Man
Professional
- Messages
- 3,070
- Reaction score
- 606
- Points
- 113
• How does a good OSINTer usually earn his bread? By searching for leaked documents. No kidding, in most companies that deal with security and brand protection, searching for leaked (either by mistake or on purpose) documents takes up a decent part of the budget.
• What about the arsenal? Well, ours is not that big. The most important one is Google dorks, which are used to open most documents. Don't forget about Google Hacking Database. Everything is described there better than in any book. Choose and use.
• What else? So that it can be automated somehow? There is the wonderful FOCA. It scans websites with literally one click, and without your dorks and various search engines. And it also extracts Exif data from documents, which can directly point to the scoundrel who committed this leak. For a security professional, this is just a gift and a bonus right before the New Year.
• Of course, there are also fuzzers that sort through sections of a site using a dictionary, there is also a search for subdomains. But they cannot compare with FOCA in terms of efficiency. So seven troubles - one answer. May the force be with you!
• What about the arsenal? Well, ours is not that big. The most important one is Google dorks, which are used to open most documents. Don't forget about Google Hacking Database. Everything is described there better than in any book. Choose and use.
• What else? So that it can be automated somehow? There is the wonderful FOCA. It scans websites with literally one click, and without your dorks and various search engines. And it also extracts Exif data from documents, which can directly point to the scoundrel who committed this leak. For a security professional, this is just a gift and a bonus right before the New Year.
• Of course, there are also fuzzers that sort through sections of a site using a dictionary, there is also a search for subdomains. But they cannot compare with FOCA in terms of efficiency. So seven troubles - one answer. May the force be with you!
