Information Gathering

OSINT-Collector : Harnessing Advanced Frameworks For Domain-Specific Intelligence Gathering

OSINT-Collector is an advanced framework that facilitates the collectionanalysis, and management of OSINT information useful for conducting investigations in specific domains of interest.

Table Of Contents

  • Design and Architecture
  • Requirements
  • Sequence Diagram
    • Interaction Flow
  • Backend
    • Configuration
    • Importing OSINT Ontology
    • Creating Domain Ontology with Wikidata
    • Neo4j Plugins
  • Launcher
  • Frontend
    • Add Tools
  • Usage
    • Run Tools
    • View Results
    • Make Inferences
    • Search Engine
  • Preventing a School Shooting: a DEMO Scenario!

Design And Architecture

In this framework has been used an Ontology approach:

  • The OSINT Ontology describes how data extracted from OSINT sources should be inserted into the database, including their respective properties and relationships.
  • Domain Ontologies describe various domains of interest. These ontologies are utilized to link the extracted data to entities within these domains, enabling deeper inferences.

Using the graphical interface, the user can select an OSINT tool, input required parameters, and initiate execution to perform a specific search.

This execution request is sent via an HTTP request to the Launcher, which then executes the requested tools using the corresponding inputs.

The resulting data are aggregated, filtered and sent via an HTTP request to the backend, which communicates with the database and performs the following operations:

  • Insertion and linking of data based on the schema described by the OSINT Ontology.
  • Analysis of textual documents using NLP techniques provided by cloud services to extract suspicious entities and moderate the text to identify dangerous categories.
  • Linking of entities and categories extracted in the previous phase with the domain ontologies.

The user can visualize the search results through the graphical interface, with the framework highlighting the identified contents during the analysis, emphasizing suspicious entities and categories.

Users can conduct further, more in-depth searches.

Using the OSINT Ontology allows for easily including new OSINT sources to leverage.

Requirements

This project requires the following dependencies to be installed:

  • Docker and Docker Compose
  • Node.js and npm

For more information click here.

Varshini

Tamil has a great interest in the fields of Cyber Security, OSINT, and CTF projects. Currently, he is deeply involved in researching and publishing various security tools with Kali Linux Tutorials, which is quite fascinating.

Leave a Comment
Share
Published by
Varshini
Tags: cybersecurityinformationsecuritykalilinuxkalilinuxtoolsOSINT-Collector
6 months ago

Recent Posts

Kali Linux 2024.4 Released, What’s New?

Kali Linux 2024.4, the final release of 2024, brings a wide range of updates and…

2 days ago

Lifetime-Amsi-EtwPatch : Disabling PowerShell’s AMSI And ETW Protections

This Go program applies a lifetime patch to PowerShell to disable ETW (Event Tracing for…

2 days ago

GPOHunter – Active Directory Group Policy Security Analyzer

GPOHunter is a comprehensive tool designed to analyze and identify security misconfigurations in Active Directory…

4 days ago

2024 MITRE ATT&CK Evaluation Results – Cynet Became a Leader With 100% Detection & Protection

Across small-to-medium enterprises (SMEs) and managed service providers (MSPs), the top priority for cybersecurity leaders…

6 days ago

SecHub : Streamlining Security Across Software Development Lifecycles

The free and open-source security platform SecHub, provides a central API to test software with…

1 week ago

Hawker : The Comprehensive OSINT Toolkit For Cybersecurity Professionals

Don't worry if there are any bugs in the tool, we will try to fix…

1 week ago