WireTapper is an open-source OSINT/SIGINT platform that passively scans and visualizes every nearby wireless device—from Wi-Fi and Bluetooth to CCTV and vehicle RF—using a privacy-preserving k-anonymous query, integrates multiple external APIs, and offers a quick two-step deployment with a sleek web UI.
Maigret is an open‑source Python utility that, with a single username, scans over 3,000 websites to automatically collect public profiles, images, locations and linked accounts, offering a fast, extensible way for OSINT practitioners to build comprehensive digital footprints while emphasizing legal and ethical use.
This guide explains how to install the open‑source OSINT tool Sherlock, run it to enumerate your usernames across hundreds of websites, refine searches with site filters, and perform fuzzy queries, helping you identify and clean up unused online accounts.
This guide walks through the full red‑team workflow—from reconnaissance and initial access through defense evasion, credential theft, lateral movement, and operational security—detailing concrete tools, commands, and techniques for compromising both external and internal networks.
The article analyzes how everyday posts on platforms like WeChat, GitHub, and TikTok can be harvested as open‑source intelligence, enabling phishing, BEC, and deep‑fake attacks, and offers concrete mitigation steps for security professionals.
This guide explains how to extract the UID of a Weibo user who posted a specific image by dissecting the image URL, converting the embedded hexadecimal string to decimal, and verifying the result against the user’s profile.
This article demonstrates a practical OSINT workflow that combines social‑engineering clues, railway route research, terrain assessment, and feature‑based image analysis to pinpoint the exact shooting spot of a travel photograph taken on a train in northern China.
During the Mid‑Autumn Festival I received a seemingly harmless mooncake email, suspected it was a phishing test, and then used a virtual machine, network‑capture tools, Shodan, and open‑source intelligence to trace the malicious link back to its source and exposed the underlying infrastructure.
This article compiles a comprehensive, categorized collection of penetration testing resources—including anonymity tools, antivirus evasion utilities, books, CTF frameworks, Docker containers, network analysis tools, OSINT platforms, and more—providing security professionals and researchers with a valuable reference for offensive security engagements.
A detailed OSINT investigation reveals how a victim's plea led to uncovering a hidden gambling website, exposing its server location, associated accounts, personal identities, and ultimately forcing the operator to return the stolen funds and shut down the site.
In this detailed case study, the author discovers a pornographic website, uses WHOIS and email reverse‑lookup to uncover a network of 28 related sites, registers an account, follows payment and contact clues, obtains the operator’s IP, phone and address, and ultimately pressures the owner until the sites disappear.
This comprehensive collection presents a curated list of penetration testing resources—including anonymity tools, antivirus‑evasion utilities, books, CTF frameworks, Docker containers for vulnerable systems, network analysis utilities, OSINT services, reverse‑engineering tools, and security education materials—providing security professionals and researchers with a valuable reference for offensive security testing and learning.
