Open Source Intelligence | Web Scraping | Reverse Engineering | osint.support@protonmail.com
2 subscribers
Feb 13, 2023 • 4 tweets • 1 min read
[#OSINT] Fitness data offers so many opportunities and insights with investigations. A few weeks ago i searched for any activities around Epstine's island, also known as Little Saint James. 1/4
A single snorkeling activity was returned, however while this was very close to the island, it could simply be a chance encounter with a tourist on a boat. 2/4
Jan 12, 2023 • 6 tweets • 2 min read
[#OSINT|#OPSEC|#DATALEAK] When you don’t renew a domain name that you use for email it creates the opportunity for a bad actor to take over accounts registered with email addresses at that domain.
1/
Dataleaks allow a bad actor to use this attack vector at scale. Exporting unique domains from the email addresses, filtering by occurrence then running a whois service over the top of them is low effort.
2/
Nov 16, 2021 • 5 tweets • 2 min read
1/5 [#OSINT|#WORDPRESS] For anyone who's been following my previous tweets over the last few days, I'm going to show you how its possible to identify someone who's commented on Wordpress website by leveraging Gravatar and Email Address Hashing.
2/5 if we visit the following link, and scroll down to the bottom, we can see many users have engaged with the authors post as shown in the image below.
1/6 [#OSINT] Gravatar is used by more than 200m users, the email address used to create your account is also hashed to create your unique profile url; which poses a massive privacy implication if you was to be able to reverse the MD5 hash but also creates an opportunity.
2/6 If you have a large enough collection of email addresses you could start by hashing every single one and storing them in a table. The more you have the greater the chance you have of being able to take a url of any Gravatar Profile and decoding the registered email address.
Nov 14, 2021 • 4 tweets • 2 min read
1/4 [#OSINT|#SOCMINT] Been a couple of months and almost forgot about the Research/PoC i was doing around the #GuntraderUK data leak.
Here is a FB Profile from one of the members which is pretty concerning especially if this individual keeps licensed firearms. 2/4 I did find more interesting posts/photo's on his timeline. A photo of him hunting with a shotgun by the looks of it and a photo/ad of a "Walther CP99 .177 Pistol" which was being advertised for sale.