Information Gathering

OSINT-Collector : Harnessing Advanced Frameworks For Domain-Specific Intelligence Gathering

OSINT-Collector is an advanced framework that facilitates the collectionanalysis, and management of OSINT information useful for conducting investigations in specific domains of interest.

Table Of Contents

  • Design and Architecture
  • Requirements
  • Sequence Diagram
    • Interaction Flow
  • Backend
    • Configuration
    • Importing OSINT Ontology
    • Creating Domain Ontology with Wikidata
    • Neo4j Plugins
  • Launcher
  • Frontend
    • Add Tools
  • Usage
    • Run Tools
    • View Results
    • Make Inferences
    • Search Engine
  • Preventing a School Shooting: a DEMO Scenario!

Design And Architecture

In this framework has been used an Ontology approach:

  • The OSINT Ontology describes how data extracted from OSINT sources should be inserted into the database, including their respective properties and relationships.
  • Domain Ontologies describe various domains of interest. These ontologies are utilized to link the extracted data to entities within these domains, enabling deeper inferences.

Using the graphical interface, the user can select an OSINT tool, input required parameters, and initiate execution to perform a specific search.

This execution request is sent via an HTTP request to the Launcher, which then executes the requested tools using the corresponding inputs.

The resulting data are aggregated, filtered and sent via an HTTP request to the backend, which communicates with the database and performs the following operations:

  • Insertion and linking of data based on the schema described by the OSINT Ontology.
  • Analysis of textual documents using NLP techniques provided by cloud services to extract suspicious entities and moderate the text to identify dangerous categories.
  • Linking of entities and categories extracted in the previous phase with the domain ontologies.

The user can visualize the search results through the graphical interface, with the framework highlighting the identified contents during the analysis, emphasizing suspicious entities and categories.

Users can conduct further, more in-depth searches.

Using the OSINT Ontology allows for easily including new OSINT sources to leverage.

Requirements

This project requires the following dependencies to be installed:

  • Docker and Docker Compose
  • Node.js and npm

For more information click here.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Leave a Comment
Share
Published by
Varshini
Tags: cybersecurityinformationsecuritykalilinuxkalilinuxtoolsOSINT-Collector
1 year ago

Recent Posts

Pystinger : Bypass Firewall For Traffic Forwarding Using Webshell

Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…

13 hours ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

13 hours ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

1 day ago

How to Bash Append to File: A Simple Guide for Beginners

If you are working with Linux or writing bash scripts, one of the most common…

1 day ago

Mastering the Bash Case Statement with Simple Examples

What is a bash case statement? A bash case statement is a way to control…

1 day ago

How to Check if a File Exists in Bash – Simply Explained

Why Do We Check Files in Bash? When writing a Bash script, you often work…

3 days ago