Tools(OSINT) every security engineer should be aware off

We will try to solve three questions in this blog. Let’s explore !!

1. What is OSINT … 2. Why is OSINT … 3. When is OSINT …

What is OSINT ??

If you’ve heard the name but are wondering what it means, OSINT stands for open-source intelligence, which refers to any information that can legally be gathered from free, public sources about an individual or organization.

Quote: “Our life is what our thoughts make it“ — Marcus

Why is OSINT ??

When you are working in the security operations it might be a proactive or reactive environment it doesn’t matter at all. You need to gather information about the attacker in order to restrict/block it is so vital.

What information we will gather mostly from OSINT tools….

IP address, Hash Values,domains,URL’s and file information

Below are some of the OSINT tools and their links …

Virustotal: https://www.virustotal.com/gui/home/upload

AbuseIPDB : https://www.abuseipdb.com/

IBM X-Force Exchange: https://exchange.xforce.ibmcloud.com/

AlienValut: https://otx.alienvault.com/dashboard/new

BGP Tool kit: https://bgp.he.net/

Whois lookup: whois.doamintools.com

check website is malicious/scam: https://www.urlvoid.com/

Site review: https://sitereview.bluecoat.com/

Url testing: https://trustedsource.org/

Sucuri:https://sitecheck.sucuri.net/

Cross-Browser testing: https://www.browserling.com/

Above are some of the OSINT tools…Feel free to add more in the comment section…

When is OSINT used ??

There is no particular time or occasion when we should you these tools, we should always keep some tools in handy. Having a “stethoscope” for a doctor. Having “Photos” for an actor. Having a “ camera” for a cameraman and having “OSINT” tools for a security engineer is that important.

Thanks for reading this far “very much appreciated”. If possible do Follow Me for more stuff like this. Happy Learning !!

Let’s make this world a better place to live. Peace !!