Open Source Intelligence


The focus of this section is to provide helpful resources for OSINT and Passive reconnaissance on a given target. There will be certain tools and sites you might be familiar with that could be applicable in this section, that I have omitted and with good reason.
  1. 1.
    This section is "Passive" recon, which does not entail touching or interacting with your target in any way. For offensive operations, staying off radar is key. But can we check with other sources that may have already scanned out target? You bet.
  2. 2.
    There are many research tools that provide similar output to the ones listed in the later sections. The ones that I have specifically omitted (and will document in another section) are tailored more to defensive operations and contain information like reputation data and historical activity.

OSINT Resources

OSINT Guides and Methodology
OSINT training courses.
OSINT CTFs and Modules
Youtube Channels and Web Casts
OSINT communities and thier resources
OSINTer Blogs
Volunteer OSINT


OSINT Tool and Resource Collections
OSINT Virtual Machines

Tools by Category