makes forums unique</span></p></li><li><p><span>How long-term posting history builds value</span></p></li><li><p><span>Why the same username will come up again and again</span></p></li></ul><p><span>&#8230;As for the obsessive: she&#8217;s been posting about that rollercoaster since 2009, because </span><a href="https://www.mirror.co.uk/news/world-news/im-married-third-rollercoaster-after-34741064"><span>that&#8217;s the year she married it</span></a><span>.</span></p><div><hr></div><p><span>&#127937;</span> <strong>New CTF Challenge Live - Port Recon</strong><br><br>A new CTF challenge has been posted on our CTF website. This week&#8217;s challenge involves <br>identifying the location of a cruise port and uncovering the names of the six cruise ships visible in the provided image. Can you find the port and identify all six ships?<br><br><a href="https://ctf.osintnewsletter.com/">Start competing in our Capture the Flag (CTF) </a></p><p><span>&#129667;</span> If you missed the last CTF, <a href="https://ctf.osintnewsletter.com/challenges#Final%20Boarding-37">here&#8217;s a link to catch up</a>. <br><br>Last week&#8217;s CTF challenge featured a challenge titled &#8220;Final Boarding&#8221; where participants were tasked with identifying the airport from a photograph, finding its IATA code, determining the nearest boarding gate, and uncovering the name of a lounge.<br><br>Challenge solution WU :<br><br>To solve this challenge, participants should begin by performing a reverse image search on the photograph. One of the most distinctive elements is the walkway featuring the Revolut branding. Among the search results, they should find an exact match identifying the location as Leonardo da Vinci&#8211;Rome Fiumicino Airport in Italy. For example: </p><div class="twitter-embed" data-attrs="{&quot;url&quot;:&quot;https://x.com/maxkarpis/status/1812753203454263686&quot;,&quot;full_text&quot;:&quot;Revolut logos on walkways at Leonardo da Vinci&#8211;Rome Fiumicino Airport in Italy&#127470;&#127481; &quot;,&quot;username&quot;:&quot;maxkarpis&quot;,&quot;name&quot;:&quot;Max Karpis&quot;,&quot;profile_image_url&quot;:&quot;https://pbs.substack.com/profile_images/1405495621071642627/St0CKccJ_normal.jpg&quot;,&quot;date&quot;:&quot;2024-07-15T07:36:57.000Z&quot;,&quot;photos&quot;:[{&quot;img_url&quot;:&quot;https://pbs.substack.com/media/GSgxZ7sW0AAo6Ac.jpg&quot;,&quot;link_url&quot;:&quot;https://t.co/oCQmydQJCI&quot;}],&quot;quoted_tweet&quot;:{},&quot;reply_count&quot;:0,&quot;retweet_count&quot;:0,&quot;like_count&quot;:25,&quot;impression_count&quot;:999,&quot;expanded_url&quot;:null,&quot;video_url&quot;:null,&quot;video_preview_media_key&quot;:null,&quot;belowTheFold&quot;:true}" data-component-name="Twitter2ToDOM"></div><p>Once the airport has been identified, participants can look up its IATA code, which is FCO.</p><p>To determine the nearest gate, careful observation of the image is required. The gate number is not directly visible but can be seen reflected in the glass fa&#231;ade at the front of the photograph. The reflection reveals Gate A64, which is the closest gate to the location where the picture was taken.</p><p>Finally, the challenge asks for the name of the lounge located directly in front of the camera. Since the photograph was taken facing the gates, participants can inspect the airport terminal using Google Earth or the official terminal maps. By locating the area around Gate A64, they can identify the lounge opposite the camera as ITA Lounge Piazza Venezia.</p><p>Source links:</p><ul><li><p><a href="https://www.google.fr/maps/place/A%C3%A9roport+L%C3%A9onard-de-Vinci+de+Rome+Fiumicino/@41.7978627,12.2524034,3a,75y,334.53h,90t/data=!3m8!1e1!3m6!1sCIHM0ogKEICAgIDEipqlwQE!2e10!3e11!6shttps:%2F%2Flh3.googleusercontent.com%2Fgpms-cs-s%2FABJJf52j4euLZQ9v2_RMmVkODsI3IyPpBgvlGKQfma1HATaq1QAtVRazhLu9RiMyUjAoHU_NAdi8-wQYD5XG14iPmtpvDRWCfVyE2GAlVjREZW-S_VGDiT7ERiDksawDxsIsVomkQIkMOw%3Dw900-h600-k-no-pi0-ya283.52704207011993-ro0-fo100!7i8704!8i4352!4m14!1m7!3m6!1s0x1325f0793898141f:0xafe513b4e358316f!2sA%C3%A9roport+L%C3%A9onard-de-Vinci+de+Rome+Fiumicino!8m2!3d41.8034632!4d12.2519211!16zL20vMDFreTVy!3m5!1s0x1325f0793898141f:0xafe513b4e358316f!8m2!3d41.8034632!4d12.2519211!16zL20vMDFreTVy?entry=ttu&amp;g_ep=EgoyMDI2MDcwNS4wIKXMDSoASAFQAw%3D%3D">https://www.google.fr/maps/place/A%C3%A9roport+L%C3%A9onard-de-Vinci+de+Rome+Fiumicino/@41.7978627,12.2524034,3a,75y,334.53h,90t/data=!3m8!1e1!3m6!1sCIHM0ogKEICAgIDEipqlwQE!2e10!3e11!6shttps:%2F%2Flh3.googleusercontent.com%2Fgpms-cs-s%2FABJJf52j4euLZQ9v2_RMmVkODsI3IyPpBgvlGKQfma1HATaq1QAtVRazhLu9RiMyUjAoHU_NAdi8-wQYD5XG14iPmtpvDRWCfVyE2GAlVjREZW-S_VGDiT7ERiDksawDxsIsVomkQIkMOw%3Dw900-h600-k-no-pi0-ya283.52704207011993-ro0-fo100!7i8704!8i4352!4m14!1m7!3m6!1s0x1325f0793898141f:0xafe513b4e358316f!2sA%C3%A9roport+L%C3%A9onard-de-Vinci+de+Rome+Fiumicino!8m2!3d41.8034632!4d12.2519211!16zL20vMDFreTVy!3m5!1s0x1325f0793898141f:0xafe513b4e358316f!8m2!3d41.8034632!4d12.2519211!16zL20vMDFreTVy?entry=ttu&amp;g_ep=EgoyMDI2MDcwNS4wIKXMDSoASAFQAw%3D%3D</a></p></li><li><p><a href="https://earth.google.com/web/@41.79715746,12.25224872,13.3019093a,1747.35995742d,35y,298.08003297h,0t,0r/data=CgRCAggBQgIIAEoNCP___________wEQAA">https://earth.google.com/web/@41.79715746,12.25224872,13.3019093a,1747.35995742d,35y,298.08003297h,0t,0r/data=CgRCAggBQgIIAEoNCP___________wEQAA</a></p></li></ul><div class="twitter-embed" data-attrs="{&quot;url&quot;:&quot;https://x.com/maxkarpis/status/1812753203454263686&quot;,&quot;full_text&quot;:&quot;Revolut logos on walkways at Leonardo da Vinci&#8211;Rome Fiumicino Airport in Italy&#127470;&#127481; &quot;,&quot;username&quot;:&quot;maxkarpis&quot;,&quot;name&quot;:&quot;Max Karpis&quot;,&quot;profile_image_url&quot;:&quot;https://pbs.substack.com/profile_images/1405495621071642627/St0CKccJ_normal.jpg&quot;,&quot;date&quot;:&quot;2024-07-15T07:36:57.000Z&quot;,&quot;photos&quot;:[{&quot;img_url&quot;:&quot;https://pbs.substack.com/media/GSgxZ7sW0AAo6Ac.jpg&quot;,&quot;link_url&quot;:&quot;https://t.co/oCQmydQJCI&quot;}],&quot;quoted_tweet&quot;:{},&quot;reply_count&quot;:0,&quot;retweet_count&quot;:0,&quot;like_count&quot;:25,&quot;impression_count&quot;:999,&quot;expanded_url&quot;:null,&quot;video_url&quot;:null,&quot;video_preview_media_key&quot;:null,&quot;belowTheFold&quot;:true}" data-component-name="Twitter2ToDOM"></div><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry. There&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://osintnewsletter.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">This Substack is reader-supported. To receive new posts and support my work, consider becoming a free or paid subscriber.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div>]]></content:encoded></item><item><title><![CDATA[Episode 21: From Exposed Files to AI Archives: Tracking Ships, Building Smarter Investigations, and Turning Books into Data]]></title><description><![CDATA[Listen now | Tools, tactics, and fresh investigations expanding the open-source intelligence toolkit.]]></description><link>https://osintnewsletter.com/p/episode-21-from-exposed-files-to</link><guid isPermaLink="false">https://osintnewsletter.com/p/episode-21-from-exposed-files-to</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Fri, 10 Jul 2026 15:02:17 GMT</pubDate><enclosure url="https://api.substack.com/feed/podcast/205737845/5e83f00519e043d02cb2f1c0724c4a89.mp3" length="0" type="audio/mpeg"/><content:encoded><![CDATA[<p>Three issues, three completely different corners of the OSINT world collide in this episode. Jake Creps opens with the latest OSINT news, including AI-powered note-taking with Claude and Obsidian, tracking ships through the Strait of Hormuz, and Bellingcat&#8217;s machine learning approach to surfacing civilian harm reports. From there he covers three new tools for investigating Discord servers, crawling emails at scale, and digging into Xbox Live and PlayStation Network activity, before closing out with the paid deep dive: &#128274; turning a physical media library into a searchable AI archive using Obsidian and Qwen.</p><p>The episode also covers EyeDex, an open directory search engine that indexes publicly exposed files, archives, and datasets scattered across the internet. Jake breaks down keyword and file-extension searches, directory pivoting, date sorting, and infrastructure discovery, plus the operational security habits every investigator should follow when poking around exposed servers.</p><p>Rounding things out, Jake puts you in the boardroom to investigate a company from the ground up: mapping directors, tracing subsidiaries and parent companies, and cross-referencing filings to spot patterns, covering where to find the paper trail and the pivot points that take you from a company to the people and places behind it.</p><p>&#128274; <strong>Highlights from this episode:</strong><br>&#128240; AI-powered second brains, ship tracking, and Bellingcat&#8217;s ML for civilian harm detection<br>&#128270; New tools for Discord, email crawling, and console investigations<br>&#128218; Turning a physical media library into a searchable AI archive with Obsidian and Qwen<br>&#128450;&#65039; Searching the internet&#8217;s exposed open directories with EyeDex<br>&#127970; Uncovering who really runs a company and where the money flows</p><p><strong>Links:</strong></p><ul><li><p><a href="https://osintnewsletter.com/p/111">Issue 111</a></p></li><li><p><a href="https://osintnewsletter.com/p/112">Issue 112</a></p></li><li><p><a href="https://osintnewsletter.com/p/113">Issue 113</a></p></li><li><p>CTF:  <a href="https://ctf.osintnewsletter.com/">https://ctf.osintnewsletter.com/</a></p></li></ul>]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #113]]></title><description><![CDATA[Turning Physical Media into an OSINT Archive Powered by AI]]></description><link>https://osintnewsletter.com/p/113</link><guid isPermaLink="false">https://osintnewsletter.com/p/113</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Thu, 09 Jul 2026 03:00:42 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/b2dca80b-4d9f-489e-8398-4e7d9a426665_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 113th issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence.</p><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>OSINT Tool Tuesday: EyeDex</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;867146d7-3b0c-4846-92c8-c90f2f6e4889&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to OSINT Tool Tuesday. This week we&#8217;re looking at EyeDex; a robust open directory search engine designed to help investigators discover publicly accessible files, archives, documents, media, and datasets exposed across the internet. Widely used by researchers, archivists, investigators, and data hoarders, EyeDex indexes massive amounts of pub&#8230;&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #112&quot;,&quot;publishedBylines&quot;:[],&quot;post_date&quot;:&quot;2026-06-30T15:02:41.090Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/6cfb4b72-4376-426b-b065-9c2afdb6f951_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/112&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:202124046,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:19,&quot;comment_count&quot;:1,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>&#9889; <strong>You&#8217;re Hired: OSINT and Company Intelligence</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;cdde5481-cbc9-42e5-bcb8-6db9519a16e6&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 111th issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #111&quot;,&quot;publishedBylines&quot;:[],&quot;post_date&quot;:&quot;2026-06-25T15:02:36.853Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/6c741f7b-c936-431e-888d-b36babd8b6a2_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/111&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:203435894,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:24,&quot;comment_count&quot;:1,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1>OSINT News</h1><p>&#128240; <strong>How to Build an AI Second Brain With Claude and Obsidian That Gets Smarter Every Day</strong></p><p>A guide to connecting Claude to Obsidian so it can read, organize, and remember your notes across sessions, creating an AI-powered personal knowledge base that improves over time.</p><p><a href="https://x.com/undefinedKi/status/2068306794116501544">Read on X&#8230;</a></p><p>&#127913; H/T: Yarchi</p><p>&#128240; <strong>How I Track Ships in the Strait of Hormuz</strong></p><p>A beginner-friendly OSINT tutorial walking through how to track and identify ships in the Strait of Hormuz using free tools like MarineTraffic, VesselFinder, Equasis, and Copernicus satellite imagery, starting from a news report about vessel congestion near Bandar Abbas.</p><p><a href="https://www.youtube.com/watch?v=4-xikFEEZcc">Watch on YouTube&#8230;</a></p><p>&#127913; H/T: Benjamin Strick</p><p>&#128240; <strong>How to Use AI to Help Find Civilian Harm</strong></p><p>Bellingcat developed a machine learning model to automatically rank Telegram posts by their likelihood of containing civilian harm, dramatically cutting the time researchers spent searching through war reporting content so they could focus on verification instead.</p><p><a href="https://www.bellingcat.com/resources/2026/06/25/how-to-use-ai-to-help-find-civilian-harm-conflict-report-monitor-war-machine-learning-telegram/?utm_source=linkedin">Read on Bellingcat&#8230;</a></p><p>&#127913; H/T: Miguel Ramalho</p><div><hr></div><h1>OSINT Tools</h1><p>&#128270; <strong>DiscordUtils</strong></p><p>A series of useful tools you can use in your OSINT investigations to interrogate Discord servers and users.</p><p><a href="https://discordutils.com/">Web App</a></p><p>&#128270; <strong>Email Crawl</strong></p><p>Extract emails intelligently at scale for your OSINT investigations including validation, username extraction, and more.</p><p><a href="https://github.com/techenthusiast167/EMAIL-CRAWL">GitHub</a></p><p>&#127913; H/T: <span>D4rk_Intel</span></p><p>&#128270; <strong>XResolver</strong></p><p>A collection of tools you can use to investigate users or activity on Xbox Live and the PlayStation Network. Some of the tools seem to be down but they open your mind to possible data points that you can collect.</p><p><a href="https://xresolver.com/">Web App</a></p><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#9889; <strong>Turning Physical Media into an OSINT Archive Powered by AI</strong></p><ul><li><p>In this issue, I&#8217;ll explain a few methods you can turn physical media into an OSINT archive and how you can leverage tools like Obsidian and Qwen to build a powerful engine on top of it.</p></li></ul><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry there&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p>
      <p>
          <a href="https://osintnewsletter.com/p/113">
              Read more
          </a>
      </p>
   ]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #112]]></title><description><![CDATA[OSINT Tool Tuesday: EyeDex]]></description><link>https://osintnewsletter.com/p/112</link><guid isPermaLink="false">https://osintnewsletter.com/p/112</guid><pubDate>Tue, 30 Jun 2026 15:02:41 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/6cfb4b72-4376-426b-b065-9c2afdb6f951_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; Welcome to OSINT Tool Tuesday. This week we&#8217;re looking at<a href="https://www.eyedex.org/?utm_source=chatgpt.com"> EyeDex</a>; a robust open directory search engine designed to help investigators discover publicly accessible files, archives, documents, media, and datasets exposed across the internet. Widely used by researchers, archivists, investigators, and data hoarders, EyeDex indexes massive amounts of publicly accessible directory content and makes it searchable from a single interface.</p><p>&#128680; This tool has been added to the OSINT Resources for Open Directories page on The OSINT Newsletter for easy reference later. That list serves as a roadmap for new tutorials in the future. If there are any tools you&#8217;d like to see added to the list and covered, please reach out to jake@osint.news with details.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://osintnewsletter.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">This Substack is reader-supported. To receive new posts and support my work, consider becoming a free or paid subscriber.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>You&#8217;re Hired: OSINT and Company Intelligence</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;9023ab10-add6-4e2c-a345-c8c96b2ccf4f&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 111th issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #111&quot;,&quot;publishedBylines&quot;:[],&quot;post_date&quot;:&quot;2026-06-25T15:02:36.853Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/6c741f7b-c936-431e-888d-b36babd8b6a2_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/111&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:203435894,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:23,&quot;comment_count&quot;:1,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>&#127897;&#65039; <strong>If you prefer to listen, here&#8217;s a link to the podcast instead.</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;0fec92df-a0a5-4276-945b-8f9db2aab5c9&quot;,&quot;caption&quot;:&quot;Some weeks OSINT looks like spycraft. Other weeks it looks like a PDF from 2002, and somehow that&#8217;s the better week. Episode 20 covers issues 109 and 110 of The OSINT Newsletter, swinging from the dullest, most reliable corner of open source research to one of its more ethically loaded frontiers: AI-made personas.&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Episode 20: Boring Records and Better Bots&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-06-19T13:02:23.905Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/b526f0a6-4e62-4f5c-ad48-18cc215e9cdf_1200x630.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/episode-20-boring-records-and-better&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:202574996,&quot;type&quot;:&quot;podcast&quot;,&quot;reaction_count&quot;:9,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1>EyeDex</h1><p><a href="https://www.eyedex.org/?utm_source=chatgpt.com">EyeDex</a> is an open directory search engine that indexes publicly accessible web directories and allows users to search across petabytes of exposed files hosted on open servers around the world. It acts as a search layer over open directories, making it easier to locate documents, images, videos, archives, datasets, logs, software, and other files that would otherwise be difficult to discover manually.</p><p>&#127913; H/T: <a href="https://www.reddit.com/user/eyedex/">eyedex</a></p><p>EyeDex allows investigators to search using keywords, file names, file extensions, file groups, indexed server paths, and directory structures.</p><p>The platform is especially useful for:</p><ul><li><p>Discovering forgotten or abandoned public data.</p></li><li><p>Locating leaked or exposed files.</p></li><li><p>Identifying publicly accessible infrastructure.</p></li><li><p>Finding archived datasets and documents.</p></li><li><p>Pivoting into additional OSINT investigations.</p></li></ul><p><strong>In this guide, I&#8217;ll walk you through how EyeDex works, how to search effectively, practical use cases, and additional search techniques to help uncover further results.</strong></p><div><hr></div><h2>Setup</h2><p>Unlike many OSINT tools, EyeDex does not require installation or API access. It&#8217;s entirely web-based, so simply open up the <a href="https://www.eyedex.org/">EyeDex Search Interface</a> and you&#8217;re good to go.  <em>(Command-line beginners can collectively breathe a sigh of relief!)</em></p><div class="captioned-image-container"><figure><a class="image-link image2" target="_blank" href="https://substackcdn.com/image/fetch/$s_!yeNx!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1c7d79be-b101-415e-97c1-002843a81155_850x121.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!yeNx!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1c7d79be-b101-415e-97c1-002843a81155_850x121.png 424w, https://substackcdn.com/image/fetch/$s_!yeNx!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1c7d79be-b101-415e-97c1-002843a81155_850x121.png 848w, https://substackcdn.com/image/fetch/$s_!yeNx!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1c7d79be-b101-415e-97c1-002843a81155_850x121.png 1272w, https://substackcdn.com/image/fetch/$s_!yeNx!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1c7d79be-b101-415e-97c1-002843a81155_850x121.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!yeNx!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1c7d79be-b101-415e-97c1-002843a81155_850x121.png" width="850" height="121" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/1c7d79be-b101-415e-97c1-002843a81155_850x121.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:121,&quot;width&quot;:850,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:null,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:null,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:null,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!yeNx!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1c7d79be-b101-415e-97c1-002843a81155_850x121.png 424w, https://substackcdn.com/image/fetch/$s_!yeNx!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1c7d79be-b101-415e-97c1-002843a81155_850x121.png 848w, https://substackcdn.com/image/fetch/$s_!yeNx!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1c7d79be-b101-415e-97c1-002843a81155_850x121.png 1272w, https://substackcdn.com/image/fetch/$s_!yeNx!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1c7d79be-b101-415e-97c1-002843a81155_850x121.png 1456w" sizes="100vw" loading="lazy"></picture><div></div></div></a></figure></div><div><hr></div><h2>Understanding Open Directories</h2><p>Before using EyeDex effectively, it helps to understand what &#8220;open directories&#8221; actually are.</p><p>An open directory is a publicly accessible web server directory listing where indexing or browsing has been enabled accidentally or intentionally. These often expose PDFs, ZIP archives, videos, source code, backups, configuration files, images, logs, and datasets.</p><p>In many cases, these directories were never intended to be publicly searchable. EyeDex indexes these locations and makes them searchable from a central interface.</p><p><strong>Note:</strong> As always, just because a file is publicly accessible doesn&#8217;t mean you should download, distribute, or misuse it. Always operate legally and ethically.</p><div><hr></div><h2>Usage</h2><p>Now that we&#8217;ve covered the basics, let&#8217;s dive into how to actually use EyeDex during investigations.</p><h4>Basic Search</h4><p>The best place to start is by searching for keywords. You could try a company name, username, project codename, email domain or file name to name but a few.</p><p><strong>Example: </strong>osint</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!pgKX!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!pgKX!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png 424w, https://substackcdn.com/image/fetch/$s_!pgKX!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png 848w, https://substackcdn.com/image/fetch/$s_!pgKX!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png 1272w, https://substackcdn.com/image/fetch/$s_!pgKX!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!pgKX!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png" width="1456" height="839" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:839,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:null,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:null,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:null,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!pgKX!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png 424w, https://substackcdn.com/image/fetch/$s_!pgKX!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png 848w, https://substackcdn.com/image/fetch/$s_!pgKX!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png 1272w, https://substackcdn.com/image/fetch/$s_!pgKX!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F1868dc22-de53-4b27-9d19-9f6b3382af9f_1641x946.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>This may uncover exposed PDFs, archived backups, spreadsheets, internal documentation etc.</p><p>As you can see, search results typically include file name, server, location, file size, modification group, and file category e.g. &#8216;video&#8217; or &#8216;text&#8217;.</p><p>&#128466;&#65039; This is the best starting point for broad reconnaissance.</p><h4>File Extension Searches</h4><p>One of EyeDex&#8217;s most powerful features is searching by file extension e.g. pdf, sql, txt, log, json, csv etc. You can also combine keywords with extensions.</p><p><strong>Example: </strong>Manual pdf</p><p>This is of course a very wide search query but you can see how it pulls up more recent pdf manuals. Using this feature can help narrow investigations toward specific file types.</p><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!7vQh!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!7vQh!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png 424w, https://substackcdn.com/image/fetch/$s_!7vQh!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png 848w, https://substackcdn.com/image/fetch/$s_!7vQh!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png 1272w, https://substackcdn.com/image/fetch/$s_!7vQh!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!7vQh!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png" width="1456" height="826" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:826,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:null,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:null,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:null,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!7vQh!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png 424w, https://substackcdn.com/image/fetch/$s_!7vQh!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png 848w, https://substackcdn.com/image/fetch/$s_!7vQh!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png 1272w, https://substackcdn.com/image/fetch/$s_!7vQh!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3c919d6c-8300-48be-81cd-5145b9b5a9e9_1663x943.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><p>&#128466;&#65039; Extremely useful for identifying accidental data exposure.</p><h4>File Group Filtering</h4><p>EyeDex allows filtering by file groups/categories including documents, archives, pictures, text and video.  This makes it easier to quickly pivot toward the type of content you&#8217;re investigating.</p><p><strong>Example workflow:</strong></p><ul><li><p>Search a company name.</p></li><li><p>Filter by &#8220;Documents&#8221;.</p></li><li><p>Review exposed PDFs and spreadsheets.</p></li></ul><div class="captioned-image-container"><figure><a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!PJpd!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!PJpd!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png 424w, https://substackcdn.com/image/fetch/$s_!PJpd!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png 848w, https://substackcdn.com/image/fetch/$s_!PJpd!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png 1272w, https://substackcdn.com/image/fetch/$s_!PJpd!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!PJpd!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png" width="1456" height="805" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:805,&quot;width&quot;:1456,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:null,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:null,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:null,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!PJpd!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png 424w, https://substackcdn.com/image/fetch/$s_!PJpd!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png 848w, https://substackcdn.com/image/fetch/$s_!PJpd!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png 1272w, https://substackcdn.com/image/fetch/$s_!PJpd!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9e8a63f2-1768-4f51-a4f3-efbcbac4d2a3_1630x901.png 1456w" sizes="100vw" loading="lazy"></picture><div class="image-link-expand"><div class="pencraft pc-display-flex pc-gap-8 pc-reset"><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container restack-image"><svg role="img" width="20" height="20" viewBox="0 0 20 20" fill="none" stroke-width="1.5" stroke="var(--color-fg-primary)" stroke-linecap="round" stroke-linejoin="round" xmlns="http://www.w3.org/2000/svg"><g><title></title><path d="M2.53001 7.81595C3.49179 4.73911 6.43281 2.5 9.91173 2.5C13.1684 2.5 15.9537 4.46214 17.0852 7.23684L17.6179 8.67647M17.6179 8.67647L18.5002 4.26471M17.6179 8.67647L13.6473 6.91176M17.4995 12.1841C16.5378 15.2609 13.5967 17.5 10.1178 17.5C6.86118 17.5 4.07589 15.5379 2.94432 12.7632L2.41165 11.3235M2.41165 11.3235L1.5293 15.7353M2.41165 11.3235L6.38224 13.0882"></path></g></svg></button><button tabindex="0" type="button" class="pencraft pc-reset pencraft icon-container view-image"><svg xmlns="http://www.w3.org/2000/svg" width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-maximize2 lucide-maximize-2"><polyline points="15 3 21 3 21 9"></polyline><polyline points="9 21 3 21 3 15"></polyline><line x1="21" x2="14" y1="3" y2="10"></line><line x1="3" x2="10" y1="21" y2="14"></line></svg></button></div></div></div></a></figure></div><h4>Server Pivoting</h4><p>One underrated feature of EyeDex is the ability to pivot into entire exposed directory structures. Once you identify a useful result, you can inspect adjacent folders, browse sibling directories, identify naming conventions, and uncover additional hidden files.</p><p>This often reveals:</p><ul><li><p>staging environments</p></li><li><p>old backups</p></li><li><p>developer files</p></li><li><p>forgotten exports</p></li><li><p>archived media</p></li></ul><p>&#128466;&#65039; Many investigations expand significantly through directory pivoting rather than the initial keyword search itself.</p><h4>Date Sorting</h4><p>EyeDex allows sorting by date (and time), helping investigators identify recently modified files, fresh uploads, newly exposed data, and active infrastructure.</p><div class="captioned-image-container"><figure><a class="image-link image2" target="_blank" href="https://substackcdn.com/image/fetch/$s_!MfrL!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png" data-component-name="Image2ToDOM"><div class="image2-inset"><picture><source type="image/webp" srcset="https://substackcdn.com/image/fetch/$s_!MfrL!,w_424,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png 424w, https://substackcdn.com/image/fetch/$s_!MfrL!,w_848,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png 848w, https://substackcdn.com/image/fetch/$s_!MfrL!,w_1272,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png 1272w, https://substackcdn.com/image/fetch/$s_!MfrL!,w_1456,c_limit,f_webp,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png 1456w" sizes="100vw"><img src="https://substackcdn.com/image/fetch/$s_!MfrL!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png" width="190" height="144" data-attrs="{&quot;src&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png&quot;,&quot;srcNoWatermark&quot;:null,&quot;fullscreen&quot;:null,&quot;imageSize&quot;:null,&quot;height&quot;:144,&quot;width&quot;:190,&quot;resizeWidth&quot;:null,&quot;bytes&quot;:null,&quot;alt&quot;:null,&quot;title&quot;:null,&quot;type&quot;:null,&quot;href&quot;:null,&quot;belowTheFold&quot;:true,&quot;topImage&quot;:false,&quot;internalRedirect&quot;:null,&quot;isProcessing&quot;:false,&quot;align&quot;:null,&quot;offset&quot;:false}" class="sizing-normal" alt="" srcset="https://substackcdn.com/image/fetch/$s_!MfrL!,w_424,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png 424w, https://substackcdn.com/image/fetch/$s_!MfrL!,w_848,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png 848w, https://substackcdn.com/image/fetch/$s_!MfrL!,w_1272,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png 1272w, https://substackcdn.com/image/fetch/$s_!MfrL!,w_1456,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F27e7d8b9-87b9-4a6f-bc95-573e80195f92_190x144.png 1456w" sizes="100vw" loading="lazy"></picture><div></div></div></a></figure></div><p>It may be a simple feature but this is especially useful during breach monitoring, leak investigations, threat intelligence monitoring, and ransomware tracking.</p><h4>Infrastructure Discovery</h4><p>Because search results expose server paths and hostnames, EyeDex can also support infrastructure investigations.</p><p>Results may reveal subdomains, internal naming conventions, CDN structures, storage buckets, legacy infrastructure, and mirrored servers.</p><p>These become valuable pivot points into:</p><ul><li><p>DNS investigations</p></li><li><p>Shodan searches</p></li><li><p>Certificate analysis</p></li><li><p>Passive DNS</p></li><li><p>Attack surface mapping</p></li></ul><div><hr></div><h2>Use Cases</h2><p>EyeDex is essentially a public file discovery and exposed infrastructure reconnaissance tool.</p><p>A key feature is its ability to support structured exploration of results and build a clearer picture from scattered publicly available information.</p><p><strong>So where exactly is this tool useful in OSINT?</strong></p><h4>Data Exposure Discovery</h4><p>This is arguably the primary use case as EyeDex can help investigators locate exposed backups, exported databases, internal documents, logs, and misconfigured storage. This can support breach investigations, attack surface monitoring, corporate reconnaissance, and vulnerability research.</p><h4>Threat Intelligence</h4><p>Threat researchers can use EyeDex to identify leaked datasets, locate malware samples, discover exposed infrastructure, uncover staging servers, and track threat actor file hosting. Open directories are frequently used for malware hosting, phishing kits, leaked credential storage, and pirated tooling.</p><p><em><strong>Note:</strong> Always exercise caution when interacting with downloadable content.</em></p><h4>Research &amp; Archiving</h4><p>EyeDex is also widely used by archivists and researchers looking for old software, datasets, scanned books, historical archives, and niche media collections. The open directory community has long used similar indexing techniques for archival discovery.</p><h4>Corporate Reconnaissance</h4><p>Security teams and investigators can use EyeDex to identify exposed internal documents, forgotten staging environments, publicly accessible backups, and leaked configuration files. This makes the tool valuable for red teaming, attack surface management, and external exposure assessments.</p><div><hr></div><h2>Operational Security Considerations</h2><p>When using open directory search engines:</p><ul><li><p>Never execute unknown files directly.</p></li><li><p>Avoid downloading executables from untrusted sources.</p></li><li><p>Use isolated analysis environments/sandboxes.</p></li><li><p>Verify hashes when possible.</p></li><li><p>Treat exposed files as potentially malicious.</p></li></ul><p>The wider OSINT and open directory community frequently warns about operational security risks associated with random downloads from exposed servers so in big, bold letters, EXERCISE CAUTION.</p><div><hr></div><h2>Additional Tips</h2><p>Here are a few practical ways investigators improve EyeDex searches:</p><h4>Search by extension:</h4><p>pdf</p><p>sql</p><p>csv</p><h4>Combine keywords:</h4><p>company confidential</p><h4>Search for backups:</h4><p>backup zip</p><p>bak</p><h4>Search usernames:</h4><p>jdoe</p><h4>Search infrastructure terms:</h4><p>vpn config</p><h4>Search exposed logs:</h4><p>access.log</p><p>error.log</p><h4>Search by media type:</h4><p>Use file group filters to narrow results quickly.</p><div><hr></div><p><span>&#127937;</span> <strong>New CTF Challenge Live - Monaco Suspect</strong></p><p>A new CTF challenge has been posted on our CTF website. This week&#8217;s challenge involves geolocating the exact location of the Monaco explosion suspect using only a single CCTV image provided as evidence.</p><p><a href="https://ctf.osintnewsletter.com/">Start competing in our Capture the Flag (CTF) </a></p><p><span>&#129667;</span> If you missed the last CTF, <a href="https://ctf.osintnewsletter.com/challenges#Disguised%20Fuel%20Convoy-35">here&#8217;s a link to catch up.</a></p><p>Last week&#8217;s CTF challenge featured a challenge titled &#8220;Disguised Fuel Convoy&#8221; where participants were tasked with locating a blurry video showing Russian occupying forces driving a disguised fuel convoy transporting fuel to Crimea.</p><p><strong>Challenge solution WU :</strong></p><p>Looking at the video and making regular pauses, we can notice several visual clues.<br>First of all a crosswalk, if we look closely we can notice the presence of a communication tower and a memorial-style sign.<br>At the end of the video we can hear the man recording, say that it&#8217;s in Kerch (city).</p><p>Using overpass turbo and applying filters to search for gas stations near a crosswalk and a communication tower we get a few results.</p><p>Comparing all of them with what we see in the video, only one of them matches perfectly when taking a look at sat imagery. The crosswalk is present and matches the video, the memorial-style sign is present too. (45.3397564 / 36.4044172)</p><p>Finally the gas station is also present and looking at OpenStreetMap in overpass turbo we can see that the name of the gas station is ATAN, and that the name of the nearest bus station is &#1044;&#1072;&#1095;&#1080;.</p><p>Overpass Turbo Query:</p><p><code>[out:json][timeout:180];</code></p><p><code>// Kerch (Kertch)<br>{{geocodeArea:Kerch}}-&gt;.a;</code></p><p><code>// stations essence<br>nwr&#8220;amenity&#8221;=&#8221;fuel&#8221;-&gt;.fuel;</code></p><p><code>// passages pi&#233;tons proches des stations<br>node&#8221;highway&#8221;=&#8221;crossing&#8221;-&gt;.cross;</code></p><p><code>// antennes proches des stations<br>(<br>node&#8221;man_made&#8221;=&#8221;tower&#8221;;<br>node&#8221;tower:type&#8221;=&#8221;communication&#8221;;<br>)-&gt;.ant;</code></p><p><code>// sortie<br>(<br>.fuel;<br>.cross;<br>.ant;<br>);</code></p><p><code>out center;</code></p><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry. There&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://osintnewsletter.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">This Substack is reader-supported. To receive new posts and support my work, consider becoming a free or paid subscriber.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div>]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #111]]></title><description><![CDATA[You&#8217;re Hired: OSINT and Company Intelligence]]></description><link>https://osintnewsletter.com/p/111</link><guid isPermaLink="false">https://osintnewsletter.com/p/111</guid><pubDate>Thu, 25 Jun 2026 15:02:36 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/6c741f7b-c936-431e-888d-b36babd8b6a2_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 111th issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:</p><ul><li><p>What you can uncover from company data</p></li><li><p>Where to dig (without finding trouble)</p></li><li><p>A clean investigative workflow</p></li><li><p>&#8230;and how to <a href="https://www.theguardian.com/us-news/video/2016/may/04/donald-trump-we-are-going-to-win-bigly-believe-me-video">win, bigly</a>.</p></li></ul><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>Using Generative AI for Sock Puppet Creation and Identification</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;eb153cd3-d59a-47d0-9c54-1fc80d86839e&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 110th issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence.&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #110&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-06-18T13:03:34.741Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/2ebae374-2637-46eb-a901-9e52306a7f3d_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/110&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:201879420,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:17,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>&#127897;&#65039; <strong>If you prefer to listen, here&#8217;s a link to the podcast instead.</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;fc96b312-c55b-4617-a668-07214dc36d15&quot;,&quot;caption&quot;:&quot;Some weeks OSINT looks like spycraft. Other weeks it looks like a PDF from 2002, and somehow that&#8217;s the better week. Episode 20 covers issues 109 and 110 of The OSINT Newsletter, swinging from the dullest, most reliable corner of open source research to one of its more ethically loaded frontiers: AI-made personas.&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Episode 20: Boring Records and Better Bots&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-06-19T13:02:23.905Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/b526f0a6-4e62-4f5c-ad48-18cc215e9cdf_1200x630.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/episode-20-boring-records-and-better&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:202574996,&quot;type&quot;:&quot;podcast&quot;,&quot;reaction_count&quot;:9,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1><span>You&#8217;re Hired: OSINT and Company Intelligence</span></h1><p><span>Welcome to the boardroom - but you&#8217;re not here for the pitch.</span></p><p><span>You&#8217;re going to be playing (if you&#8217;re British) </span><a href="https://www.independent.co.uk/bulletin/culture/apprentice-2026-winner-alan-sugar-b2959561.html"><span>Sir Alan Sugar</span></a><span>, or (if you&#8217;re American) </span><a href="https://www.washingtonpost.com/sf/national/2016/01/27/deciders-trump/"><span>He Who Will Not Be Named</span></a><span>. That&#8217;s because we&#8217;re talking about the business end of OSINT. For this week&#8217;s task, you&#8217;ll be doing open-source company intelligence.</span></p><p><span>Lucky for you, you&#8217;re not here to judge questionable branding, nonsensical messaging or claims that your new apprentice </span><em><a href="https://inews.co.uk/culture/television/the-apprentice-2018-best-quotes-ever-contestants-95299?srsltid=AfmBOoqbnZlUYk3TaAl2L-G5KvAAdopAc6SQLKBtgF973_E56EmM3NMh"><span>&#8220;tastes success in his spit when he wakes up.&#8221;</span></a></em><span> You&#8217;re here to find out: Who actually runs this thing? Where does the money flow? What&#8217;s going on behind the scenes that the owner would rather keep hidden?</span></p><p><span>Get it right, and you&#8217;ll be raking in the data. Get it wrong, and your investigation will feel a bit like an episode of The Apprentice after all - where you&#8217;re the one getting fired.</span></p><p><strong><span>This issue will teach you:</span></strong></p><ul><li><p><span>What you can uncover from company data</span></p></li><li><p><span>Where to dig (without finding trouble)</span></p></li><li><p><span>A clean investigative workflow</span></p></li><li><p><span>&#8230;and how to </span><a href="https://www.theguardian.com/us-news/video/2016/may/04/donald-trump-we-are-going-to-win-bigly-believe-me-video"><span>win, bigly</span></a><span>.</span></p></li></ul><h2><span>What Can a Company Reveal?</span></h2><p><span>Let&#8217;s stick to talking about The Apprentice. Think of a company like a task team. It&#8217;s one unit on the surface, but underneath, there&#8217;s power dynamics, complicated relationships and a</span><em><span> whole </span></em><span>lot of questionable decisions.</span></p><h3><span>Company Structure</span></h3><p><span>Who&#8217;s officially in charge? Companies might claim that it&#8217;s one party, but only the OSINT tells the whole truth. Directors, shareholders and incorporation data are your friends.</span></p><h3><span>Leadership Teams</span></h3><p><span>The names listed in filings are real people with histories, often across multiple companies. And some of them are about to look very busy. If somebody&#8217;s listed across a vast number of companies, or where they shouldn&#8217;t be, you might have your hands on gold dust.</span></p><h3><span>Corporate Relationships</span></h3><p><span>There are many types of companies, and many ways they can connect. Sometimes the &#8216;company&#8217; you&#8217;re looking for is a fragment of something bigger. Some companies turn out to be subsidiaries or shell layers, turning your investigation on its head.</span></p><h2><span>Company OSINT Tools That Actually Work</span></h2><p><span>There aren&#8217;t really &#8216;tools&#8217; in the traditional sense - more like places to look. Still, anything&#8217;s a tool if it&#8217;s useful enough.</span></p><h3><span>Company Registries</span></h3><p><span>Start with official filings (e.g. Companies House in the UK, SEC filings in the US, or equivalent national registries). Here&#8217;s where to find director lists, registered addresses and filing histories.</span></p><h3><span>Financial &amp; Aggregation Sites</span></h3><p><span>Platforms like OpenCorporates and Sayari pull together records across jurisdictions to help you zoom out. Useful when companies start hopping countries or operating through multiple entities. Ask: Who owns what, across borders? Who keeps showing up? Why would they move this way?</span></p><h3><span>Corporate Websites</span></h3><p><span>Yes, really. Of course they&#8217;re curated, but &#8220;About Us&#8221; pages, leadership bios, press releases etcetera are still useful. Especially for confirming roles and timelines against official filings.</span></p><h2><span>A Clean Workflow for Running Your Investigation Like a Winning Task</span></h2><p><span>Time to get structured. It&#8217;s your job (pun intended) to investigate a company. Let&#8217;s follow an OSINT workflow from beginning to end.</span></p><h3><span>1. Identify Official Registration</span></h3><p><span>Looking for a company? Lock in the legal entity first. You need an exact name (even if it&#8217;s not the one you thought), registration number, and jurisdiction. Get these wrong and you&#8217;ll be investigating the wrong &#8216;company&#8217; altogether. Remember </span><a href="https://www.bbc.com/news/world-us-canada-55986364"><span>Four Seasons Total Landscaping</span></a><span>?</span></p><h3><span>2. Map Leadership Roles</span></h3><p><span>On The Apprentice, everyone says they&#8217;re a &#8220;born leader.&#8221; Let&#8217;s find out who&#8217;s actually in charge. Pull every listed director and office, then start connecting them. Who appears across multiple companies? Who&#8217;s moving between roles? What does this suggest in terms of your investigation?</span></p><h3><span>3. Find Subsidiaries or Parent Companies</span></h3><p><span>Trace ownership up and down, as well as side to side. Investigating vertically as well as horizontally can show the loudest brand isn&#8217;t always the one with control. Unexpected shell, parent or subsidiary activity is a relatively common find with bigger corps at this stage.</span></p><h3><span>4. Cross-Reference Filings</span></h3><p><span>Compare everything. Names, addresses, timelines, jurisdictions, employee handsomeness.. If multiple entities share the same details, you&#8217;ve got a pattern &#8212; and hopefully a breakthrough. Visualisation tools like Maltego can really help here</span></p><h2><span>Common Pivot Points</span></h2><h3><span>Company &#8594; People</span></h3><p><span>Who&#8217;s the boss? Directors make great pivots. LinkedIn profiles and previous ventures are great ways to take the investigation personally.</span></p><h3><span>Company &#8594; Addresses</span></h3><p><span>Where are they? Shared offices can link entire clusters of companies. Especially useful for spotting shell setups or service-provider hubs.</span></p><h3><span>Company &#8594; Partner Organisations</span></h3><p><span>Who are they working with? Suppliers, parent firms or collaborators can expand your map fast.</span></p><h2><span>Final Boardroom Discussions</span></h2><p><span>Your team just won that one. You&#8217;re the boss of company OSINT.</span></p><p><span>Now you should know:</span></p><ul><li><p><span>What you can uncover from company data</span></p></li><li><p><span>Why you should start with the precise legal entity</span></p></li><li><p><span>How directors are your bridge to people</span></p></li><li><p><span>Clear ways to get to the good stuff</span></p></li></ul><p><span>If you&#8217;ve checked the filings, mapped the players, followed the structure, and tested the story against what&#8217;s actually recorded, you&#8217;ll get exactly what you need. Here&#8217;s to investigations that smell like </span><a href="https://www.fragrantica.com/perfume/Trump/Success-13419.html"><span>Success</span></a><span>.</span></p><p><span>Here&#8217;s what you&#8217;ve been waiting to hear: </span><strong><span>You&#8217;re hired.</span></strong></p><p><span>See you next week, investigators!</span></p><div><hr></div><p><span>&#127937; </span><strong><span>New CTF Challenge Live - Disguised Fuel Convoy</span></strong><span><br><br>A new CTF challenge has been posted on our CTF website. This week&#8217;s challenge involves identifying a location from a low quality Telegram video and using visual clues to determine the nearby gas station name.<br><br></span><a href="https://ctf.osintnewsletter.com/"><span>Start competing in our Capture the Flag (CTF)</span></a><span> <br><br>&#129667; If you missed the last CTF, </span><a href="https://ctf.osintnewsletter.com/challenges#Red%20Notice-34"><span>here&#8217;s a link to catch up</span></a><span>. <br><br>Last week&#8217;s CTF challenge featured a challenge titled &#8220;Red Notice&#8221; where participants were tasked with investigating the company details of a financial actor who is wanted by INTERPOL under a Red Notice.<br><br>Challenge Solution WU : <br><br>Searching for the full name, we get a </span><a href="https://www.pappers.fr/entreprise/falck-joseph-515317485#coords-51531748500016"><span>result from pappers.fr</span></a><span>. Looking at the public records, we can see the date of registration of the first company that was first is still active until this day, just under that we also find the company name.</span></p><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry. There&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p>]]></content:encoded></item><item><title><![CDATA[Episode 20: Boring Records and Better Bots]]></title><description><![CDATA[Listen now | Tools, tactics, and fresh investigations expanding the open-source intelligence toolkit.]]></description><link>https://osintnewsletter.com/p/episode-20-boring-records-and-better</link><guid isPermaLink="false">https://osintnewsletter.com/p/episode-20-boring-records-and-better</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Fri, 19 Jun 2026 13:02:23 GMT</pubDate><enclosure url="https://api.substack.com/feed/podcast/202574996/163052b9e7072aa34b31ea5d3dbaa1ab.mp3" length="0" type="audio/mpeg"/><content:encoded><![CDATA[<p>Some weeks OSINT looks like spycraft. Other weeks it looks like a PDF from 2002, and somehow that&#8217;s the better week. Episode 20 covers issues 109 and 110 of The OSINT Newsletter, swinging from the dullest, most reliable corner of open source research to one of its more ethically loaded frontiers: AI-made personas.</p><p>This episode, Jake Creps walks through why public records and government databases deserve more respect than they get, then turns to how generative AI is reshaping the sock puppet game, both for building them and for spotting them.</p><p><strong>Highlights:</strong></p><p>&#128193; <strong>The Case for Boring OSINT</strong> - Why property records, court filings, business registrations, and licensing databases are some of the most reliable anchors in an investigation, and a simple three-step workflow (jurisdiction, search, cross-reference) for getting the most out of them.</p><p>&#127937; <strong>CTF Corner</strong> - A look back at &#8220;The Scammer&#8221; challenge, tracing a phone number&#8217;s country and carrier, plus a preview of the newest live challenge: geolocating an intercepted image.</p><p>&#129302; <strong>AI-Generated Sock Puppets</strong> - An update on how generative AI has changed sock puppet creation and detection since Jake&#8217;s original guide, covering the two paths to building a persona, why degraded image quality can now work in your favor, and how to keep a fabricated identity&#8217;s &#8220;voice&#8221; consistent over time (&#128274; paid subscribers).</p><p>&#128373;&#65039; <strong>OSINT Tools Roundup</strong> - Three new tools from this issue: a threat actor username checker with a clean true/false API, a Venmo OSINT tool for public profile and transaction lookups, and a 2-in-1 username/email scanner covering 240+ platforms.</p><p>If you&#8217;ve ever rolled your eyes at a government database, this one&#8217;s for you, right up until it isn&#8217;t.</p><p><strong>Links:</strong></p><ul><li><p>Issue 109: <a href="https://osintnewsletter.com/p/109">https://osintnewsletter.com/p/109</a></p></li><li><p>Issue 110: <a href="https://osintnewsletter.com/p/110">https://osintnewsletter.com/p/110</a></p></li><li><p>CTF:  <a href="https://ctf.osintnewsletter.com/">https://ctf.osintnewsletter.com/</a></p></li></ul>]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #110]]></title><description><![CDATA[Using Generative AI for Sock Puppet Creation and Identification]]></description><link>https://osintnewsletter.com/p/110</link><guid isPermaLink="false">https://osintnewsletter.com/p/110</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Thu, 18 Jun 2026 13:03:34 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/2ebae374-2637-46eb-a901-9e52306a7f3d_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 110th issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence.</p><div><hr></div><p>&#128680; It&#8217;s becoming increasingly difficult to find OSINT News that isn&#8217;t completely AI generated. I&#8217;m okay with AI generated summaries or blurbs but entire articles written by AI are trash. I&#8217;m unsure if the OSINT News section will persist; it may be reduced to 2 topics instead of 3. Thank you to the writers who remain authentic and produce original content.</p><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p><strong>&#9889; Why Boring is Better: OSINT on Public Records &amp; Government Databases</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;88fc0a5c-68f8-4369-a87f-0a6d3de41a81&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 109th issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #109&quot;,&quot;publishedBylines&quot;:[],&quot;post_date&quot;:&quot;2026-06-04T15:02:00.369Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/91acae06-8f20-4ef1-b172-1020a6393645_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/109&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:199771124,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:12,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1>OSINT News</h1><p>&#128240; <strong>OSINT Field Notes #9: Nothing Was Really Hidden</strong></p><p>The newsletter shows how OSINT researchers use public data and metadata to uncover hidden information tied to conflict, propaganda, and surveillance.</p><p>&#127913; H/T: Benjamin Strick</p><p><a href="https://osintfieldnotes.substack.com/p/osint-field-notes-9-nothing-was-really">Read on OSINT Field Notes&#8230;</a></p><p>&#128240; <strong>Heading Off: New Technique Helps Track Grain Smuggling Expansion to Libya</strong></p><p>The investigation uses OSINT, satellite imagery, and AIS data to track a suspected Russian ship moving stolen Ukrainian grain from Crimea to Libya, revealing sanctions evasion despite GPS spoofing.</p><p>&#127913; H/T: Bellingcat Investigation Team</p><p><a href="https://www.bellingcat.com/news/2026/06/12/shadow-fleet-russian-grain-stolen-ukraine-libya-ais-technique-grumant/">Read on Bellingcat&#8230;</a></p><div><hr></div><h1>OSINT Tools</h1><p>&#128270; <strong>Threat Actor Username Search</strong></p><p>This tool allows you to check if a username is associated with a threat actor. It&#8217;s not a username search, like you&#8217;re used to with Sherlock, it&#8217;s a true/false result. They also have an API. I love this idea.</p><p><a href="https://threatactorusernames.com/">Web App</a></p><p>&#127913; H/T: <a href="https://x.com/CTI__Updates">CTI Updates</a></p><p>&#128270; <strong>Venmo OSINT Tool</strong></p><p>Venmo OSINT is a tool for searching public Venmo profiles and transactions, with lookup, search, and export features.</p><p><a href="https://github.com/denniskeefe/venmo-osint">GitHub</a></p><p>&#127913; H/T: <a href="https://github.com/denniskeefe">Dennis Keefe</a></p><p>&#128270; <strong>User Scanner</strong></p><p>A 2-in-1 OSINT tool for email and username intelligence that scans 240+ platforms to map digital footprints, check account registrations, extract profile data, and export results, with bulk scanning, proxy rotation, and breach intelligence integration.</p><p><a href="https://github.com/kaifcodec/user-scanner">GitHub</a></p><p>&#127913; H/T: <a href="https://github.com/kaifcodec">kaifcodec</a></p><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#9889; <strong>Using Generative AI for Sock Puppet Creation and Identification</strong></p><ul><li><p>Generative AI has come a long way when it comes to making photo-realistic content. In this issue, I&#8217;ll show you some methods you can use to create sock puppet accounts that appear more legitimate, giving you more options in your investigations; <em>alternatively, it&#8217;ll give you the tools to identify sock puppet accounts created using similar methods.</em></p></li></ul><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry there&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p>
      <p>
          <a href="https://osintnewsletter.com/p/110">
              Read more
          </a>
      </p>
   ]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #109]]></title><description><![CDATA[Why Boring is Better: OSINT on Public Records & Government Databases]]></description><link>https://osintnewsletter.com/p/109</link><guid isPermaLink="false">https://osintnewsletter.com/p/109</guid><pubDate>Thu, 04 Jun 2026 15:02:00 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/91acae06-8f20-4ef1-b172-1020a6393645_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 109th issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:</p><ul><li><p>Which data is easiest to find this way</p></li><li><p>Why jurisdictions matter if you want to stay on track</p></li><li><p>How the right workflow can make any OSINT fun</p></li><li><p>&#8230;and why real life isn&#8217;t the X-Files.</p></li></ul><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>Codifying Open Source Intelligence Methodology with AI</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;6f7c8be6-57e7-4f8e-a79f-aa7d7f3f8c45&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 108th issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence.&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #108&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-05-28T13:03:23.639Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/380854b4-a964-4f43-9e8b-c7948f757c1d_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/108&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:198847688,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:19,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>&#127897;&#65039; <strong>If you prefer to listen, here&#8217;s a link to the podcast instead.</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;41b29cdc-494a-4f60-813e-6cc5a49a6d03&quot;,&quot;caption&quot;:&quot;Description&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Episode 19: Codifying OSINT and Calling the Numbers&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-05-29T15:00:39.533Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/9e7f914e-77f3-440b-beee-573be45728bb_1200x630.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/episode-19-codifying-osint-and-calling&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:199307100,&quot;type&quot;:&quot;podcast&quot;,&quot;reaction_count&quot;:7,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1>Why Boring is Better: OSINT on Public Records &amp; Government Databases</h1><p>Public records have a reputation problem. Namely, they&#8217;re boring.</p><p>A government database doesn&#8217;t have the fast-moving, high-noise chaos factor of social media. No avatars, hot takes, or late night posting sprees <a href="https://www.huffingtonpost.co.uk/entry/donald-trump-stephen-colbert-finale_n_6a0ff353e4b0bb04cec5d72e">about that jerk Stephen Colbert</a>. Instead, you&#8217;re working with PDFs, registries and forms that look like they were last accessed in 2002. It&#8217;s enough to bore an investigator <a href="https://www.sciencedirect.com/science/article/pii/S0165176520303554">to sleep</a>.</p><p>Sure, this isn&#8217;t OSINT that screams &#8220;start here&#8221; - but that&#8217;s precisely the point. Public records are unchanging and largely unnoticed, and that makes them some of the most reliable anchors out there. You can spend hours chasing a username that leads nowhere, or watch an account or post vanish mid-investigation when OP <a href="https://www.vox.com/explain-it-to-me/477210/social-media-posts-regret-what-to-do-explained">decides it&#8217;s too cringe</a> to bear. But once a public record&#8217;s recorded, it sticks, and it won&#8217;t have moved in years - no matter how toe-curling.</p><p>Sometimes, with OSINT, boring is better.</p><p>This issue will cover:</p><ul><li><p>What you can get from public records and government databases</p></li><li><p>Where to start without getting lost in endless registries</p></li><li><p>A fun, repeatable OSINT workflow for even the dullest investigations</p></li><li><p>&#8230;and why <a href="https://rollcall.com/factbase/topic/twitter?platform=all&amp;sort=date&amp;sort_order=desc&amp;page=1">Trump&#8217;s tweets</a> are actually relevant here.</p></li></ul><p>Just resting your eyes, right? Let&#8217;s get started.</p><h2>What Counts as a Public Record?</h2><p>Think less X-Files, more just&#8230; Files.</p><p>Put simply: public records are any documents created, filed, or maintained by government bodies as part of official processes. They&#8217;re usually verifiable, real-world data that maps activity in the real world, such as:</p><h3>Property Records</h3><p>The least exciting documents that answer the most useful question: where someone actually lives (or lived). Property records show the ownership of a house, land or business, alongside purchase history, co-owners, and addresses.</p><h3>Court Records</h3><p>If something serious went down, it probably ended up here. Court records cover disputes, and charges, adding the context, timelines, and connections you definitely won&#8217;t find on someone&#8217;s carefully curated online presence. In Florida, for example, arrests are a matter of public record under specific rules - blessing the world with <a href="https://floridaman.com/">Florida Man</a>.</p><h3>Business Registrations</h3><p>Follow the companies, find the employees (or bosses). Business records list directors, shareholders, and addresses for premises. They&#8217;re perfect for mapping who&#8217;s connected to what - especially for financial investigations, or if you&#8217;re looking to verify the wild claims on a subject&#8217;s LinkedIn.</p><h3>Licensing Databases</h3><p>Speaking of verification, these can prove if someone is (or isn&#8217;t) what they claim to be. Licensing records cut through inflated bios with something much less exciting: the truth.</p><p>Depending on the jurisdiction, they can confirm occupations, qualifications, certifications, and sometimes disciplinary actions in sectors like healthcare, law, construction, or transport.</p><h2>Beginner Tools for Digging Government Dirt</h2><p>Don&#8217;t try to play <a href="https://screenrant.com/the-x-files-lone-gunmen-spinoff-failure-fast-cancellation-explained/">The Lone Gunmen</a> straight off the bat. Start simple, with official sources.</p><p>The beginner-friendly following will get you direct access to structured, government-held data for OSINT investigations that get results. No Mulder and Scully shenanigans required.</p><h3>Government Open-Data Portals</h3><p><strong>Pros: </strong>Great for quick wins without advanced tooling.</p><p><strong>Cons:</strong> Easy to get lost.</p><p>The official hubs of &#8220;we&#8217;ll just leave this here&#8221;. Governments publish datasets on everything. Property, crime, spending, infrastructure - they all get dumped here in searchable, downloadable, and surprisingly underused form.</p><h3>County/State Record Search Tools</h3><p><strong>Pros: </strong>Solid and often the fastest way to anchor an investigation in reality.</p><p><strong>Cons:</strong> Interfaces from hell.</p><p>If this type of OSINT could get any less glamorous, it just did. On a local level, registries for property, courts, or business filings usually let you search by name, address, or company. Interfaces can be clunky (and ugly as sin), but the data can be beautiful.</p><h2>A Boredom-Busting Investigation Workflow</h2><p>Let&#8217;s demonstrate why OSINT looks good in beige. Follow these steps for a high hit-rate:</p><ol><li><p><strong>Identify the Jurisdiction</strong></p><p>Start by figuring out where the records you need live. Rules governing database  access can vary quite randomly by country, state, or even county. Get the jurisdiction wrong and you&#8217;ll either get locked out, or waste time combing through the wrong (potentially frustrating) system. Get it right and your search becomes far faster, and far less painful.</p></li><li><p><strong>Search</strong></p><p>Once you&#8217;ve got the jurisdiction, search. Search names, companies, or addresses directly in official databases. Search, search, search. Don&#8217;t overthink it. It&#8217;s that easy.</p></li><li><p><strong>Cross-Reference</strong></p><p>One record is a clue, but four that match is a jackpot. Always cross-check names, addresses, dates, and associates across different databases to validate what you&#8217;re seeing; this is important, real-world data, so mistakes can cost you big.</p></li></ol><p>That&#8217;s it. You should have found what you&#8217;re looking for&#8230; and you&#8217;re still awake!</p><h2>What You Can Learn From Public Record OSINT</h2><p>Public records can help you find the following:</p><h3>Ownership Ties</h3><p>If you find out who owns what, and who they own it with, you can identify a subject&#8217;s partners in both business and life. It&#8217;s common to discover hidden relationships like family ties that aren&#8217;t visible elsewhere online through ownership records.</p><h3>Business Relationships</h3><p>Company filings can help trace networks of influence. Look for repeat partnerships, for example, or the same names in operation across multiple businesses. Structures are the thing to look for here.</p><h3>Legal History</h3><p>If there&#8217;s disputes, criminal charges, civil cases, financial issues&#8230; These can act as great behavioural context, showing patterns over time that help to strengthen your overall investigation.</p><h2>Key Takeaways</h2><p>See? Public records and government databases aren&#8217;t that painful. Sure, it&#8217;s all very static. This OSINT just sits still, being true. While everything else moves (and generates the excitement that comes with it), records don&#8217;t - but that&#8217;s exactly why they&#8217;re priceless.</p><p>You should now know:</p><ul><li><p>Which data is easiest to find this way</p></li><li><p>Why jurisdictions matter if you want to stay on track</p></li><li><p>How the right workflow can make any OSINT fun</p></li><li><p>&#8230;and why real life isn&#8217;t the X-Files.</p></li></ul><p>Still wondering why Trump&#8217;s tweets were relevant in this article? The answer: they&#8217;re a matter of <a href="https://theconversation.com/despite-being-permanently-banned-trumps-prolific-twitter-record-lives-on-152969">public record</a>. The US <a href="https://www.trumplibrary.gov/research/archived-social-media">National Archives</a> has all of them on a database, free to browse. Yes, all of them. Even <a href="https://media-cdn.factba.se/realdonaldtrump-twitter/869766994899468288.jpg">covfefe</a>. What OSINT value one could gain from an <a href="https://x.com/realDonaldTrump/status/1963609005844017347?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1963609005844017347%7Ctwgr%5E2ffef4678ab447eab9bdb9775d624b6908d9a638%7Ctwcon%5Es1_&amp;ref_url=https%3A%2F%2Fwww.al.com%2Flife%2F2025%2F09%2Fdonald-trump-posts-ai-of-himself-dancing-with-cracker-barrels-uncle-herschel-to-ymca.html">AI President dancing with the Cracker Barrel Man</a> is unclear, but it&#8217;s there.</p><p>Maybe we need Mulder and Scully on it after all.</p><div><hr></div><p>&#127937; <strong>New CTF Challenge Live - Secret Meeting</strong></p><p>A new CTF challenge has been posted on our CTF website. This week&#8217;s challenge involves geolocating an image that has been intercepted by a counter intelligence agency.</p><p><a href="https://ctf.osintnewsletter.com/">Start competing in our Capture the Flag (CTF)</a></p><p>&#129667; If you missed the last CTF, <a href="https://ctf.osintnewsletter.com/challenges#The%20Scammer-32">here&#8217;s a link to catch up.</a></p><p>Last week&#8217;s CTF challenge featured a challenge titled &#8220;The Scammer&#8221; where participants were tasked with conducting an investigation on a phone number linked to a suspected scammer, in order to find the country and the phone operator associated to it.</p><p>Searching for the country code +91, we can see that it belongs to India.<br>Using <a href="https://www.emobiletracker.com/trace-process.php">https://www.emobiletracker.com/trace-process.php</a>, we can see that the operator is Reliance Jio.</p><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry. There&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p>]]></content:encoded></item><item><title><![CDATA[Episode 19: Codifying OSINT and Calling the Numbers]]></title><description><![CDATA[Listen now | Tools, tactics, and fresh investigations expanding the open-source intelligence toolkit.]]></description><link>https://osintnewsletter.com/p/episode-19-codifying-osint-and-calling</link><guid isPermaLink="false">https://osintnewsletter.com/p/episode-19-codifying-osint-and-calling</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Fri, 29 May 2026 15:00:39 GMT</pubDate><enclosure url="https://api.substack.com/feed/podcast/199307100/d54c17247a2a503413d76de81188579a.mp3" length="0" type="audio/mpeg"/><content:encoded><![CDATA[<h3>Description</h3><p><em>Tools, tactics, and fresh investigations expanding the open-source intelligence toolkit.</em></p><p>Some of the best OSINT pivots start with the things people forget about. A phone number that has quietly followed someone across a decade of accounts. A methodology buried in a blog post that could be running in the background of every future investigation.</p><p>This episode covers Issues 107 and 108 of The OSINT Newsletter and explores two sides of how modern investigators get more out of what they already have: squeezing real intelligence out of the most overlooked data point in the toolkit, and turning the methodology in your head (and other people&#8217;s heads) into something an AI agent can run on your behalf.</p><p>In Episode 19 of The OSINT Podcast, host Jake Creps starts with Issue 107 and one of the most underrated data points in the toolkit: the phone number. He walks through what intelligence actually comes from a number, where to check first without overcomplicating it, and a clean five-step workflow from standardising the format through to pivoting outward into the wider account network. He covers the platforms worth checking (WhatsApp, Telegram, Signal, Truecaller, Sync.ME), the carrier and HLR lookups that ground a number geographically, and the high-value pivots, usernames, social accounts, and breach data, that turn a single number into a network. He closes with how to handle disposable numbers and burner tactics, where the absence of data is itself a signal.</p><p><strong>Highlights include:</strong></p><p>&#128222; <strong>What a Phone Number Actually Tells You</strong> &#8211; geographic origin, platform presence, and identity fragments hiding in plain sight.</p><p>&#129517; <strong>The Five-Step Workflow</strong> &#8211; from standardising the format to pivoting outward, a clean methodology for running phone number OSINT without skipping steps.</p><p>&#128293; <strong>Burner Logic</strong> &#8211; why disposable numbers are not a dead end, and how patterns of behaviour and gaps in data become signals in their own right.</p><p>&#129302; <strong>Codifying Methodology</strong> &#8211; discovering methods worth codifying with a Google Dork, turning them into local markdown, and chaining skills together into a continuous discovery engine.</p><p>&#128279; <strong>A Worked Investigation</strong> &#8211; running /username through Sherlock, pivoting into /person-search on nxthacker99, and producing a full subject profile assessment with named intelligence gaps.</p><p>Whether the investigation starts with a single phone number or a methodology lifted from someone else&#8217;s blog post, Episode 19 is about getting more out of the OSINT you already have in front of you.</p><p><strong>References</strong></p><ul><li><p><a href="https://osintnewsletter.com/p/107">OSINT Newsletter &#8211; Issue 107</a></p></li><li><p><a href="https://osintnewsletter.com/p/108">OSINT Newsletter &#8211; Issue 108</a></p></li></ul>]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #108]]></title><description><![CDATA[Codifying Open Source Intelligence Methodology with AI]]></description><link>https://osintnewsletter.com/p/108</link><guid isPermaLink="false">https://osintnewsletter.com/p/108</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Thu, 28 May 2026 13:03:23 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/380854b4-a964-4f43-9e8b-c7948f757c1d_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 108th issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence.</p><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>Call Data: OSINT on Phone Numbers</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;cca72d0f-310d-4c15-8b53-90d5b886dbad&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 107th issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #107&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-05-21T13:03:25.549Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/4f34bee8-36dd-4e4c-a6b7-14442d53c9f8_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/107&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:195889149,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:22,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1>OSINT News</h1><p>&#128240; <strong>How To Investigate A Person Of Interest In 2026</strong></p><p>An advanced guide on person search built for the year 2026. It includes tools, tactics, and techniques using available methodology. You can use this guide to build a Claude skill and augment it with your own methods.</p><p><a href="https://preciousvincentct.medium.com/how-to-investigate-a-person-of-interest-in-2026-77dfaadbe7e7">Read on Medium&#8230;</a></p><p>&#127913; H/T: Precious Vincent</p><p>&#128240; <strong>Inside Modern OSINT: Detecting Disinformation, Tools of the Trade, and the Ethics That Shape It</strong></p><p>An OSINT guide on tracking coordinated disinformation through timing patterns, account behavior, and cross-platform signals, using verification tools like image search, geolocation, and archives, while considering privacy risks and ethical challenges in open-source investigation.</p><p><a href="https://www.impactgrid.org/post/inside-modern-osint-detecting-disinformation-tools-of-the-trade-and-the-ethics-that-shape-it">Read on Impact Grid&#8230;</a></p><p>&#127913; H/T: Zoya Baig</p><p>&#128240; <strong>Signals in the Noise: Open Source Intelligence (OSINT) for AI Loss of Control Detection</strong></p><p>An advanced OSINT/CTI framework for detecting AI loss of control. It maps threat models, observable traces like user transcripts and inference choke points, plus monitoring techniques using available methodology.</p><p><a href="https://download.ssrn.com/2026/5/8/6735558.pdf?response-content-disposition=inline&amp;X-Amz-Security-Token=IQoJb3JpZ2luX2VjEFUaCXVzLWVhc3QtMSJGMEQCIFQP3qGk%2Br7buNt%2FzMHvBf2uQlsWdpFnJU0VLRwiO1zcAiBUd8bKYumELnaKphMXVS%2BoVaVLOJ51ry0oEdqSE4HQISq9BQgeEAQaDDMwODQ3NTMwMTI1NyIMSaGymItTvDwO8XYEKpoFAHcpMScojeOS7zO4wZ6kA%2Bc2a3z%2Bj4MwVNKDz579V04L2jB6I6GGp4uTTViGeVjjPWp0t6Jfx%2B9oDxRlkfT2AWhJnm4BslUjlfBpYIPfv%2FRGCpykZTydD6bqOTJAA9u8iGiOPnC%2FliywRRCftc%2F01M90MBp5TyyZfQtE7rrUGMeolIUA8DZ501pthjMD0S7BdV74hLGGohfHGWjOHYkFrbnciy703Jyf6M0VDeGaO8Sz70nDQ93NwsBBAwjA7Ln3G7%2Bp%2FZSVBVLWZRAOnrjeDSMNY1o2pirLL%2F3WpIzOOcMxc1FDV5M13kjwxEKyL6DKdiBXgnpuQwps7WD3GMCe1e5HvJKUphSWR6AAncTGatEedi916lFKRTtSXcNrKjoyV%2B4Fb5rny2%2FwM9NzYDjIQL%2B79QgA3PpZLcohA8Waxgg7OSwpWbeimNa%2BqnIuIRPt%2Ff8QMOIZ0VOKVBZmRM0i%2FECK4x23pLS1NPboi0d8Vr6gqYl2frCxtke%2Fdlu%2B1P4hPoLV1NraHtu2V7jHWEZWrdTCMdkPrsb0%2B118deuazJhsZNPoFDfzH%2Fwq2JYPZ8CELhPdBoyhu%2FENNr1aHUhby6Dscs1A3%2FWdF3RSoMWQtPHedogmCGAC5eNTuD95brxjwfdKrQeizjaR1mpEKY0buZ2H4ABsyTzUJ5MjtEiAjqwa2JOnmVEDC2y%2BGIooHnNAZr92w%2B6d1k5DgZQwSQ%2FMsKoSVLzR6U50MygkPQn0tad%2BKlGvbGrEG9PCDgxi9o4jx%2BMaSYTgRisXx1OwSvim1uPeplXgq77T4N0XLcynofDQJTdeDW6Bz3yAaZbpVqXeHE9A0GzNOuywN6F4Pv1OKDANWjJj%2FfSBjF6aOXccg6ckVMC1q8sHoHFXMKaowdAGOrIBsXnkpiXVqfi4JbQdz0kN%2BOsP26didTHXAHtACiq3SGGnzTJn86pyiKENw1s6pwTWgcCXacb7ha%2BMxC2wN%2BY1kdZziOo6zGuAAxRTeM8wTgNUifGkL1%2FGxvd8SUOA%2BUWY7%2FpexIzhhhlT6ZUv7jFXtTqgYNu8kzgZug8SqAcRpbzV6EcvMjqRpqZDGWfqpWZIAhk%2FT9wICistCgsKF19Gv0OCMAs4KCEj8XqqOBSIgS0nZg%3D%3D&amp;X-Amz-Algorithm=AWS4-HMAC-SHA256&amp;X-Amz-Date=20260522T141145Z&amp;X-Amz-SignedHeaders=host&amp;X-Amz-Expires=300&amp;X-Amz-Credential=ASIAUPUUPRWE2U3TUVDW%2F20260522%2Fus-east-1%2Fs3%2Faws4_request&amp;X-Amz-Signature=2dfc69d6aeb779ecda9a6e970df23949b8538181b92dce3826c94273be885eb3&amp;abstractId=6735558">Read the paper&#8230;</a></p><div><hr></div><h1>OSINT Tools</h1><p>&#128270; <strong>OpenOSINT</strong></p><p>OpenOSINT is an open-source OSINT framework for collecting, organizing, and analyzing publicly available data to support investigations, combining automation tools and modular workflows for reconnaissance, data gathering, and information analysis.</p><p><a href="https://github.com/OpenOSINT/OpenOSINT">GitHub</a></p><p>&#127913; H/T: Tommaso Bertocchi</p><p>&#128270; <strong>Open Graph Intel (OGI)</strong></p><p>OGI is an OSINT-focused tool for visualizing and analyzing connections in data, helping map relationships between entities, sources, and signals to support investigative workflows and structured analysis of information networks.</p><p><a href="https://ogi.khas.app/">Web App</a></p><p>&#127913; H/T: khashashin</p><p>&#128270; <strong>Anthropic Courses</strong></p><p>Anthropic&#8217;s learning hub is a training platform providing structured courses on using Claude, AI workflows, and developer topics, with lessons, quizzes, progress tracking, and certificates for completion.</p><p><a href="https://anthropic.skilljar.com/">Anthropic Academy</a></p><div><hr></div><p>&#127937; New CTF Challenge Live - The Scammer</p><p>A new CTF challenge has been posted on our CTF website. This week&#8217;s challenge involves </p><p>conducting an investigation on a phone number linked to a suspected scammer.</p><p><a href="https://ctf.osintnewsletter.com/">Start competing in our Capture the Flag (CTF) </a></p><p>&#129667; If you missed the last CTF, <a href="https://ctf.osintnewsletter.com/challenges#Last%20Order-31">here&#8217;s a link to catch up</a>. </p><p>Last week&#8217;s CTF challenge featured a challenge titled &#8220;Last Order&#8221; where participants were tasked with finding a restaurant&#8217;s location, and the dish that a suspect had ordered.</p><p>Challenge Solution WU : </p><p>Using a reverse image search on the provided cctv image, we find a match showing a restaurant called Amor Gastronomia in London on TheFork.</p><p>By checking the restaurant&#8217;s official website, the address is listed in the footer as Halloway Road 139.</p><p>Finally, reviewing the restaurant&#8217;s London menu, the most expensive signature pasta dish appears to be TAGLIOLINI AL TARTUFO.</p><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#9889; <strong>Codifying Open Source Intelligence Methodology with AI</strong></p><ul><li><p>There are dozens if not hundreds of methods for open source intelligence collection, analysis, and dissemination. Everyone has a different process, too. In this issue, I&#8217;m going to show you how you can create a repository of methodology that you can use to instruct your AI of choice to automate. </p></li></ul><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry there&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year. I&#8217;ll start with <strong>How To Investigate A Person Of Interest In 2026 </strong>from the OSINT news section.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p>
      <p>
          <a href="https://osintnewsletter.com/p/108">
              Read more
          </a>
      </p>
   ]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #107]]></title><description><![CDATA[Call Data: OSINT on Phone Numbers]]></description><link>https://osintnewsletter.com/p/107</link><guid isPermaLink="false">https://osintnewsletter.com/p/107</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Thu, 21 May 2026 13:03:25 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/4f34bee8-36dd-4e4c-a6b7-14442d53c9f8_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 107th issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:</p><ul><li><p>What intelligence comes from a phone number</p></li><li><p>Where to check first (without overcomplicating it)</p></li><li><p>A clean workflow for investigations</p></li><li><p>&#8230;and why it&#8217;s not worth changing your name to Spiderman.</p></li></ul><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>Creating Claude Skills for Open Source Intelligence</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;3dc8a87d-7534-43d1-b62c-eaf65c8b1c61&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 106th issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #106&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-05-14T13:02:44.570Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/2f311190-b9ba-425f-99fd-ce9f98592713_1729x910.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/106&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:196968569,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:19,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>&#127897;&#65039; <strong>If you prefer to listen, here&#8217;s a link to the podcast instead.</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;d988d096-7872-4d37-9866-6e3390272fd8&quot;,&quot;caption&quot;:&quot;Some intelligence is buried deep in the shadows of the internet - and some of it is built by you, for you, with a few lines of plain English.&quot;,&quot;cta&quot;:null,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Episode 18: Episode 18: Dark Web Spelunking and Skilling Up Claude&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-05-15T13:03:08.822Z&quot;,&quot;cover_image&quot;:&quot;https://substack-video.s3.amazonaws.com/video_upload/post/197525105/2bb95886-371e-4706-b38b-5f9081994258/transcoded-1778689332.png&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/episode-18-episode-18-dark-web-spelunking&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:197525105,&quot;type&quot;:&quot;podcast&quot;,&quot;reaction_count&quot;:16,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1>Call Data: OSINT on Phone Numbers</h1><p>Phone numbers sit in a strange place in OSINT. They&#8217;re near-ubiquitous and tied to everything, but as a result very easy to overlook. Unlike usernames (which can change) or email addresses (easy to create), numbers tend to stick. They follow people across platforms, accounts, years of activity, and even States. <a href="https://www.pewresearch.org/methods/2016/08/01/moving-without-changing-your-cellphone-number-a-predicament-for-pollsters/#:~:text=At%20the%20state%20level%2C%20the%20geographic%20accuracy%20rate%20tends%20to,regardless%20of%20landline%20telephone%20ownership.">Surprisingly few people</a> want the hassle of learning a new number, even when they get a new phone.</p><p>You might create a new Gmail, and change your username (or legal name) to<a href="https://www.mirror.co.uk/news/weird-news/meet-the-people-whove-given-themselves-88857"> Baron Venom Balrog Sabretooth Vader Megatron Vegeta Robotnik Magneto Bison Sephiroth Lex Luthor Skeletor Joker Grind</a>, but your phone number is mostly static. This persistence makes phone numbers one of the most reliable anchors you can work with for OSINT.</p><p>Sometimes OSINT is just a number. This issue will teach you:</p><ul><li><p>What intelligence comes from a phone number</p></li><li><p>Where to check first (without overcomplicating it)</p></li><li><p>A clean workflow for investigations</p></li><li><p>&#8230;and why it&#8217;s not worth changing your name to Spiderman.</p></li></ul><p>Calling Baron Grind&#8230;</p><h2>What Can Phone Number OSINT Uncover?</h2><p>The infrastructure of phone numbers is key to what you can get out of them through OSINT. Every number is tied to a telecom system, to a region, and only then to a web of online accounts. That means even before you get into deeper online OSINT, there are three immediate layers of value:</p><h3>Geographic Origin</h3><p>Country codes (+1, +44, +91, etc.) are <a href="https://countrycode.org/">GeoINT in themselves</a>. These one or two nifty numbers instantly place a phone&#8217;s owner at a national level. If you can find out carrier data, you can narrow a rough operating region even further. At the very least, you can find out if your target&#8217;s in the US or Uzbekistan.</p><h3>Platform Presence</h3><p>Many platforms use phone numbers as their backbone identifier. If a number is registered on apps like <a href="https://blog.pagefreezer.com/whatsapp-osint-investigation-guide">WhatsApp</a> or Telegram, you may be able to view profile photos, usernames, or activity signals just by knowing the right digits.</p><h3>Identity Fragments</h3><p>Even before the real OSINT starts, people litter the world with identity fragments - by reusing their static phone number. Old listings, forgotten profiles, or scraped datasets can quietly connect multiple pieces together.</p><h2>Some Phone OSINT Tools That Actually Work</h2><p>You don&#8217;t need a complex stack to begin phone OSINT. That&#8217;s what makes phone numbers such a universally popular data point. In fact, the most effective tools and methods are often at your fingertips.</p><h3>Caller ID Platforms</h3><p><strong>Sync.ME</strong>, <strong>NumLookup</strong>, and <strong>That&#8217;s Them</strong> scan public records and user-contributed data, drawing on that to see if a number&#8217;s been identified before. Results can be inconsistent, so treat them as leads not gospel. If multiple sources align, then they&#8217;re worth your attention.</p><h3>Checking the Apps</h3><p>Here&#8217;s an old OSINT trick. Save the number as a contact, then check <strong>WhatsApp</strong>, <strong>Telegram</strong>, or <strong>Signal</strong>. Adding a contact will reveal a profile photo and status - Telegram will even expose a username.</p><h3>Caller ID Platforms</h3><p><strong>Truecaller</strong>, <strong>Hiya</strong>, and <strong>CallApp</strong> use crowdsourced data, so again, cross-reference. Patterns across multiple platforms mean something.</p><h3>Finding Carrier Data</h3><p>If you know nothing about the carrier, services like <strong>Numverify</strong>, <strong>Twilio Lookup</strong>, or other free HLR lookup tools can help identify the telecom provider and line type (mobile, VoIP, or landline). Cross-check as always.</p><h2>Getting Started: A Clean Workflow (Don&#8217;t Skip Steps)</h2><p>Investigating a number&#8230; That&#8217;s easy, right? Think you can improvise? Don&#8217;t. A structured approach will always get better results.</p><p>Give this workflow a try:</p><p><strong>1. Standardize the Format</strong></p><p>Always convert to international format. Tools and platforms require international format numbers and inconsistencies will cost you results. What&#8217;s more, country codes aren&#8217;t data you want to ignore.</p><p><strong>2. Location, Location, Location</strong></p><p>Use that country code. Combine with any carrier info to ground your investigation geographically; when you&#8217;re stratifying your findings later, you&#8217;ll be glad you did.</p><p><strong>3. Check for Live Accounts</strong></p><p>Run the number through message platforms. You&#8217;re looking for anything visible on Telegram or WhatsApp: images, usernames, timestamps etc.</p><p><strong>4. Look for Repetition</strong></p><p>Search the number directly. Then try variations, like with or without spaces. Reuse is what you&#8217;re hunting for.</p><p><strong>5. Pivot and Expand</strong></p><p>Got a hit? Pivot outward. Search that identifier (a username, profile, email or listing). Start building out the wider account network.</p><p>&#8230;And just like that, you&#8217;re doing phone number OSINT.</p><h3>What Counts As a High-Value Pivot?</h3><p>You might be wondering which leads are strong enough to take that fifth step. The real value comes from the following data points:</p><p><strong>&#8594; Usernames<br></strong>If you see the same username twice, that&#8217;s your bridge into wider platform analysis; especially if the username is conspicuously unusual or unique. There&#8217;s unlikely to be two people choosing Baron_V_B_S_V_M_V_R_M_B&#8230; (You get the picture).</p><p><strong>&#8594; Social Accounts<br></strong>If a number was required to sign up, some platforms expose profiles directly. Others reveal connections indirectly. Either way, a linked social account is OSINT gold.</p><p><strong>&#8594; Breach Data<br></strong>If the number appears in leaked datasets or on <a href="https://haveibeenpwned.com/">HaveIBeenPwned</a>, it can link to emails, credentials, and historic activity. As always, be careful working with data that comes from an inherently sketchy source.</p><h2>Feel the Burn: Disposable Numbers &amp; Evasion Tactics</h2><p>OSINT investigators chasing fraud, spam networks, or illicit activity face up to a unique challenge. Phone number stability is usually the USP here. What if the number you&#8217;re looking for is temporary by design?</p><p><a href="https://www.techtarget.com/whatis/definition/burner-phone">Burner phone</a> numbers get spun up quickly, used briefly, and abandoned just as fast. The aim is to get a phone number, get what you need from it, and <a href="https://www.youtube.com/watch?v=gAYL5H46QnQ">THROW IT ON THE GROUND</a>. The point of virtual numbers, VoIP services, and burner SIMs is to create numbers and accounts without tying them to a long-term, real identity - the very thing that makes phone number OSINT so easy.</p><p>So, change of tactics. Look for <strong>patterns of behaviour</strong>, not long-term reuse. VoIP numbers, for example, might cluster around specific services or regions, or repeatedly appear attached to similar types of accounts or listings. That would signal the same person, exhibiting the same behavior over and over again.</p><p>Gaps are a biggie too: no reverse lookup data, no caller ID history, and limited presence across platforms are absences that constitute a signal in themselves.</p><p>If a number looks &#8220;empty&#8221;, don&#8217;t assume it&#8217;s useless. It may just be designed that way.</p><h2>Key Takeaways</h2><p>Phone number OSINT works because numbers are mostly static and stable things. You can change your email, your socials, or even your name, but most people are lazy with their phones. And unlike physical addresses or Social Security numbers, people <a href="https://www.wcpo.com/money/consumer/dont-waste-your-money/can-i-have-your-phone-number-why-to-think-twice-before-saying-yes">hand out their phone numbers</a> like candy.</p><p>You should know:</p><ul><li><p>One number won&#8217;t tell you everything, but it might tell you where to look next</p></li><li><p>Use simple methods before complex ones</p></li><li><p>Follow number reuse and patterns</p></li><li><p>Build outward: number &#8594; account &#8594; network</p></li></ul><p>&#8230;and when you change your name to <a href="https://www.bbc.co.uk/news/uk-england-nottinghamshire-16319610">Emperor Spiderman Gandalf Wolverine Skywalker Optimus Prime Goku Sonic Xavier Ryu Cloud Superman HeMan Batman Thrash</a> in witness protection, maybe change your number.</p><p><strong>Until next time, investigators!</strong></p><div><hr></div><p>&#127937; <strong>New CTF Challenge Live - Last Order</strong></p><p>A new CTF challenge has been posted on our CTF website. This week&#8217;s challenge involves analyzing surveillance footage from a blurred traffic camera frame to identify a suspect&#8217;s location. Investigators believe the suspect entered a highly rated restaurant, ordered its most expensive signature pasta dish, and left in a hurry. Your task is to determine the restaurant, its exact address, and the specific pasta dish ordered.</p><p><a href="https://ctf.osintnewsletter.com/">Start competing in our Capture the Flag (CTF) </a></p><p>&#129667; If you missed the last CTF, <a href="https://ctf.osintnewsletter.com/challenges?#The%20Dark%20Web%20Hacker-30">here&#8217;s a link to catch up</a>. </p><p>Last week&#8217;s CTF challenge featured a challenge titled &#8220;The Dark Web Hacker&#8221; where participants were tasked with finding a hacker&#8217;s specific email address linked to a specific hacking forum.</p><p>Challenge Solution WU : </p><p>Knowing that the username had been reused across multiple forums and appeared in several data breaches, we searched for the username &#8220;sarkstic&#8221; on breach.vip. This led us to a World of Warcraft forum account on OwnedCore, along with the email address associated with it: dreadfuleyes@yahoo.com</p><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry. There&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p>]]></content:encoded></item><item><title><![CDATA[Episode 18: Dark Web Spelunking and Skilling Up Claude]]></title><description><![CDATA[Listen now (39 mins) | Tools, tactics, and fresh investigations expanding the open-source intelligence toolkit.]]></description><link>https://osintnewsletter.com/p/episode-18-episode-18-dark-web-spelunking</link><guid isPermaLink="false">https://osintnewsletter.com/p/episode-18-episode-18-dark-web-spelunking</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Fri, 15 May 2026 13:03:08 GMT</pubDate><enclosure url="https://api.substack.com/feed/podcast/197525105/3625989197a4eafcaf030f3d243a17d3.mp3" length="0" type="audio/mpeg"/><content:encoded><![CDATA[<p>Some intelligence is buried deep in the shadows of the internet - and some of it is built by you, for you, with a few lines of plain English.</p><p>This episode covers Issues 105 and 106 of The OSINT Newsletter and explores two very different sides of modern investigations: going deeper into the Dark Web for intelligence, and using AI to automate the repeatable parts of your workflow.</p><p>In Episode 18 of The OSINT Podcast, host Jake Creps picks up where Part One left off and takes investigators further into Dark Web intelligence - or DARKINT. He recaps the layered structure of the surface, deep, and dark web, then digs into the beginner toolkit: onion browsers, hidden services, public leak indexes, and onion search engines. Jake walks through a practical methodology for tracing identifiers - emails, usernames, and phone numbers - from breach data on the Dark Web back up to the surface, and explains how to correlate and validate findings without falling for false positives.</p><p>He also pulls no punches on the limitations. DARKINT is an adversarial, high-risk environment full of manipulated datasets, unverifiable attribution, and content that can stay with an investigator long after the browser is closed. The episode covers the compliance considerations of handling breached data and the psychological risks of working in this space - and why both deserve serious thought before diving in.</p><p>From there, the episode shifts to something brand new: building Claude Skills for OSINT. Jake explains what Claude Skills are - reusable, plain-language instruction sets that turn AI into a reliable part of your investigative workflow - and walks step-by-step through creating one for username search. No code required. He covers picking the right workflow to automate, writing the skill itself, testing it inside Claude Code with Sherlock, and refining it with simple natural-language tweaks.</p><p>The episode closes with a look at how to supercharge an OSINT skill: instructing Claude to pivot on its own findings, find new tools when collection hits a wall, and fall back to manual methods when scripts fail. It is a glimpse of what investigative automation actually looks like when AI stops being a novelty and starts doing real work alongside the analyst.</p><p><strong>Highlights include:</strong></p><p>&#129477; <strong>DARKINT Toolkit</strong> &#8211; onion browsers, hidden services, leak indexes, and onion search engines explained for beginners curious about web spelunking.</p><p>&#128279; <strong>Surface-Bound Pivots</strong> &#8211; a step-by-step methodology for tracing emails, usernames, and phone numbers from breach data back to the surface web.</p><p>&#9888;&#65039; <strong>The Monsters Under The Bed</strong> &#8211; the real limitations of DARKINT, from manipulated datasets and unverifiable attribution to the psychological toll of the work.</p><p>&#129302; <strong>Building Claude Skills</strong> &#8211; how to turn a repeatable OSINT workflow into a reusable Claude Skill, with a full walkthrough of automating a username search using Sherlock.</p><p>&#128640; <strong>Supercharging Automation</strong> &#8211; instructing Claude to pivot on its findings, hunt for new tools, and fall back to manual methods when scripts come up short.</p><p>Whether the data is hiding in the dark or waiting to be unlocked by the right set of instructions, Episode 18 shows how modern investigators are reaching both.</p><p><strong>References</strong></p><ul><li><p><a href="https://osintnewsletter.com/p/105">OSINT Newsletter &#8211; Issue 105</a></p></li><li><p><a href="https://osintnewsletter.com/p/106">OSINT Newsletter &#8211; Issue 106</a></p></li></ul>]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #106]]></title><description><![CDATA[Creating Claude Skills for Open Source Intelligence]]></description><link>https://osintnewsletter.com/p/106</link><guid isPermaLink="false">https://osintnewsletter.com/p/106</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Thu, 14 May 2026 13:02:44 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/2f311190-b9ba-425f-99fd-ce9f98592713_1729x910.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 106th issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence</p><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>OSINT and the Dark Web: Part Two</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;fc8427d5-d32d-4666-a0a0-bd27bf2afb7f&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 105th issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #105&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-05-07T13:02:37.991Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/ea01acf7-49d5-481b-9fc9-fb830dbe64c6_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/105&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:195371625,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:20,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1>OSINT News</h1><p>&#128240;  <strong>What happens when agentic AI meets intelligence analysis?</strong></p><p>Agentic AI, Maltego MCP servers, conflict monitoring, and self-hosted intel platforms are opening up new possibilities for OSINT, but the tools only matter if the analyst knows how to turn information into intelligence.</p><p>&#127913; H/T: Aaron Roberts</p><p><a href="https://www.linkedin.com/posts/aaroncti_osint-tools-thursday-30042026-ugcPost-7455325870900117504-KCHD/?utm_source=share&amp;utm_medium=member_ios&amp;rcm=ACoAABq6F0oBbmG93OZu2jSa-VZL4TF8Qv14q1Y">Read on LinkedIn&#8230;</a></p><p>&#128240; <strong>Vibe Coding Is Becoming an OSINT Risk</strong></p><p>AI is making it easier to build and adopt OSINT tools, but the real risk starts when investigators trust software they do not fully understand to shape analysis, workflows, and operational decisions.</p><p><a href="https://www.dutchosintguy.com/post/vibe-coding-is-becoming-an-osint-risk">Read on DutchOSINTGuy&#8230;</a></p><p>&#127913; H/T: Niko Dekens</p><p>&#128240; <strong>Turn Off ChatGPT&#8217;s New Ad Tracking</strong></p><p>ChatGPT&#8217;s free tier is now opt-in to ad tracking and data sharing by default, linking user activity to marketing systems unless you actively turn it off in settings.</p><p><a href="https://onlinesafety.substack.com/p/turn-off-chatgpts-new-ad-tracking">Read on Tate&#8217;s Online Safety Community&#8230;</a></p><p>&#127913; H/T: Tate Jarrow</p><div><hr></div><h1>OSINT Tools</h1><p>&#128270; <strong>BamQam</strong></p><p>A new OSINT-style dashboard that aggregates live geopolitical and military data into a map-based intelligence feed, with unclear provenance and trust level.</p><p><a href="https://bamqam.com/">Web App</a></p><p>&#128270; <strong>DrishX</strong></p><p>A satellite-powered freight intelligence tool that uses open-source orbital imagery to detect and analyze logistics movement patterns like vehicle flow for OSINT-style monitoring and trend analysis.</p><p><a href="https://github.com/sparkyniner/DRISH-X-Satellite-powered-freight-intelligence-?utm_source=">GitHub</a></p><p>&#127913; H/T: Sairaj Balaji</p><p>&#128270; <strong>claude-osint</strong></p><p>An OSINT automation framework built on Claude that structures investigative workflows for research and intelligence tasks.</p><p><a href="https://github.com/elementalsouls/Claude-OSINT">GitHub</a></p><p>&#127913; H/T: Sachin Sharma</p><div><hr></div><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#9889; <strong>Creating Claude Skills for Open Source Intelligence</strong></p><ul><li><p>Claude Skills allow you to automate a significant portion of your workflow using very specific instructions. In this issue, I&#8217;m going to show you how you can fully automate a username search, including pivoting to additional methods based on findings, all with a single request from Claude.</p></li></ul><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry there&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p>
      <p>
          <a href="https://osintnewsletter.com/p/106">
              Read more
          </a>
      </p>
   ]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #105]]></title><description><![CDATA[OSINT and the Dark Web: Part Two]]></description><link>https://osintnewsletter.com/p/105</link><guid isPermaLink="false">https://osintnewsletter.com/p/105</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Thu, 07 May 2026 13:02:37 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/ea01acf7-49d5-481b-9fc9-fb830dbe64c6_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 105th issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:</p><ul><li><p>The tools you need to know</p></li><li><p>Strategies and limitations</p></li><li><p>Following data to the surface</p></li><li><p>&#8230;and how to fight the monsters under the Internet&#8217;s bed.</p></li></ul><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>Gathering OSINT from Live Traffic: Datasets and Cameras</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;947d033c-f84b-4794-b7a6-3bc3099039cd&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 104th issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence.&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #104&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-04-30T13:01:43.501Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/38c3eb70-e542-42d7-8ea1-87deef95e5e8_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/104&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:182551367,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:20,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>&#127897;&#65039; <strong>If you prefer to listen, here&#8217;s a link to the podcast instead.</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;f46ecd7b-bdeb-43e4-a6a9-9f77e8210b35&quot;,&quot;caption&quot;:&quot;Not all intelligence lives on the surface. Some of the most valuable data is deliberately hidden - and some of it is hiding in plain sight, flowing through the roads around you.&quot;,&quot;cta&quot;:&quot;Listen now&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Episode 17: Dark Web Intelligence and Gathering OSINT from Live Traffic&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-05-01T13:02:56.423Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/0d3a3e61-c166-4bb8-8a87-d3e5407515e1_1200x630.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/episode-17-dark-web-intelligence&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:195728208,&quot;type&quot;:&quot;podcast&quot;,&quot;reaction_count&quot;:9,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1>OSINT and the Dark Web: Part Two</h1><p>Welcome (back) to the dark side. <a href="https://knowyourmeme.com/memes/come-to-the-dark-side">We have OSINT</a>.</p><p>Although it looks dangerous, DARKInt it&#8217;s perfectly safe if you know how - and if you read last week&#8217;s issue, you probably do. Without further introduction, let&#8217;s go even deeper into Dark Web OSINT.</p><p>In Part Two, we&#8217;ll cover:</p><ul><li><p>The tools you need to know</p></li><li><p>Strategies and limitations</p></li><li><p>Following data to the surface</p></li><li><p>&#8230;and how to fight the monsters under the Internet&#8217;s bed.</p></li></ul><p>Don&#8217;t forget your flashlight.</p><h2>Recap: What is the Dark Web?</h2><p>If the internet is an iceberg, it has three layers: the surface, deep, and dark web.</p><ul><li><p><strong>Surface Web: </strong>The normie &#8221;internet&#8221;. Indexed by search engines like Google and Bing.</p></li><li><p><strong>Deep Web: </strong>The &#8220;invisible&#8221; <a href="https://www.osint.industries/post/osint-on-the-deep-web-a-comprehensive-guide-to-deep-web-and-dark-web-osint">90% of the web</a> you don&#8217;t need a specific tool to access. Online banking, private networks, and corporate systems live here.</p></li><li><p><strong>Dark Web:</strong> The unindexed 1-6% of the web, only accessible via specialised tools. Always anonymised, always encrypted.</p></li></ul><p>What you find in this dark bottom layer - open-source or not - is dark web intelligence. So, think of Dark Web intelligence (or DARKINT) as OSINT&#8217;s emo little brother. Got it? Good.</p><h2>A Beginner&#8217;s Guide to DARKInt Tools</h2><p>To access the Dark Web, specific tools are required. Here&#8217;s a conceptual run-down of the best tools for beginners curious about traversing the depths. Of course, this overview is intended for educational purposes only, rather than encouraging active exploration as soon as possible - it&#8217;s best to think before you leap.</p><h3>Browsers Are Like Onions</h3><p>TOR is the most (in)famous of the bunch. Short for <a href="https://www.avg.com/en/signal/what-is-tor-browser-and-is-it-safe">The Onion Router</a>, TOR is too complex to unpack fully here. What&#8217;s more, we already did that last week.</p><p>Basically, onion browsers work by routing your connection through multiple encrypted layers - a bit like an onion - so no single point can trace your activity. The Dark Web&#8217;s sites then use .onion domains; &#8220;hidden services,&#8221; where both user and host are obscured. Instead of connecting directly, both sides layer up encrypted links via a shared rendezvous point on the TOR network, so nobody knows anybody else&#8217;s true IP This creates the built-in anonymity which makes the Dark Web so popular, keeping everything&#8230; under wraps (sorry).</p><h3>Where&#8217;s The Leak?</h3><p>We know one of the most common forms of DARKInt comes in the form of the humble data breach. Public leak indexes are one of the most beginner-friendly entry points into <a href="https://hackread.com/best-dark-web-intelligence-platforms/">DARKInt</a>, as they point users to large collections of said breached data.</p><p>Unlike raw breach dumps (a.k.a. the actual compromised data) leak indexes are designed for search and discovery, and act as directories or lookup tools, rather than hosting any data directly. They&#8217;re finding where data exists, and how it connects across leaks. Although datasets are traded, reused or repackaged across multiple Dark Web platforms, indexes can often find specific data whether it&#8217;s circulating across the Dark Web or in the wider web bloodstream beyond.</p><p>The usual caveats about breached data apply. There&#8217;s always a <a href="https://www.linkedin.com/pulse/ethical-dilemma-using-data-breach-information-osint-paul-wright-jmmaf">compliance problem</a> when handling potentially stolen data, so treat any data you find as if it were your own.</p><h3>Search Engines Are Like Onions Too.</h3><p>These aren&#8217;t the Dark Web Google. If TOR is your vehicle into the Dark Web, <a href="https://www.breachsense.com/blog/dark-web-search-engines/">onion search engines</a> are more like a slightly unreliable sat-nav; this Garmin won&#8217;t get you there, but it might point you in the right direction. These tools don&#8217;t provide access to anything. Instead, they index and surface .onion sites, helping users discover hidden services they might not know about. Onion search engines:</p><ul><li><p>Index .onion domains and hidden services</p></li><li><p>Enable keyword-based discovery (once you&#8217;re already using TOR)</p></li></ul><p>Unlike TOR browsers (which actually connect you to sites) <a href="https://www.makeuseof.com/how-to-search-dark-web/">onion search engines</a> sit a layer above like the onion&#8217;s outer skin, acting as discovery tools rather than access tools. And because the Dark Web is so transient (sites appear, disappear, or hide deliberately), these engines are best thought of as more treasure hunt than Google search. The coverage on the aforementioned Garmin is patchy, unstable, and often outdated. Still, it works when it doesn&#8217;t drive you into a lake - or an active volcano.</p><h3>Tracing An Account Back to the Surface, Step-By-Step.</h3><ol><li><p><strong>Use the tools above (indexes, search engines) to identify breaches.</strong></p></li><li><p><strong>Extract identifiers (email, username, phone number) from DARKINT sources.</strong></p><ul><li><p>You&#8217;ll need a Tor browser to access them.</p></li></ul></li><li><p><strong>Pivot using emails.</strong></p></li></ol><ul><li><p>Identify email accounts, recovery emails, and profiles just as you would as normal.</p></li></ul><ol start="4"><li><p><strong>Look for usernames.</strong></p></li></ol><ul><li><p>Do the same for usernames - especially look for reuse across social media, forums, or gaming sites.</p></li><li><p>Look for variations, and cross-reference matches as in light-mode OSINT.</p></li></ul><ol start="5"><li><p><strong>Pivot using phone numbers.</strong></p></li></ol><ul><li><p>Investigate links to messaging apps, listings, or leaked records that use breached phone numbers.</p></li></ul><ol start="6"><li><p><strong>Correlate findings.</strong></p></li></ol><ul><li><p>Always combine multiple data points to strengthen attribution.</p></li></ul><p>Lastly&#8230; <strong>Validate carefully.</strong></p><ul><li><p>Watch out for false positives, outdated, or manipulated data - on the Dark Web, these are all over the place</p></li></ul><h2>Key Limitations on DARKInt</h2><p>If these two guides have made the dark, dirty web sound all sunshine and rainbows, now is the time to crush your dreams. There&#8217;s no unicorns skipping around down there. DARKInt has limitations, and plenty of them. Let&#8217;s meet the monsters under the Internet&#8217;s bed.</p><h3>A High Risk Environment</h3><p>Imagine a world where everybody hates each other. That&#8217;s kinda the Dark Web. DARKInt operates within an anonymised, adversarial ecosystem built to keep its infrastructure volatile, and access inconsistent. Elevated operational security risks are baked-in. Hidden services frequently appear and disappear, and interacting with them can expose investigators to threat just by virtue (or vice) of a click. Tread carefully.</p><h3>False-Data Scam-O-Rama</h3><p>Data quality is &#8216;highly unreliable&#8217; to be polite. Breach dumps are often annoyingly duplicated, hopelessly outdated, trickily manipulated, or deliberately seeded with false facts. Financially motivated actors frequently distribute misleading datasets. At worst, you might end up involved in a particularly <a href="https://ktla.com/news/california/hospice-fraud-scheme-267-million/">icky scam</a>. At best, the overall signal-to-noise ratio can reach a hair-tearing level. Be patient.</p><h3>Not Everything is Verifiable</h3><p>So you have that &#8216;highly unreliable&#8217; data. It might never become reliable. Attribution and validation are inherently limited on the Dark Web, where anonymisation layers and restricted visibility are the whole point. So much activity occurs behind closed doors -  in closed networks or private exchanges - that datasets can&#8217;t always be corroborated or independently verified (outside of our dreams). Manage your expectations.</p><h3>Seeing Things You Can&#8217;t Unsee</h3><p>If you work recklessly in DARKInt, you&#8217;re playing psychological Russian roulette. You may encounter material that is disturbing, illegal, or just deeply distressing; content that <a href="https://www.psychiatry.org/news-room/apa-blogs/the-impact-of-trauma-%E2%80%93-even-from-a-distance">stays with you</a> long after you&#8217;ve closed TOR. When people are anonymous, they showcase the worst things humanity can do to each other. Even if you do everything right, you can end up seeing something deeply wrong. Have caution.</p><h2>Key Takeaways</h2><p>Our journey through the Web&#8217;s dark side is coming to an end. You should now know:</p><ul><li><p>All DARKINT is OSINT, but not all OSINT is DARKINT</p></li><li><p>The tools beginners need to go web spelunking</p></li><li><p>How to bring dark data into the light</p></li><li><p>&#8230; and why the Dark Web isn&#8217;t where the unicorns live.</p></li></ul><p>See you next issue, investigators!</p><div><hr></div><p>&#127937; New CTF Challenge Live - Covert Communication<br><br>A new CTF challenge has been posted on our CTF website. This week&#8217;s challenge involves analyzing a covert communications channel used by a suspected intelligence operative and finding the name of the location.<br><br><a href="https://ctf.osintnewsletter.com/">Start competing in our Capture the Flag (CTF)</a> </p><p>&#129667; If you missed the last CTF, <a href="https://ctf.osintnewsletter.com/challenges#The%20Dark%20Web%20DB-28">here&#8217;s a link to catch up</a>. <br><br>Last week&#8217;s CTF challenge featured a challenge titled &#8220;The Dark Web DB&#8221; required participants to investigate a suspected data breach involving Quick, where a threat actor allegedly published a customer database on the dark web and uncover key details about the publication.</p><p>To solve the challenge, we need: </p><ol><li><p>Copy &amp; paste the onion link into Wayback Machine.</p></li><li><p>Then we filter the results by date and select 06 March of 2026. We get a result for 06 March 2026 at 08:01:04. </p></li><li><p>We click on it, looking at the forum, on the right corner, we can see a post regarding a french and Belgian database. </p></li><li><p>It says that it was published 10 mins ago, we can also see the username of the threat actor who published it, which is: <strong>sarkstic</strong>. </p></li><li><p>Knowing that the forum was crawled at 08:01:04 and that the post says 10 mins ago, the post was made at 07:51:04.</p></li></ol><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry. There&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p>]]></content:encoded></item><item><title><![CDATA[Episode 17: Dark Web Intelligence and Gathering OSINT from Live Traffic]]></title><description><![CDATA[Listen now | Tools, tactics, and fresh investigations expanding the open-source intelligence toolkit.]]></description><link>https://osintnewsletter.com/p/episode-17-dark-web-intelligence</link><guid isPermaLink="false">https://osintnewsletter.com/p/episode-17-dark-web-intelligence</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Fri, 01 May 2026 13:02:56 GMT</pubDate><enclosure url="https://api.substack.com/feed/podcast/195728208/f63869b7bbed8df0640356ff9b9ab736.mp3" length="0" type="audio/mpeg"/><content:encoded><![CDATA[<p>Not all intelligence lives on the surface. Some of the most valuable data is deliberately hidden - and some of it is hiding in plain sight, flowing through the roads around you.</p><p>This episode covers Issues 103 and 104 of The OSINT Newsletter and focuses on two distinct but complementary areas: understanding the Dark Web as an intelligence source, and using live traffic data and cameras to build real-time situational awareness.</p><p>In Episode 17 of The OSINT Podcast, host Jake Creps opens with a foundational primer on Dark Web intelligence - or DARKINT. He breaks down the difference between the surface, deep, and dark web, explains how onion browsers and hidden services work, and outlines what investigators are likely to encounter when they go looking: breach dumps, criminal forums, paste sites, and shared credentials.</p><p>Jake covers the key distinction between OSINT and DARKINT - all DARKINT is OSINT, but not all OSINT is DARKINT - and explains why investigators combine both to build a complete picture of a target. He also addresses the compliance considerations that come with handling data sourced from the shadowy side of the net.</p><p>The episode then shifts to something more grounded - literally. Jake walks through how live traffic data can be used to gain situational awareness around a specific location or event. Starting with familiar tools like Google Maps and Waze, he explains how investigators can layer incident data, traffic flow, and police sightings before moving into more technical territory: the MapQuest Traffic API, the unofficial Waze API, and how to fuse multiple data sources into a single, custom solution.</p><p>From there, Jake covers live traffic camera feeds - manual methods via Department of Transportation sites, and API-based options like Road511 and Vizzion that allow investigators to build scalable, multi-location monitoring pipelines. The episode closes with a look at an unexpected bonus data source: rideshare apps, and the real-time vehicle location data sitting inside their public-facing interfaces.</p><p><strong>Highlights include:</strong></p><p>&#129477; <strong>Dark Web 101</strong> &#8211; surface, deep, and dark web explained, how onion browsers and hidden services work, and why Dark Web users are like ogres.</p><p>&#128373;&#65039; <strong>DARKINT Data Types</strong> &#8211; breach dumps, criminal forums, paste sites, and what each means for an OSINT investigation.</p><p>&#128678; <strong>Live Traffic Intelligence</strong> &#8211; using Google Maps, Waze, MapQuest API, and the unofficial Waze API to monitor incidents, road closures, and traffic flow in areas of interest.</p><p>&#128249; <strong>Traffic Camera Feeds</strong> &#8211; how to aggregate live camera feeds manually and at scale using Road511, Vizzion, and scraping methods.</p><p>The best investigators know how to follow the data wherever it leads - even into the dark, or down the road. Episode 17 shows you how to do both.</p><p><strong>References</strong></p><ul><li><p><a href="https://osintnewsletter.com/p/103">OSINT Newsletter &#8211; Issue 103</a></p></li><li><p><a href="https://osintnewsletter.com/p/104">OSINT Newsletter &#8211; Issue 104</a></p></li></ul>]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #104]]></title><description><![CDATA[Gathering OSINT from Live Traffic: Datasets and Cameras]]></description><link>https://osintnewsletter.com/p/104</link><guid isPermaLink="false">https://osintnewsletter.com/p/104</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Thu, 30 Apr 2026 13:01:43 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/38c3eb70-e542-42d7-8ea1-87deef95e5e8_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 104th issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence.</p><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>OSINT and the Dark Web: Part One</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;e61aa437-dd5c-4814-9238-afe545c7d1a4&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 103rd issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #103&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-04-23T13:01:47.658Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/974a0cf9-a400-490a-8626-b8ed972f93a1_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/103&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:194548480,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:22,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1>OSINT News</h1><p>&#128240;  <strong>3 Basic but Overlooked Intelligence Analysis Techniques</strong></p><p>Plot it on a map, lay it out over time, or group it by theme. Simple moves that surface patterns, gaps, and what matters without collecting anything new.</p><p><a href="https://www.linkedin.com/posts/paul-prouse-741283245_intelligenceleadership-intelligenceanalysis-activity-7444956756809736192-4TyV/?utm_source=share&amp;utm_medium=member_ios&amp;rcm=ACoAABq6F0oBbmG93OZu2jSa-VZL4TF8Qv14q1Y">Read on LinkedIn&#8230;</a></p><p>&#127913; H/T: Paul Prouse</p><p><strong>&#128240;  Mining China&#8217;s &#8216;Little Red Book&#8217; for Open Source Gold</strong> </p><p>A breakdown of how Xiaohongshu can be used for investigations, from diaspora activity to censorship patterns, plus practical tips for search, language, and preserving content before it disappears.</p><p><a href="https://www.bellingcat.com/resources/2026/04/20/xiaohongshu-rednote-open-source-guide/?utm_source=linkedin">Read on Bellingcat&#8230;</a></p><p>&#127913; H/T: Chu Yang</p><p>&#128240; <strong>Hundreds of Fake Pro-Trump Avatars Emerge on Social Media</strong></p><p>An investigation finds networks of AI-generated avatars posting pro-Trump content across major platforms, blending spam, engagement farming, and political messaging at scale.</p><p><a href="https://www.nytimes.com/2026/04/17/business/media/artificial-intelligence-trump-social-media.html">Read on The New York Times&#8230;</a> | <a href="https://archive.is/20260420233500/https://www.nytimes.com/2026/04/17/business/media/artificial-intelligence-trump-social-media.html">No Paywall</a></p><p>&#127913; H/T: Tiffany Hsu</p><div><hr></div><h1>OSINT Tools</h1><p>&#128270; <strong>CoJournalist</strong></p><p>coJournalist lets reporters deploy AI &#8220;scouts&#8221; to track pages, social accounts, and public records, then distills updates into structured, cite-ready leads.</p><p><a href="https://www.cojournalist.ai/login">Web App</a></p><p>&#127913; H/T: Tom Vaillan</p><p>&#128270; <strong>Snapchat Bitmoji History</strong></p><p>A simple tool that pulls past Bitmoji versions from a Snap profile and displays them in one place, building on earlier research and tooling.</p><p><a href="https://tools.myosint.training/#bm-snapchat-bitmoji-history">Bookmarklet</a></p><p>&#127913; H/T: Micah Hoffman</p><p>&#128270; <strong>ImageWhisperer</strong></p><p>ImageWhisperer analyzes uploaded media for AI generation and manipulation signals, producing a single verdict with evidence across multiple detection models.</p><p><a href="https://imagewhisperer.org/">Web App</a></p><p>&#127913; H/T: Henk Van Ess</p><div><hr></div><p>&#127937; New CTF Challenge Live - The Dark Web DB</p><p>A new CTF challenge has been posted on our CTF website. This week&#8217;s challenge involves identifying a threat actor who published a database allegedly belonging to a French and Belgian fast-food chain &#8220;Quick&#8221; on the Dark Web. Your objective is to find the actor&#8217;s username and determine the exact timestamp of the original publication.</p><p><a href="https://ctf.osintnewsletter.com/">Start competing in our Capture the Flag (CTF) </a></p><p>&#129667; If you missed the last CTF, <a href="https://ctf.osintnewsletter.com/challenges#Crowd%20Control-27">here&#8217;s a link to catch up.</a> </p><p>Last week&#8217;s CTF challenge featured a challenge titled &#8220;Crowd Control&#8221; where participants needed to estimate the number of people present in an auditorium by using a specific AI tool available publicly.</p><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p><strong>&#9889; Gathering OSINT from Live Traffic: Datasets and Cameras</strong></p><ul><li><p>Traffic datasets and live cameras give you situational awareness into areas of interest for an investigation. Whether it&#8217;s business continuity, executive protection, global travel, or something niche, this issue breaks down the options available to you in an actionable plan. </p></li></ul><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry there&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p>
      <p>
          <a href="https://osintnewsletter.com/p/104">
              Read more
          </a>
      </p>
   ]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #103]]></title><description><![CDATA[OSINT and the Dark Web: Part One]]></description><link>https://osintnewsletter.com/p/103</link><guid isPermaLink="false">https://osintnewsletter.com/p/103</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Thu, 23 Apr 2026 13:01:47 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/974a0cf9-a400-490a-8626-b8ed972f93a1_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 103rd issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here&#8217;s an overview of what&#8217;s in this issue:</p><ul><li><p>What the Dark Web is</p></li><li><p>The difference between surface, deep and dark web</p></li><li><p>The kinds of data you&#8217;ll find</p></li><li><p>OSINT vs. DARKINT</p></li><li><p>&#8230;and why Dark Web users are like onions.</p></li></ul><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://osintnewsletter.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">This publication is reader-supported. To receive new posts and support my work, consider becoming a free or paid subscriber.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>OSINT Methods for Archiving and Searching Video by Keyword</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;2a843aac-d3d9-4336-a32e-2dbf2acfb538&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 102nd issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence.&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #102&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-04-09T13:03:01.842Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/afd3af24-7892-4ad0-8969-63d699f733e0_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/102&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:182551198,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:20,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>&#127897;&#65039; <strong>If you prefer to listen, here&#8217;s a link to the podcast instead.</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;744f25d1-3d6c-4ee2-9e0a-d04c26801cf7&quot;,&quot;caption&quot;:&quot;Every investigation starts somewhere. For many, it starts with a username. And increasingly, the evidence lives inside a video you don&#8217;t have time to watch.&quot;,&quot;cta&quot;:&quot;Listen now&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;Episode 16: Investigating Digital Footprints and Archiving Video at Scale&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-04-10T15:00:43.335Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/a2d562b3-17e6-407a-a622-f48627195d02_1200x630.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/episode-16-investigating-digital&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:193669127,&quot;type&quot;:&quot;podcast&quot;,&quot;reaction_count&quot;:18,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><p>While OSINT operates out in the open - it is <em>open source</em> intelligence, after all - some of the most significant data lurks in the dark corners of the internet. So this time, we&#8217;re getting shady with it. Dark Web intelligence (or DARKINT) is the hidden side of OSINT. It sounds dangerous; but it&#8217;s perfectly safe to step into the gloom if you know how. Let&#8217;s begin our two-issue trip into the shadows with an overview of Dark Web OSINT. In Part One, we&#8217;ll cover:</p><ul><li><p>What the Dark Web is</p></li><li><p>The difference between surface, deep and dark web</p></li><li><p>The kinds of data you&#8217;ll find</p></li><li><p>OSINT vs. DARKINT</p></li><li><p>&#8230;and why Dark Web users are like onions.</p></li></ul><p>Let&#8217;s go dark.</p><h2>What is the Dark Web?</h2><p>The internet looks a little like an iceberg. It&#8217;s divided into multiple layers: the surface web at the top, the dark web at the bottom, and the deep web in the middle.</p><ul><li><p><strong>Surface Web:</strong> The normie &#8221;internet&#8221;. The stuff you use every day, that is indexed by conventional search engines (Google, Bing etc.), and easily searchable.</p></li><li><p><strong>Deep Web:</strong> Also known as the &#8220;invisible web&#8221; or &#8220;hidden web&#8217;. Unindexed and not easily searchable, but still accessible without a specialised browser. Content on the deep web includes online banking services, private networks and corporate systems. It makes up around <a href="https://www.trendmicro.com/en/what-is/dark-web/deep-web-vs-dark-web.html">90% of the internet.</a></p></li><li><p><strong>Dark Web:</strong> Unindexed, encrypted, and only accessible with specialised tools like onion browsers. The Dark Web makes up somewhere between <a href="https://www.iso.org/information-security/dark-web">1%</a> and <a href="https://www.childrenssociety.org.uk/information/professionals/resources/what-is-the-dark-web">6% of the internet</a>; and unlike its deep cousin, it&#8217;s always anonymised. Data found on this layer is known as dark web intelligence (<a href="https://section.dk/darknet-intelligence.html">DARKINT</a>).</p></li></ul><p>The important thing to remember about the Dark Web is that it&#8217;s not a single place; it&#8217;s a collection of anonymous websites hosted on encrypted networks. Some of these networks play host to <a href="https://www.group-ib.com/blog/dark-web-fraud/">financial fraudsters</a>, <a href="https://www.un.org/counterterrorism/en/media/3928">terrorist cells</a>, <a href="https://rainn.org/get-the-facts-about-csam-child-sexual-abuse-material/how-does-csam-get-distributed/">CSAM</a>, <a href="https://newsinteractives.cbc.ca/longform/the-new-frontier-of-the-drug-trade/">drug dealing</a> and <a href="https://www.rand.org/randeurope/research/projects/2017/international-arms-trade-on-the-hidden-web.html">weapons sales</a>.</p><p>But - despite the scare stories - not everything on the dark web is dodgy. Although many criminals do ply their wares on the internet&#8217;s dark side, it also has legitimate privacy-driven and anti-censorship use cases. For example, even <a href="https://www.bbc.co.uk/news/technology-50150981">major news outlets mirror their sites on the Dark Web</a>, to give citizens secret access under harsh state censorship.</p><h2>Onion Browsers and Hidden Services</h2><p>To access the Dark Web, you&#8217;ll need special tools. Enter TOR: short for <a href="https://www.avg.com/en/signal/what-is-tor-browser-and-is-it-safe">The Onion Router</a>. Onion browsers like TOR are too complicated to explain in detail here; but they basically work by encrypting your connections through multiple layers - like the skin of an onion. Each layer only knows part of the journey, making it extremely difficult to trace your activities. What makes the Dark Web a-peel-ing (sorry) to its users is anonymity; and onion browsers have this built-in.</p><p>Meanwhile, websites on the Dark Web use .onion domains, too, meaning both the user and the host are completely obscured. These sites are officially called <a href="https://www.icann.org/en/blogs/details/the-dark-web-the-land-of-hidden-services-27-6-2017-en">&#8216;hidden services&#8217; </a>- and without them, there&#8217;s no Dark Web.</p><p>Hosted within the TOR network, hidden services work similarly; both user and host build encrypted connections instead of linking up directly. Each hidden service will send out a descriptor on the TOR network, that&#8217;s discoverable to all users that know the .onion address. When users gain access to the site, they <em>actually</em> go to this rendezvous point - so neither side knows each other&#8217;s<em> real</em> IP. This process means mutual anonymity for everybody involved.</p><p>So in Shrek terms, Dark Web users are the <a href="https://www.youtube.com/watch?v=-FtCTW2rVFM&amp;t=21">ogres of the internet. </a>They&#8217;ve got layers.</p><h2>DARKINT: What Will You Find on the Dark Web?</h2><p>From an OSINT perspective, the most important part of the Dark Web will <a href="https://knowyourmeme.com/memes/maybe-the-real-treasure-was-the-friends-we-made-along-the-way">always be the data we meet along the way. </a>But what data types can you expect to find on the shadowy side of the net? Here&#8217;s what&#8217;s usually lurking down there.</p><h3>Data Leaks and Breach Dumps</h3><p>One of the most valuable (and most common) forms of DARKINT is the good old breach dump. Compromised data - leaked logins, for example - proliferates all over the Dark Web. You can find:</p><ul><li><p>Email and password combinations</p></li><li><p>Usernames and aliases</p></li><li><p>Phone and mobile numbers</p></li></ul><p>The boon with breach dumps is they often &#8220;package&#8221; multiple data points together; terrible for the subjects&#8217; anonymity, but perfect for OSINT pros piecing together an identity profile. These datasets can even be traded, reused or repackaged across multiple Dark Web platforms. However, it&#8217;s important to bear in mind the <a href="https://www.linkedin.com/pulse/ethical-dilemma-using-data-breach-information-osint-paul-wright-jmmaf">compliance problem</a> when handling potentially dirty data.</p><h3>Forums and Marketplaces</h3><p>Remember the fraud, drugs and guns we discussed earlier? Those Dark Web forums and marketplaces are central to the hidden net&#8217;s ecosystem; although they&#8217;re <a href="https://www.eccu.edu/blog/the-dark-web-and-its-dangers/">dangerous and damaging for the offline world, </a>they allow OSINT investigators to catch bad guys in the act. Cybercriminal activity can include:</p><ul><li><p>Discussion of terrorist activities</p></li><li><p>Organising financial fraud</p></li><li><p>Buying and selling personal data</p></li><li><p>&#8220;Service&#8221; marketplaces (drugs, guns, porn etc)</p></li></ul><p>Even though the Dark Web is anonymised, it can still provide data that unmasks serious criminals. Many investigations <a href="https://www.osint.industries/project/know-your-enemy-how-osint-collaboration-can-profile-a-predator">have been cracked with DARKINT</a> - exposing heinous offenders including child sexual abusers.</p><h3>Paste Sites and Shared Credential</h3><p>Paste sites - like <a href="https://www.authentic8.com/blog/what-is-pastebin-cyberthreat-intelligence">Pastebin</a> - are social media platforms that allow their users to dump large quantities of plain-text data online. They were created as innocent spaces for coders to share snippets of work, but have become increasingly popular with threat actors as a staging ground for dangerous activity.</p><p>These are often used to <a href="https://par.nsf.gov/servlets/purl/10336827">share sensitive information</a> from stolen credit card details, to malware, to exploit code. Although they aren&#8217;t often persistent, they can still be full of data that gets widely distributed - data that can also be crucial for OSINT.</p><h2>OSINT vs DARKINT</h2><p>All DARKINT is OSINT, but not all OSINT is DARKINT. OSINT includes the publicly accessible, indexed or easily reachable by the normie-net data. Meanwhile, DARKINT is just the hidden, encrypted data that only specialised Dark Web tools can dig up.</p><p>The question remains, however: why risk digging into DARKINT at all? Surely - unless you&#8217;re fighting cybercrime - the Dark Web is more risk than reward? Well, whilst OSINT tells you what&#8217;s going on out in public, DARKINT exposes what netizens intentionally work to hide. In practice, most investigators will combine OSINT and DARKINT to find all the data they need.</p><h2>Key Takeaways</h2><p>So, now you&#8217;ve taken your first steps into the shadowy side of the internet known as the Dark Web. You should now know:</p><ul><li><p>The Internet is like an iceberg - 90% is below the surface</p></li><li><p>The Dark Web isn&#8217;t all dodgy; it does have legitimate uses</p></li><li><p>All DARKINT is OSINT, but not all OSINT is DARKINT</p></li><li><p>&#8230; and DARKINT investigators are like onions - they have layers.</p></li></ul><p>See you next issue, investigators!</p><div><hr></div><p>&#11088; <strong>Sponsor: SockPuppet.io</strong></p><p>SockPuppet delivers secure, isolated environments with persistent virtual desktops and phones, real carrier-based SMS for OTPs, and residential IP connectivity&#8212;selectable from hundreds of locations. All accessible through a simple web interface that scales as your investigations grow.</p><p>Visit <a href="https://hubs.la/Q03DbZN00">SockPuppet.io</a> to empower your investigations with technology trusted by intelligence professionals.</p><div><hr></div><p>&#127937; <strong>New CTF Challenge Live - Crowd Control</strong></p><p>A new CTF challenge has been posted on our CTF website. This week&#8217;s challenge involves estimating the number of people in a photograph from the 2024 NATO Summit using a specific tool.</p><p>Start competing in our <a href="https://ctf.osintnewsletter.com/">Capture the Flag (CTF)</a></p><p>&#129667; If you missed the last CTF, <a href="https://ctf.osintnewsletter.com/challenges#Digital Footprints-26">here&#8217;s a link to catch up</a>. </p><p>Last week&#8217;s CTF challenge featured a challenge titled &#8220;Digital Footprints&#8221; where participants needed to identify the domains linked to a specific email address using only OSINT techniques.</p><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry. There&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://osintnewsletter.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">This publication is reader-supported. To receive new posts and support my work, consider becoming a free or paid subscriber.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div>]]></content:encoded></item><item><title><![CDATA[Episode 16: Investigating Digital Footprints and Archiving Video at Scale]]></title><description><![CDATA[Listen now | Tools, tactics, and fresh investigations expanding the open-source intelligence toolkit.]]></description><link>https://osintnewsletter.com/p/episode-16-investigating-digital</link><guid isPermaLink="false">https://osintnewsletter.com/p/episode-16-investigating-digital</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Fri, 10 Apr 2026 15:00:43 GMT</pubDate><enclosure url="https://api.substack.com/feed/podcast/193669127/e085405cbe4dc9b4744dd5c9586b112d.mp3" length="0" type="audio/mpeg"/><content:encoded><![CDATA[<p>Every investigation starts somewhere. For many, it starts with a username. And increasingly, the evidence lives inside a video you don&#8217;t have time to watch.</p><p>This episode covers Issues 101 and 102 of The OSINT Newsletter and focuses on two practical areas of modern OSINT: mapping a target&#8217;s digital footprint using a comprehensive open-source framework, and extracting intelligence from video content at scale.</p><p>In Episode 16 of The OSINT Podcast, host Jake Creps opens with a deep dive into TheBigBrother, a GitHub-based OSINT framework that consolidates username enumeration, reverse image searching, network scanning, dark web lookups, EXIF extraction, crypto tracing, and more into a single tool. Jake walks through setup, core modules, and the real investigative value it offers - from identity correlation and social media pivoting to red teaming and privacy audits.</p><p>He then moves into one of the more underrated challenges in OSINT: working with video. Jake breaks down how to extract transcripts from YouTube and TikTok using tools like YouTube Transcript API and TokScript, and explains how to scale that process across dozens or hundreds of videos using open-source libraries and lightweight custom tooling.</p><p>Once video content is converted to text, the episode shows how to make it searchable - combining local search methods, Obsidian vaults, and LLMs to analyse transcripts at scale and produce actionable intelligence outputs.</p><p>Along the way, the episode reinforces a core principle: tools support collection, but intelligence requires analysis. Knowing how to build the pipeline is only half the work - knowing what to do with the output is what separates a collection exercise from actual OSINT.</p><p><strong>Highlights include:</strong></p><p>&#128269; <strong>TheBigBrother Deep Dive</strong> &#8211; a full walkthrough of the framework&#8217;s modules including Profiler, Footprint, Net Scan, Dark Web, EXIF, Dorks, and Sky Radar, with practical use cases for each.</p><p>&#127909; <strong>Video Transcript Extraction</strong> &#8211; how to pull transcripts from YouTube and TikTok one at a time and at scale using YouTube Transcript API, TokScript, and the Summarize library.</p><p>&#128194; <strong>Searching at Scale</strong> &#8211; combining transcribed video content with local search tools, Obsidian, and LLMs to surface patterns and produce intelligence reports.</p><p>Whether you&#8217;re tracing a username across the internet or digging through hours of video evidence, Episode 16 gives you the tools and workflow to do it efficiently.</p><p><strong>References</strong></p><ul><li><p><a href="https://osintnewsletter.com/p/101">OSINT Newsletter &#8211; Issue 101</a></p></li><li><p><a href="https://osintnewsletter.com/p/102">OSINT Newsletter &#8211; Issue 102</a></p></li></ul>]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - Issue #102]]></title><description><![CDATA[OSINT Methods for Archiving and Searching Video by Keyword]]></description><link>https://osintnewsletter.com/p/102</link><guid isPermaLink="false">https://osintnewsletter.com/p/102</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Thu, 09 Apr 2026 13:03:01 GMT</pubDate><enclosure url="https://substack-post-media.s3.amazonaws.com/public/images/afd3af24-7892-4ad0-8969-63d699f733e0_1900x1000.jpeg" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#128075; <strong>Welcome to the 102nd issue of The OSINT Newsletter.</strong> This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. My goal with this newsletter is to help promote the OSINT industry, develop better investigators, and raise awareness of ethical use cases for open source intelligence.</p><div><hr></div><p>&#129667; If you missed the last newsletter, here&#8217;s a link to catch up.</p><p>&#9889; <strong>A deep dive into TheBigBrother, a comprehensive OSINT framework</strong></p><div class="digest-post-embed" data-attrs="{&quot;nodeId&quot;:&quot;8b405474-3739-4ec9-a3a1-14cd14aca3df&quot;,&quot;caption&quot;:&quot;&#128075; Welcome to the 101st issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator.&quot;,&quot;cta&quot;:&quot;Read full story&quot;,&quot;showBylines&quot;:true,&quot;showDescription&quot;:true,&quot;showImage&quot;:true,&quot;size&quot;:&quot;sm&quot;,&quot;isEditorNode&quot;:true,&quot;title&quot;:&quot;The OSINT Newsletter - Issue #101&quot;,&quot;publishedBylines&quot;:[{&quot;id&quot;:130747684,&quot;name&quot;:&quot;The OSINT Newsletter&quot;,&quot;bio&quot;:&quot;Fighting the machines to write S tier content. OSINT tools, tactics, and techniques.&quot;,&quot;photo_url&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/f911711c-3bbd-421e-9d55-d9dcaffb23c5_240x240.png&quot;,&quot;is_guest&quot;:false,&quot;bestseller_tier&quot;:100}],&quot;post_date&quot;:&quot;2026-04-02T14:31:05.102Z&quot;,&quot;cover_image&quot;:&quot;https://substack-post-media.s3.amazonaws.com/public/images/5d6243dc-fd06-4fde-aaad-350bd452487f_1900x1000.jpeg&quot;,&quot;cover_image_alt&quot;:null,&quot;canonical_url&quot;:&quot;https://osintnewsletter.com/p/101&quot;,&quot;section_name&quot;:null,&quot;video_upload_id&quot;:null,&quot;id&quot;:192960741,&quot;type&quot;:&quot;newsletter&quot;,&quot;reaction_count&quot;:17,&quot;comment_count&quot;:0,&quot;publication_id&quot;:1442182,&quot;publication_name&quot;:&quot;The OSINT Newsletter&quot;,&quot;publication_logo_url&quot;:&quot;https://substackcdn.com/image/fetch/$s_!yF4I!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png&quot;,&quot;belowTheFold&quot;:false,&quot;youtube_url&quot;:null,&quot;show_links&quot;:null,&quot;feed_url&quot;:null}"></div><p>Let&#8217;s get started. &#11015;&#65039;</p><div><hr></div><h1>OSINT News</h1><p>&#128240;  <strong>Geolocating Taliban in the Afghan Desert</strong></p><p>Ben walks you through a recent investigation he did in the Afghan desert. He steps through how he identified a base, tracked a flight, located a soldier drop off point, finding a dune strike location, and more.</p><p><a href="https://www.linkedin.com/posts/bendobrown_i-geolocated-taliban-special-forces-drills-share-7436737465677361152-WLV0?utm_source=share&amp;utm_medium=member_desktop&amp;rcm=ACoAABq6F0oBbmG93OZu2jSa-VZL4TF8Qv14q1Y">Read on LinkedIn&#8230;</a> | <a href="https://www.youtube.com/watch?v=7t9gXDuWyKg">YouTube</a></p><p>&#127913; H/T: Benjamin Strick</p><p>&#128240; <strong>How OSINT Verifies Viral Claims During Wartime Chaos</strong></p><p>This video shows how to analyze a viral Reddit claim that Iran bombed its own girls&#8217; school by identifying manipulation signals, evaluating online actors and naming patterns, comparing search results, and verifying wartime claims using government sources, fact-checkers, verification outlets, and cross-model AI.</p><p><a href="https://www.youtube.com/watch?v=Q7mVKCyBLek">Watch on YouTube&#8230;</a></p><p>&#127913; H/T: Kirby Plessas</p><p>&#128240;  <strong>How Wildlife Traffickers Are Using Coded Language to Sell Protected Animals On Facebook</strong> </p><p>Foeke walks through how to identify coded language on Facebook Marketplace that indicates the sale of protected animals, including screenshots and other evidence collected.</p><p><a href="https://www.bellingcat.com/news/2026/03/19/how-wildlife-traffickers-are-using-coded-language-to-sell-protected-animals-on-facebook/">Read on Bellingcat&#8230;</a></p><p>&#127913; H/T: Foeke Postma</p><div><hr></div><h1>OSINT Tools</h1><p>&#128270; <strong>OSINT Rack</strong></p><p>OSINT Rack is a collection of OSINT tools categorized by use case, blog posts, courses, books, events, and more.</p><p><a href="https://osintrack.com/">Web App</a></p><p>&#127913; H/T: Mario Santella</p><p>&#128270; <strong>Tor Node Archive</strong></p><p>Tod Node Archive gives you insight into the world of Tor Nodes with a search engine, downloadable dataset, and a changelog.</p><p><a href="https://tor-archive.github.io/">Web App/Dataset</a></p><p>&#127913; H/T: </p><p>&#128270; <strong>CrowdCounter</strong></p><p>CrowdCounter estimates how many people are in a photo, saving you the time it takes to count manually. Too bad it doesn&#8217;t have an API, Henk!</p><p><a href="https://digitaldigging.org/crowdchecker/">Web App</a></p><p>&#127913; H/T: Henk Van Ess</p><div><hr></div><p>&#127937; <strong>New CTF Challenge Live - Digital Footprints</strong></p><p>A new CTF challenge has been posted on our CTF website. This week&#8217;s challenge involves identifying multiple domains linked to a well-known threat actor using only its email address.</p><p>Start competing in our <a href="https://ctf.osintnewsletter.com/">Capture the Flag (CTF)</a></p><p>&#129667; If you missed the last CTF, <a href="https://ctf.osintnewsletter.com/challenges#Tracing the Source-25">here&#8217;s a link to catch up</a>. </p><p>Last week&#8217;s CTF challenge featured a challenge titled &#8220;Tracing the Source&#8221; where participants needed to identify the username of the Telegram channel that published a promotional message and the name of the telegram channel that was promoted in that message, using only OSINT techniques.</p><p>Solution WU :</p><p>To solve this challenge, we need to use https://deaddrop.theosintconsultants.com/ to locate the original Telegram message.</p><p>By enclosing the message in quotation marks for an exact search (e.g., (&#8221;&#1606;&#1575;&#1578; &#1575;&#1576;&#1593;&#1579;&#1608;&#1604;&#1610; &#1575;&#1604;&#1582;&#1575;&#1589;...&#8221;) and applying a date filter corresponding to the timestamp (From: 2026-04-01 To: 2026-04-01), we were able to pinpoint a search result that displayed:</p><ul><li><p>The username of the channel that posted the message</p></li><li><p>The content of the message</p></li><li><p>The username of the promoted channel</p></li></ul><p>This method allowed us to identify the Telegram channel solely using the message content and the timestamp, as required by the challenge.</p><div><hr></div><p>&#9989; That&#8217;s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.</p><p>By upgrading to paid, you&#8217;ll get access to the following:</p><p><strong>&#9889; OSINT Methods for Archiving and Searching Video by Keyword</strong></p><ul><li><p>Learn tools, tactics, and techniques for processing information from videos in a way that&#8217;s searchable at scale.</p></li></ul><p>&#128064; All paid posts in the archive. <a href="https://osintnewsletter.com/">Go back and see what you&#8217;ve missed</a>!</p><p>&#128640; If you don&#8217;t have a paid subscription already, don&#8217;t worry there&#8217;s a 7-day free trial. If you like what you&#8217;re reading, upgrade your subscription. If you can&#8217;t, I totally understand. Be on the lookout for promotions throughout the year.</p><p>&#128680; The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address. </p>
      <p>
          <a href="https://osintnewsletter.com/p/102">
              Read more
          </a>
      </p>
   ]]></content:encoded></item><item><title><![CDATA[The OSINT Newsletter - 50% Off Easter Sale]]></title><description><![CDATA[Improve your OSINT skill set for less]]></description><link>https://osintnewsletter.com/p/the-osint-newsletter-50-off-easter-1df</link><guid isPermaLink="false">https://osintnewsletter.com/p/the-osint-newsletter-50-off-easter-1df</guid><dc:creator><![CDATA[The OSINT Newsletter]]></dc:creator><pubDate>Sun, 05 Apr 2026 13:03:13 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!yF4I!,w_256,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F5993aebc-3fc0-409c-bfc1-a8765534c7ab_1280x1280.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>&#127881; Hey, everyone. I&#8217;m excited to announce that The OSINT Newsletter is having an Easter sale!</p><p>&#127873; It&#8217;s been a while since a paid subscription of The OSINT Newsletter went on sale. Recently, the newsletter crossed the 32,000 subscriber mark. To celebrate, here&#8217;s a 50% off discount.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://osintnewsletter.com/a0cb54dc&quot;,&quot;text&quot;:&quot;50% Off&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://osintnewsletter.com/a0cb54dc"><span>50% Off</span></a></p><p>Here&#8217;s what you&#8217;ll get access to by upgrading now:</p><ul><li><p>Access to the entire newsletter archive of paid content with over 100 issues of tools, tactics, and techniques.</p></li><li><p>Continuously improve your skill set with the latest OSINT methods to discover more, be more efficient, and bring more value to your organization or mission.</p></li></ul><p>Thanks for your support. </p><p><strong>Click here to get 50% off The OSINT Newsletter</strong>&#128071;</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://osintnewsletter.com/a0cb54dc&quot;,&quot;text&quot;:&quot;Get Better at OSINT for $40&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://osintnewsletter.com/a0cb54dc"><span>Get Better at OSINT for $40</span></a></p><p></p>]]></content:encoded></item></channel></rss>