OSINT Automation
Course Description
OSINT (Open Source Intelligence) is the foundation of any security assessment. This course teaches automated intelligence gathering techniques.
Learning Objectives
- Automate reconnaissance workflows
- Profile targets comprehensively
- Discover hidden assets and subdomains
- Correlate data from multiple sources
- Build custom OSINT tools
- Report intelligence findings
Course Structure
Modules
Module 1: OSINT Fundamentals (5h)
- OSINT methodology
- Legal considerations
- Data sources overview
- Documentation practices
Module 2: Domain Intelligence (7h)
- DNS enumeration
- Subdomain discovery
- Certificate transparency
- WHOIS analysis
- Historical data (Wayback)
Module 3: People Intelligence (6h)
- Email discovery
- Social media profiling
- Username correlation
- Breach data analysis
- Professional networks
Module 4: Infrastructure Mapping (6h)
- Shodan mastery
- Censys usage
- Cloud asset discovery
- Technology fingerprinting
- Network mapping
Module 5: Automation Tools (8h)
- Maltego transforms
- SpiderFoot usage
- Recon-ng modules
- theHarvester
- Custom Python scripts
Module 6: Social Media Intel (4h)
- Twitter intelligence
- LinkedIn reconnaissance
- Facebook OSINT
- Instagram analysis
- TikTok intelligence
Module 7: Reporting & Analysis (4h)
- Data correlation
- Visualization tools
- Report templates
- Actionable intelligence
Tools
| Tool | Purpose |
|---|---|
| Maltego | Link analysis |
| SpiderFoot | Automated OSINT |
| Recon-ng | Framework |
| theHarvester | Email/domain enum |
| Shodan | Internet scanning |
| Amass | Subdomain enum |
📄️ Overview
Automated open source intelligence gathering and analysis