OSM Smart Menu

Google Chrome extension to switch between dozens of different types of online maps (based on #OpenStreetMap and NOT only):

OpenSea
OpenSnow
OpenTopo
Open Public Transport
Historical Objects
3D map

and more!

https://chrome.google.com/webstore/detail/osm-smart-menu/icipmdhgbkejfideagkhdebiaeohfijk/related

#osint #geoint

BlackBird

- Search username across 73 sites:
- API username check (Protonmail, PlayerDB, Hackthebox etc);
- Check archived Twitter accounts.

https://github.com/p1ngul1n0/blackbird

#osint #socmint

Creator twitter.com/p1ngul1n0

Little timesave trick

Use "map:" advanced search operator for quick view some geographical object (country, town, river) in #Google search results.

map:europe
map:berlin
map:dnepr

Note that today the BlackBird tool has a standalone version. It can now be used directly in the browser.

DAILY UPDATED PROXY LISTS

For scraping and other information gathering automations:

https://github.com/clarketm/proxy-list
https://github.com/TheSpeedX/PROXY-List
https://github.com/ShiftyTR/Proxy-List
https://github.com/jetkai/proxy-list

Socks5 for Telegram:
https://github.com/hookzof/socks5_list

#osint #socmint #scraping #pentest

Awesome Anti Censorship

Privacy and anonymity
Network tunnels
Firewall analysis
Decentralized systems
Steganography
Deniable encryption

https://github.com/danoctavian/awesome-anti-censorship

#privacy #anticensorship

The Worldwide #OSINT Tools map now links not only to individual tools, but also to entire toolkits for countries (Startme, Github):

South Africa
China
Australia
Hungary
Canada
South Korea

https://cipher387.github.io/osintmap/

#geoint

It's been almost nine months since I used the bot @getnaked_bot for creating Telegra.ph articles from Twitter threads.

I found out about this bot because its developer @techcrunch sent me a message inviting me to try it. This bot turned out to be absolutely essential for me. I've run it dozens of times (and regularly pestered the developer to improve the bot).

But a couple of days ago @techcrunch told me that only 3 people (including the developer himself) were using this bot.

I was, of course, very surprised. But, unfortunately, this is a very typical situation for highly specialised tools. Many scripts for #osint on Github have no more than a couple of dozen stars, but are completely indispensable for some tasks. And for some researchers, even become part of their daily workflow.


Unfortunately, the development of unique and indispensable, yet unpopular tools is often halted by a lack of feedback. Developers do not see the return on their work and switch to other projects.

If you use a highly specialised free tools, try to support its developers at least occasionally: write reviews and acknowledgements, talk about their projects on your social media accounts, make donations, etc.

These simple actions are as important for the development of free software as the development itself. Tens of thousands of worthwhile projects are lost each year due to lack of user support.


-------------------

Other project of @techcrunch (@getnaked_bot creator):


@igspybot - bot for downloading content from Instagram accounts
@youbastard_bot — bot deleting spam from group Telegram chats

It is no longer possible to enter the site: search operator directly into the input form to search for a specific site on Yandex Pictures.

You now have to add the parameter directly into the URL:

&site=instagram.com

#osint #socmint

One of Twitter's interesting features is to create themed lists of accounts. For example, I recently put together a list of accounts of hacker conferences taking place around the world.

In this list you can find links to recordings of interesting talks, announcements of live and offline events, and a bunch of different cybersecurity-related content

https://twitter.com/cyb_detective/status/1530876908820484096

Guide to searching in different file types

This guide is particularly useful for those working with data leaks (which come in a wide variety of file formats). You will learn which tools to use and how to use them in different situations.

https://github.com/soxoj/files-search-guide

#osint #leaks

RUBY

Simple tool for searching videos by keyword in Rumble, BitChute, YouTube and saving results (author, title, link) to CSV file.

https://github.com/jakecreps/ruby

Creator twitter.com/jakecreps


#python #opensource #osint

nDorker

Enter the domain name and get quick links to Google Dorks, Github dorks, Shodan dorks and quick links to get info about domain in Codepad, Codepen, Codeshare and other sites ("vendor dorking")

https://github.com/nerrorsec/nDorker

#python #opensource

One of the main drawbacks of many hacker conferences is the large number of promotional speeches that IS companies advertise their products at.

But many large IS conferences have so-called "community zones" where only independent researchers and real hacking enthusiasts gather.

That is exactly what we are expecting "Defcone ZONE" at OFFZONE 2022, that will take place in the end of August in Moscow.

There you'll be able to listen to talks by famous people like lockpicking wizard Nipnull (https://www.youtube.com/watch?v=BBnhZnQkuA0&t=1116s) and OSINT tools developer Soxoj (https://t.me/cybdetective/970)

You can find all the details on the DC Online channel https://t.me/defcon_events

For speaker submissions and media partnerships, please contact @nipnull

Все к этому шло, но только теперь уже публично и для всех)

Мы будем на OFFZONE 2022!

Более того, теперь эта история будет больше, чем когда-либо раньше, так что анонсируем вам:

DEF CON ZONE ON OFFZONE 2022

У ребят еще пока есть Early Birds Tickets

А если не хочется покупать билет, то можно попробовать свои силы и запилить аддон к бейджу, как на старом добром DEF CON
Авторы самых красивых бейджей, по мнению организаторов, получат проход на конференцию бесплатно
Но стоит поторопиться - конкурс идет еще месяц!

Hacking Conferences and Meetups


Here is a small selection of cybersecurity channels and groups of conferences and meet-ups. You can use it to choose where to go or even where to give a talk.

As it happens, there are more Russian conferences on the list, but many of them host foreign speakers and participants.

If you know the Telegram channels of any other conferences, send me links to them in private messages.


Osintomatico https://t.me/osintomatico (Madrid)
H2HC - Hackers to Hackers Conference group https://t.me/h2hconference (San Paulo)
BlockSec Conference | Official Blockchain Security Conference https://t.me/BlockSecOfficial group (?)



Offzone https://t.me/offzone_moscow (Moscow)
Mail Security Meetup https://t.me/mailru_security_meetup (Moscow)
KICS con 2022 / Kaspersky Industrial Cybersecurity conference group https://t.me/KICScon (Russia (?)Sochi(?))
Pentestit Security Conference 2017 https://t.me/pentestit_security_conference (Oryol, Russia)
Zero Nights https://t.me/zeronights (Moscow)
IT Security https://t.me/itsec_conference (Russia)
DC7495 https://t.me/DEFCON7495 (Defcon Moscow)
DC Online https://t.me/defcon_events (Moscow)
Defcon NN https://t.me/defcon_nn (Russia, Nizhny Novgorod)
DC20e6:Defcon Ylyanovsk group https://t.me/dc20e6 (Russia)
PHDays CI Group https://t.me/phdayscichat (Moscow) ----- And here you can read more about the events after which the PHDays conference lost some of its credibility https://t.me/phdays11 ----


DC 38032 https://t.me/DC38032_feed (Lyviv, Ukraine)
DC8044 F33d https://t.me/s/DC8044_Info (Defcon Kyiv)

All about dating investigation

Websites, tools, articles, guides, ratings.

Tinder
Grindr
OK CUPID
POF
HAPPN
Hinger

https://start.me/p/VRxaj5/dating-apps-and-hook-up-sites-for-investigators

NAMINT

Quickly search through the different patterns generate by first/last name

quick links for different social networks, search engines and gravatars for logins in different email providers. https://seintpl.github.io/NAMINT/

The first stream of @Soxoj's course starts as early as 14 June at 19:00. Read more about who @Soxoj is and his huge contribution to the global #osint community in this post https://telegra.ph/If-you-are-interested-in-developing-osint-tools-or-osint-in-general-I-recommend-you-to-subscribe-to-06-01

https://github.com/chubin/cheat.sh

A super simple time saving script that allows cheat sheets to be loaded directly into the command line using the curl command (run after installation). For example:

curl cht․sh/screen

Or:

curl cht․sh/python/Functions

A full list of available cheat sheets is available at https://cht.sh. (there are thousands of them)

There are versions of the tool with support for Vim and Emacs, as well as plugins for Sublime Text and IntelliJ IDEA.

Thanks for tip S.E. Reborn channel https://t.me/S_E_Reborn