Jump to content

OSINT on individuals

AtomShards

By AtomShards
in Security

 Share

Recommended Posts

AtomShards Newbie

AtomShards

Posted
Posted

I enjoy security and hacking but am not good enough to peruse it as a career so im basically a noob who knows a few things. Now everything i can find on OSINT relates to a company or business but i would like to know how i could get as much information on an everyday individual. All help is greatly appreciated, thank you

Link to comment
Share on other sites
NoExecute Enthusiast

NoExecute

Posted
Posted (edited)

How do you mean, "relates to companies" ?

OSINT - Open Sources Intelligence gathering (Collecting info from open / public sources)
HUMINT - Human Intelligence Gathering (info from people on the ground / human sources)
CYBINT - Cyber intelligence
SIGINT  - Signal Intelligence gathering
TECHINT - Analysis of technical capabillities of an enemy
MEDINT - Medical records / information
FININT - Financial information


So OSINT is just the CIA's catchy term for gathering date from publically available sources ?

Directed at a person, it would be using every public know source to gather info on that person or group.
<Stalkerish mode ON>
Websites, social media, phonebooks, public records, News sites / magazines and papers. 
<Stalkerish mode OFF>
For keeping track of these records, and building a picture of how it relates, I would suggest "maltego" and "casefile", they were made for this, and really is a great help in organising the information in a logical order. 

Start thinking on yourself yourself an an example.

What information is out there on you ?
What kind is it (phone number, email, medical, address and so on)
Who has this information, and who can access it ?, and access it under what circumstances ?
How do you get to it ?

Because it will help you to start thinking about whats out there on you, and how to protect it.
But, more important, it will help you build a list on most types and sources of information that applies to everyone else

If it were me, that had to start launch an operation into someone, it would most likely go something like this.

OSINT PHASE (Passive phase)

Phonebooks, websites, social media, professional networks,
public records of ownership of buildings, and placement of buildings
Public listed address
Public listed phonenumber
Public listed email & messenger handles
Get photos, known whereabouts / favourite places they visits
Job / education, what and where
Have they published anything (books, papers, assignments and the like)

HUMINT (Active recon Phase)

Friends ?, coworkers ?, relatives ?
Gossip at the places they visit ?
Directed Social engineering attacks
Photo, video. Audio gathering if necessary

TECHINT

Technical equipment they have access to (laptops, phones, workstations)
Where do they use it and for what ?

CYBINT

Closer look at websites / Social Media profiles

When done, all of this should provide you with information, that can help you to build a profile, and find out where to direct you  attention next.
Direct attack campaings if that is to your liking, which I really wouldn't recommend ?

But if you're working in an efficient directed manner, you would be amazed of what info is actually out there, if you go about getting it, in an coordinated effective manner. If not anything else, it's a fun task.

"Good luck double o seven, and do try to bring the gadgets back home to Q branch safely :D"

Edited by Kentj
  • Like 1
Link to comment
Share on other sites
AtomShards Newbie

AtomShards

Posted
  • Author
Posted
2 hours ago, Kentj said:

How do you mean, "relates to companies" ?

OSINT - Open Sources Intelligence gathering (Collecting info from open / public sources)
HUMINT - Human Intelligence Gathering (info from people on the ground / human sources)
CYBINT - Cyber intelligence
SIGINT  - Signal Intelligence gathering
TECHINT - Analysis of technical capabillities of an enemy
MEDINT - Medical records / information
FININT - Financial information


So OSINT is just the CIA's catchy term for gathering date from publically available sources ?

Directed at a person, it would be using every public know source to gather info on that person or group.
<Stalkerish mode ON>
Websites, social media, phonebooks, public records, News sites / magazines and papers. 
<Stalkerish mode OFF>
For keeping track of these records, and building a picture of how it relates, I would suggest "maltego" and "casefile", they were made for this, and really is a great help in organising the information in a logical order. 

Start thinking on yourself yourself an an example.

What information is out there on you ?
What kind is it (phone number, email, medical, address and so on)
Who has this information, and who can access it ?, and access it under what circumstances ?
How do you get to it ?

Because it will help you to start thinking about whats out there on you, and how to protect it.
But, more important, it will help you build a list on most types and sources of information that applies to everyone else

If it were me, that had to start launch an operation into someone, it would most likely go something like this.

OSINT PHASE (Passive phase)

Phonebooks, websites, social media, professional networks,
public records of ownership of buildings, and placement of buildings
Public listed address
Public listed phonenumber
Public listed email & messenger handles
Get photos, known whereabouts / favourite places they visits
Job / education, what and where
Have they published anything (books, papers, assignments and the like)

HUMINT (Active recon Phase)

Friends ?, coworkers ?, relatives ?
Gossip at the places they visit ?
Directed Social engineering attacks
Photo, video. Audio gathering if necessary

TECHINT

Technical equipment they have access to (laptops, phones, workstations)
Where do they use it and for what ?

CYBINT

Closer look at websites / Social Media profiles

When done, all of this should provide you with information, that can help you to build a profile, and find out where to direct you  attention next.
Direct attack campaings if that is to your liking, which I really wouldn't recommend ?

But if you're working in an efficient directed manner, you would be amazed of what info is actually out there, if you go about getting it, in an coordinated effective manner. If not anything else, it's a fun task.

"Good luck double o seven, and do try to bring the gadgets back home to Q branch safely :D"

Thank you this is very helpful. Also im very confused with what the hell im doing but im going to keep trying ?

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...