👋 Welcome to the 73rd issue of The OSINT Newsletter. This issue contains OSINT news, community posts, tactics, techniques, and tools to help you become a better investigator. Here’s an overview of what’s in this issue:
OSINT in Cold Cases
Avoiding OSINT Rabbit Holes
Maritime Security
Fraud OSINT Tools
Bug Bounty OSINT
Typo-squatting Tools
🚨 This issue contains my favorite quotes from each OSINT News post. You’ll find them in the code blocks beneath the summary. I hope this helps make this newsletter more readable and gives you more incentive to read the news!
🪃 If you missed the last newsletter, here’s a link to catch up.
⚡ Creating a Gmail Honeypot for OSINT
Let’s get started. ⬇️
OSINT News
📰 Pigeon Shoots and Hitmen: New Leads in a Texas Oilman's Cold Case
A pigeon shoot, a Vegas hitman, and one dead oil heir—new FBI docs drop fresh leads in a 50+ year-old Texas cold case. Bellingcat + Texas Observer dug in.
“You highlight these cases, and people come forward,” Benzick told Bellingcat. “Even if that doesn’t happen, just organising these cases helps law enforcement.”
🎩 H/T: Peter Barth
📰 OSINT Rabbit Holes: When to Dig, When to Pivot, and When to Stop
Knowing when to pivot or quit is key to dodging endless rabbit holes. Brett R breaks down how to stay focused and get real intel, not just data dumps.
"This is the OSINT paradox: the more you can find, the more disciplined you must become."
🎩 H/T: Brett R
📰 Enhancing maritime security with OSINT
Babel Street is an enterprise intelligence tool. Matt Meehling discusses the state of maritime security and how OSINT fits into the future.
"Maritime operators must now consider not just where a ship is going, but who built it, what surveillance data it shares, and how foreign governments may view its role in future conflicts."
🎩 H/T: Matt Meehling
OSINT Tools
🔎 tirreno
Tirreno protects web apps by monitoring user behavior to detect fraud, threats, and abuse inside the application unlike traditional SIEMs that focus on infrastructure.
🔎 Dork King
Dork King is a free tool that generates advanced search queries to help find security vulnerabilities and exposed data. You enter a target domain, and it provides relevant queries for quick information gathering.
🎩 H/T: Vipin Panchal
🔎 haveibeensquatted
Have I Been Squatted helps OSINT investigators quickly identify typosquatted domains impersonating a target’s website to uncover potential phishing or deception threats.
✅ That’s it for the free version of The OSINT Newsletter. Consider upgrading to a paid subscription to support this publication and independent research.
By upgrading to paid, you’ll get access to the following:
⚡ Creating OSINT Apps in Google Drive (Docs, Sheets)
If you work in Google Docs or Sheets, you may be familiar with Google App Scripts. You can create tools in Google App Scripts that allow you to be more efficient in the processing, analysis, and dissemination part of the intelligence cycle. I’ll show you a few scripts you can use to level up post-collection.
👀 All paid posts in the archive. Go back and see what you’ve missed!
🚀 If you don’t have a paid subscription already, don’t worry there’s a 7-day free trial. If you like what you’re reading, upgrade your subscription. If you can’t, I totally understand. Be on the lookout for promotions throughout the year.
🚨 The OSINT Newsletter offers a free premium subscription to all members of law enforcement. To upgrade your subscription, please reach out to LEA@osint.news from your official law enforcement email address.
Keep reading with a 7-day free trial
Subscribe to The OSINT Newsletter to keep reading this post and get 7 days of free access to the full post archives.