OSINT for hackers and penetration testers

Explore virtualization by creating independent virtual machines within a single host using VirtualBox, manage snapshots to revert systems, and support isolation for safe pen testing.

Explore how to set up and customize a Trace Labs Linux VM in VirtualBox, install tools via a desktop script, and tailor an OS for investigations.

Install kali linux in a virtual box for OSINT work, using the 64-bit iso, verify sha256, configure memory and a 38 GB dynamic disk, and complete installation with grub.

Explore kelly linux basics, a debian-based distribution used for penetration testers, and master terminal navigation, file commands, manual pages, and essential tools like ping and ifconfig.

Learn to install Terminator via apt-get and use its split horizontally and vertically to run multiple commands in one window.

Discover methods to create Gmail sockpuppet accounts using burner smartphones to avoid phone verification, noting Google may allow roughly three accounts per day before requiring verification.

Explore Teachable Machine, a browser-based Google tool that trains image, audio, or video models without coding. Apply it to OSINT and reconnaissance using images, audio, or video.

Explore how dHash aggregates data breach databases, free searches, and paid access, and learn to assess data exposure, including usernames, emails, IP addresses, and hash passwords, for investigations.

Use cherry tree to organize reconnaissance notes for OSINT and pen testing. Create main and sub nodes, attach media, and export notes in multiple formats for reporting.

Explore a flowchart for osint reconnaissance that guides target identification and data collection on a person or business using people searches, social media, breach databases, and metadata.

collect as much data as possible during osint reconnaissance, keep it organized and secure, and document a written scope with start and stop dates, authorization, and state-law compliance.

Learn how aliases and the sudo app can create multiple identities, including phone numbers and emails, to protect privacy, verify accounts, and support ethical hacking and OSINT tasks.

Use 20 minute mail to generate a temporary email for OSINT work, creating alias social media accounts while avoiding real identity details. Disposable addresses delete after 20 minutes.

Leverage Google advanced searches and operators to perform targeted OSINT for hackers and penetration testers, using exploit-db templates and prebuilt searches for admin, file type, web server detections, and vulnerability.

Learn to use Google Images to upload or search a photo via the camera icon, trace where else the image appears across social media, metadata, and forums for osint investigations.

Explore Google Images' reverse image search by uploading a file or using a URL via the camera icon, and isolate an exact match to identify the image source.

Explore how Google Maps and Street View aid reconnaissance for ethical hacking by identifying entry points, cameras, doors, and surrounding layouts for physical penetration tests.

Dumpster diving can reveal sensitive information from discarded electronics and documents, including poorly wiped data. When authorized, it serves as a powerful reconnaissance avenue for penetration testers.

Metagoofil enables web site reconnaissance by locating and downloading specific document types from a target domain, such as PowerPoint and Excel files.

Explore URLScan.io to inspect a website, with configurable options like public visibility, country, and user agents, and review requests, redirects, screenshots, and IP details.

Explore leaked domains and perform searches for domains, emails, usernames, passwords, IPv4/IPv6, street addresses, names, phone numbers, and more using free and paid access, with redacted results and credential databases.

Learn how meta dot r dot, a beta OSINT tool, analyzes full URLs to fetch pages, detect language, and inspect HTTP headers, metadata, SSL certificates, robots.txt, sitemaps, and CDN info.

Explore using been verified for US person searches, phone numbers, emails, domains, and more, assessing data quality with high confidence filters, fraud scores, and dark web mentions.

Explore vishing, the voice-based phishing technique, covering target selection, pretext crafting, spoofed numbers, and social engineering to extract money from individuals or organizations.

Install and use phone info ga, a Python 3 OSINT tool for phone numbers, by cloning from GitHub, installing requirements, and running commands to identify country, time zone, and landlines.