Irina Tech Tips Newsletter #9
Hello, my dear readers!
Thank you so much for staying with me!
Just a reminder that in this newsletter, I will be collecting weekly posts from two Twitter accounts - https://twitter.com/cyb_detective and https://twitter.com/irina_tech_tips.
After 4 months of procrastination, I finally wrote an article on Medium about gathering info about usernames:
- basics tools for nickname enumeration
- search URLs with nickname
- using ip search engines (@shodanhq, @Netlas_io) for nickname info gathering
Pay special attention to this article. I spent a lot of effort on it.
And now for tools and tutorials from last week's tweets that you may have missed.
Text-on-Maps search in David Rumsey Map Collection
It seems that this is the news of the year for those involved in historical and genealogical investigations.
David Rumsey maps collection allows searching ⚠️Text on Maps⚠️ since 31 August 2023!
100 million words indexed on 57 000 maps
PyDork
Tool for automation collecting Google, Bing, DuckDuckGo, Baidu and Yahoo Japan search results (images search and suggestions).
Note the huge(!) number of options for customizing search results.
https://github.com/blacknon/pydork
Tools for refining photos created with Human Generator generated.photos/human-generator/
hey-photo.com - add emotions
https://huggingface.co/spaces/runwayml/stable-diffusion-inpainting - edit image with AI
https://huggingface.co/spaces/NagaSaiAbhinay/UnCLIP_Image_Interpolation_Demo
- mix with other images
https://huggingface.co/spaces/timbrooks/instruct-pix2pix - add more natural look
#sockpuppets
Decoding Smartphone Identifiers (tools and techniques)
MAC Adress
Serial Number
IMEI
SSAID ID
UDID
IP Adress
Advertising ID
IMSI
https://start.me/p/0PYlQd/decoding-smartphone-identifiers
Shodan Dorks 2023
DICOM
Elasticsearch
Access FTP Anonymous
Authentication Disabled SMB
Access MongoDB, Jenkins, devices ADB and SCADA Moxa
Electronic measure
Search Web shell
Search Backup Files
OS Windows Obsolete
https://github.com/HernanRodriguez1/Dorks-Shodan-2023
Collections of links to documentation on advanced search operators for various sites and applications:
OSINT-Advanced-Searching from twitter.com/cqore:
https://github.com/cqcore/OSINT-Advanced-Searching
Advanced search operator list from me:
https://github.com/cipher387/Advanced-search-operators-list
A simple but very interesting example of solving the geolocation challenge
How to determine a person's location by a couple of blurred inscriptions in a lift and the number of floors in a couple of minutes?
PHISHING POT
If you want to learn how to investigate phishing attacks, there are 1000 (!) eml files in this repository that you can practice on.
https://github.com/rf-peixoto/phishing_pot
(If you don't know how to investigate #phishing, read this https://osintteam.blog/from-inbox-to-intel-a-deep-dive-into-phishing-investigation-via-osint-d0c7ece36070 )
As of today, that's it. Thank you very much for your attention! See you next Friday! (I hope).