OSINT - Open Source Intelligence

Mapping and analyzing your organization's digital footprint

What is OSINT?

OSINT (Open Source Intelligence) is the process of collecting and analyzing information from public and open sources. In this context, we scan and analyze publicly available information on the internet to identify exposures, information leaks, and sensitive details that could endanger the organization.

Information is collected from various sources: social networks, public databases, websites, the deep web, data breaches, and more - all through legal and ethical means only.

What Problem Does It Solve?

Many organizations are unaware of the information exposed about them online. Information leaks, misconfigurations, personal details of employees, and sensitive data - all of these can serve as entry points for attackers.

OSINT information collection allows you to:

  • Identify sensitive information accidentally exposed online
  • Discover information leaks from previous data breaches
  • Map the organization's attack surface
  • Understand how an attacker views the organization from the outside

Our Methodology

1

Scope and Objectives Definition

Building a target list: domains, subdomains, key employees, brands, and other targets to be mapped.

2

Automated and Manual Information Collection

Scanning public information sources: social networks, databases, GitHub, deep web, data leaks, search engines, historical archives, and more.

3

Analysis and Correlation

Analyzing collected information, identifying patterns, connecting different pieces of information, and identifying significant exposures.

4

Severity Rating and Recommendations

Rating findings by severity, identifying key risks, and presenting actionable recommendations for handling exposures.

5

Final Report and Findings Presentation

Preparing a comprehensive report with all findings, digital footprint mapping, and executive presentation with strategic recommendations.

What You Get

Detailed OSINT Report

Including all findings, identified leaks, exposures, and complete digital footprint mapping.

Risk Analysis

Severity and risk assessment for each finding, addressing business and reputational risks.

Remediation Recommendations

List of targeted actions to remove exposures, protect information, and reduce attack surface.

Summary Meeting

Presentation of findings to management team, with Q&A and clarifications.

Want to Know What's Exposed About Your Organization?

Contact us today for a comprehensive OSINT information collection proposal

info@mkb-shield.com