OSINT Toolkit

Person, phone, DNS, IP, etc. tools.

Person Lookup

• Voter Records
• TruePeopleSearch
• That's Them (Name, Address, Email, Phone, etc.)

Phone Lookup

• FoneFinder (Gives location and provider)
• Telephone Prefixes: Wikipedia1, Wikipedia2

Whois // DNS

• Whoxy Domain Search Engine (WHOIS lookups and reverse lookups)
• Whois.com
• NsLookup.io
• ViewDNS.info (Shoutout Michael Bazzel!)
  • Note that a good combination is to do an "IP History" lookup to find the IP address that hosts a website, and then putting the IP address into the "Reverse IP Lookup" to find other sites hosted on the same server. Great pivoting technique!

IP Address

• ipinfo.io

NFTs

• Nyckel NFT Finder
• Etherscan (Wallet Addresses, Specific NFTs, Transactions, etc.)
• Opensea.io
• OKX Exchange

Reverse Image Searching

• Tineye (looks for exact matches across the internet)
• Google Reverse Image Search

Misc.

• WIFI: Wigle.net (need an account)
• VIN NUMBERS: easily searchable
• AnyRun Threat Intelligence (Statistics, charts, recent events, reports, and MITRE ATT&CK)

Dorking Cheatsheet:

• Quotation Marks
• before:YYYY-MM-DD
• after:YYYY-MM-DD
• filetype:pdf
• site:xyz.com Complicated Query Example: ("passwords.txt" OR "leaked-passwords.csv" OR "secrets.txt") AND intitle:"index" -of