Share this page!

Maybe Scrolly?
Cyber Detective Profile picture
Twitter logo
21 Sep, 10 tweets, 8 min read
What technologies should every #OSINT professional know? Python? Basic Linux terminal skills? Maltego?

Lots of things...

But I think it's definitely worth actively using advanced search operators at ALL STAGES of work.

7 types of advanced search operators. Thread🧵
Let's start with productivity issues.

Type 1

Search operators for mailbox
(#Gmail, #Outlook, #Yahoo, #Yandex)

for quick filtering emails by date, recipient name, attachment type and size, filename and other parameters.

(All links to the docs are at the end of the thread)
Type 2

Search operators for cloud storages
(#GoogleDrive)

Help quickly navigate through files and sort them by owner name, type, creation date, words in title etc.
Type 3

Operators for search files in #Windows and #MacOS

For #Linux it would be nice to know how to use the "FIND" utility with different parameters
Type 4

Advanced operators for search engines
(#Google, #Yandex, #DuckDuckGo, #Bing, #Yandex and many others)

This is the first thing to learn after you've dealt with your mail and personal files.
Type 5

Search operators for social media
(#Twitter, #YouTube, #Reddit)

Filtering YouTube videos by creation date, analyzing tweets of users included in a certain list, searching strictly by one subreddit - there are hundreds of examples of using them.
Type 6

Search operators for finding people

(#Github, #Linkedin)

For filtering resumes and profiles of professionals (by location, place of work, skills)
Type 7

Advanced operators for IOT search engines

(#shodan, #censys, #fofa)

For filtering devices by country, manufacturer, ports used, and dozens of other features.
This thread🧵 is end. Links to the documentation for the operators of all the services mentioned are collected in a separate repository:

github.com/cipher387/Adva…

But I never said anything about search operators for Web Archive, Google Maps, Canvas...

To be continued!
@threadreaderapp unroll

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Cyber Detective

Cyber Detective Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @cyb_detective

Cyber Detective Profile picture
16 Sep
Today I started compiling a list of the #twitter accounts of companies that develop useful #OSINT tools.

twitter.com/i/lists/143849…

In this thread🧵, I'll talk about the project behind each account on the this list.
@haveibeenpwned Check if your email or phone is in a data breach haveibeenpwned.com

@duckduckgo Privacy search engine duckduckgo.com

@webintmaster Companies research tool tradint.io/tradint-resear…
@Fear_the_Foca tool used to find metadata and hidden information in documents

@SpyseHQ internet access search engine spyse.com

@sploitus_com tools & exploits search engine sploitus.com
Read 28 tweets
Cyber Detective Profile picture
16 Sep
Tools for gathering information about YOUTUBE videos and channels.

Thread 🧵🧵🧵 12 tweets

#osint #socmint #youtube
(1/12)🧵

mattw.io/youtube-metada…

Submint a link to video and get it metada:
Snippet (the exact date and time of publication, description, thumbnails links)
Statistics
Geolocation
Status
Content details

(also it's possible to get channel and playlist metadata)
(2/12)🧵

tools.digitalmethods.net/netvizz/youtub…

Submit a video id (you can find it here commentpicker.com/youtube-video-…) and download comments to it as a table (html file).
Read 14 tweets
Cyber Detective Profile picture
13 Sep
SQL dumps (database dumps) for #OSINT

Super short practical course.

Thread🧵🧵🧵

(12 tweets)

#sql #mysql #phpmyadmin
(1/12)

In @GoogleHacking (exploit-db.com/google-hacking…) there are 176 dorks for searching SQL dumps, which may contain any confidential information.

Simple ex (pic 2):

ivanov ext:sql site:github.com

This query search all sql-files, which contain "ivanov" in #Github
(2/12)

Sometimes in this way it's possible find databases with information about orders, customers or employees. Inattentively, site owners forget to close them from indexing in robot.txt.

Such SQL-dumps may contain names, surnames, dates of birth, addresses, phone numbers.
Read 14 tweets
Cyber Detective Profile picture
10 Sep
Today I began assembling a list that will include single programmers and small teams that develop tools for #OSINT

twitter.com/i/lists/143622…

In this thread I will tell you which of these people are working on which project (please subscribe to them and put stars on #Github) 🧵
1-5 (of 21)

@jsvine waybackpack github.com/jsvine/wayback…

@soxoj Maigret github.com/soxoj/maigret

@megadose Holehe github.com/megadose/holehe

@ninoseki MMHDAN, Mihari and others github.com/ninoseki/

@jhy Jsoup github.com/jhy/jsoup
6-10 (of 21)
@tenacioustek Harpoon github.com/Te-k/harpoon

@zhenyanghua MeasureTool-GoogleMaps-V3 github.com/zhenyanghua/Me…

@aykutsarach Github-Rater github.com/AykutSarac/git…

@skylens_app App.skylens.io

@kumarshashwat_ Orion github.com/Araekiel/orion
Read 8 tweets
Cyber Detective Profile picture
9 Sep
Trying to identify a country from a photo

Part 1. 12 basic tricks for outdoor photos

Thread 🧵
Step 1

The first thing to do is to break the photo up into fragments so that you can examine each one individually.

The fastest way to do this is to use online tools. For example:

iloveimg.com/crop-image

(If you have a Mac, just press Command+Shift+4)
Step 2

Now look for interesting fragments in Google or Yandex

(by the way, Yandex has a built-in cropping)

It happens that the country can be identified by the model of public transport. If the photo shows "PAZ 4234", it is most likely Russia (but maybe other CIS countries).
Read 15 tweets
Cyber Detective Profile picture
8 Sep
15 steps to gather information about a company.

Suitable for Fortune 500 corporations as well as the restaurant down the street.

Thread 🧵🧵🧵

#osint #corpint Image
Step 1

Gathering basic information (adress of registration, number of employes, market capitalization etc) in global business registries

opencorporates.com
craft.co

@opencorporates @Craftdotco Image
Step 2

Check the details of the company in the official registry of the country in which it is registered (it can often be found on the website of the federal tax inspectorate)

cipher387.github.io/corporative_re… (63 countries) Image
Read 19 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!

Like this author's thread?

Get emails when @cyb_detective has new unrolls!

Check out other threads from @cyb_detective!

Read all threads by @cyb_detective

:(