It's scary what you can find out about people based on their social media posts - including their drinking and exercise habits. With just a few tools and techniques you can use Open Source Intelligence (OSINT) to find all kinds of information about people. And it gets worse - someone like Micah can write tools to aggregate that data.

Never allow tracking when you post on Social Media. Never overshare. It's just scary what people can find out about you through what you are posting online.

// MENU //
00:00 - Introduction
01:31 - Geolocation
03:53 - Twitter Geolocation
09:15 - Geotagging Steve Wozniak
11:20 - Virtual Machine Setup for safety
18:39 - Untapped Website - your drinks are tracking you
21:30 - UntappedScrapper - crazy data manipulation
26:58 - Over Sharing Data
29:30 - Strava - exercise tracking
31:50 - CyberChef - sorting data
34:25 - Github
34:50 - OSINT Curious
39:20 - MyOSINT Training
41:30 - Self-Training options
43:36 - Top 3 OSINT Tools: Obsidian
44:37 - Top 3 OSINT Tools: WhatsMyName.app
45:02 - Top 3 OSINT Tools: VPN
45:53 - Outro

// Previous videos //
You can't hide: https://youtu.be/ImWJgDQ-_ek
OSINT tools to track you down: https://youtu.be/OsY32K1s51Y

// Discounts on training //
NOTE: I do NOT get any affiliate fee or commission or anything. This is just me helping you with content if you want it.
Get 10% off all Micah’s OSINT courses with code: “bombal-mot-10”
Most popular course - All Course Subscription – 1 year: https://www.myosint.training/bundles/mot-all-1-year
OSINT Games TENET OSINT CTF learning experience:https://www.myosint.training/courses/og-tenet

// Micah Hoffman's Social //
Twitter: https://twitter.com/webbreacher
LinkedIn: https://www.linkedin.com/in/micahhoffman/
OSINT Training: https://myosint.training
OSINT Capture The Flag (CTF): https://www.osint.games/
OSINT Consultancy: Spotlight Infosec LLC: https://www.spotlight-infosec.com/#speaking

// The OSINT Curious Project //
YouTube: https://www.youtube.com/c/TheOSINTCuriousProject
Twitter: https://twitter.com/osintcurious
LinkedIn: https://www.linkedin.com/company/the-osint-curious-project
Website: https://osintcurio.us
Public, OSINT-focused Discord: https://iam.osintcurio.us/discord
Sponsor personally or through your company: https://osintcurio.us/funding/

// David's SOCIAL //
Discord: https://discord.com/invite/usKSyzb
Twitter: https://www.twitter.com/davidbombal 
Instagram: https://www.instagram.com/davidbombal 
LinkedIn: https://www.linkedin.com/in/davidbombal 
Facebook: https://www.facebook.com/davidbombal.co 
TikTok: http://tiktok.com/@davidbombal
YouTube: https://www.youtube.com/davidbombal 

// MY STUFF //
https://www.amazon.com/shop/davidbombal

// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com

osint
micah hoffman
twitter
instagram
facebook
foursquare
strava
tracking drinks
tracking excercise
open-source intelligence 
open source intelligence tools
osint curious
geolocation
geolocation game
google
bing
yandex
geolocation google
geolocation bing
you cannot hide
social media
warning about social media
google dorks
dorks
google
osintgram
osint framework
osint tools
osint tv
osint ukraine
osint tutorial
osint course
osint instagram
osint framework tutorial
cyber security
information security
open-source intelligence
open source intelligence
sans institute
cybersecurity training
cyber security training
information security training
what is osint
open source artificial intelligence
cyber
hack
privacy
nsa
oscp
ceh

Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! 

Disclaimer: This video is for educational purposes only. 


#hacking #osint #privacy

It just amazes me because like from a security point of view, you're telling me you're not at home.

It's a perfect time to go and rob your house.

You'll see that there are a lot of people that share a lot of very sensitive things.

And some of them don't realize that they're sharing sensitive things until we aggregate them and analog.

It's interesting that people set that on.

Hi everyone, it's David Bombal back with Micah from OSINT Curious.

Some of the videos we've done with you and the team have done really well, and I'm really looking forward to what we're covering today.

We're gonna kind of extend what Lizette, Steven and I were able to do in previous broadcasts so that we can show just different parts of OSINT and some really cool tools and things we can do.

So for everyone who's watching, if you haven't seen the previous videos, I've linked them below.

Some great content was shared, but Michael, you take it away.

And as I said, you know, before we started, I'm just here for the ride.

Take me and the audience on a ride and show us what you, you know, what you've got.

Well, David, as always, stop me when I do something that you have questions about, because I know that you ask some really insightful questions here.

What I thought we would start out with is doing some geolocation.

And the geolocation that we're going to do is a little bit different from the geolocation that we've done in previous YouTube videos for you in that we're going to be looking at social media, people's social media.

And in Oakland, we do that for a number of reasons.

First off, maybe we want to find out where a person is.

Maybe they're a missing person or maybe we're interested in them as kind of an interesting person for law enforcement.

Maybe we're trying to look at what's happening in an area of the world.

Maybe there's a protest, a riot, a natural disaster that we want to investigate.

So what I thought we would do is head over to Twitter.

Twitter is a very big international social media platform.

And as you can see, I'm not signed in or anything.

Everything that I do today is 100% free and 100% open without accounts, which is 1 of the best things in OSINT.

And do you recommend, I think you used this term previously, a socket account or something, do you recommend, can you explain what that is and why you'd use it?

I don't wanna take you on a tangent, but just thought of it now.

So within open source intelligence, we many times need to get onto social media platforms that sometimes require us to create a research account or as you call it a sock puppet account.

Those accounts are real accounts in the platform, but ones that we control that are not mapped back to our personal details.

So on a platform like Facebook or VK, I would create an account there that's a valid account that would not be in Michael Hoffman's name so that I can gain access to the data I need for my customers.

Here on Twitter, on Strava, on some of the other sites that we're dealing with, you do not need a research account or a sock puppet to log in to gain access to this data.

Now, my goal here is to access that geotag data.

Geotag data is simply when you have your mobile device and you tweet out something or you post something, you tell it to record your GPS location, or maybe in some platforms you are going to be doing like check-ins.

And those check-ins are where you say, hey, I'm at this location, those are recorded along with your posts or tweets or whatever it is on that platform.

With Twitter, they actually have an option for people to opt in to share their geolocation.

Also, in your profile on Twitter, you can look for, you can insert in certain details.

So if I go to, actually instead of my Twitter, let's go to OSINT Curious just to show you.

So OSINT Curious says that it's US based and international focused right here.

Now sometimes they'll actually have, the accounts will actually have their real location, real city, and that can be searched on as well.

Let's go ahead and just take a look at how we access geodata on Twitter.

First thing to do is get a latitude and longitude.

I'm gonna, I'm over here in my Google Maps and I'm gonna pick a place in Singapore.

Now the way that the geotagged information works on Twitter is that you essentially put a pin in a map, say at this latitude and longitude, I want this amount of space, I want 1 kilometer radius around this point.

Grab all of the geotagged information from that.

So what I'm gonna do is grab a latitude longitude.

I'm over here in Singapore, and I've got a latitude and longitude right up here in the URL.

And that latitude and longitude I can just plug right into Twitter using a special term.

I don't want all the tweets that are geotagged in Singapore.

I just want tweets that are within maybe 3 kilometers or 3 miles of a certain point.

There are many tools out there that will allow you to pick a point and then draw a radius, a circle of a certain radius on a map.

And if we go in here to Singapore and we zoom in to like the Marina area, we can create a new circle, move it over here, and then we can change the diameter of it or the radius of it so that it just has the area we want.

Now picture this, maybe there's a protest or rally.

Over in Singapore, they just legalized, I think, gay relations.

So a lot of people are out there and happy in the streets and stuff.

We can put a point in the map and say within 1 mile of that point, I want you to tell me what's in there.

And we look to see if our targets are in that area.

Okay, well here we've got the Marina Bay Sands Hotel.

So if that's where we want, then over in the other map, we're going to put our point right there on that area, right here.

And then we're gonna take this latitude and longitude.

It helps, especially if you're trying to get a very tight area.

Like David, if there's a building that some people work in and you wanna see if people are tweeting with geolocated content from inside that building, we can specify a building and then a very tight radius circle.

A lot of people don't turn off their geolocation, is that right?

That's right, well actually it's the opposite.

To do geolocating, to do geotagging of your tweets, you have to opt in for it.

There are certain reasons why people want to do that, which are frankly beyond me.

So we go over to the search, we type in geocode colon, paste in that latitude longitude, and then what we need to do is tell it how big of a radius around that.

Let's go ahead and hit comma, 1 kilometer.

You could also do 1 mile or 5 miles or whatever.

In fact, let's just make sure that we get a good listing here.

And what we see are geo-tagged tweets that are within this area.

Again, I don't know what's coming up, but here we have a Singapore strategy session and more.

If there was a protest or a riot or a rally or something else going on, natural disaster in this area, what we might see here are photos from around that area, and it could help us assess the situation.

Now some of these things may not be safe for our audience here, but you can see that we are targeting that area.

This is actually helpful in certain situations within open-source intelligence.

The other thing that people like to do is, well, let's let's follow 1 person and see where they're tweeting.

So instead, and so David, if you were going around the world tweeting out with your geo tagged on, your geo tagged on, could we figure out where you go, where you tweet?

To do that, what we're gonna do is we're gonna switch to even a different tool.

It just amazes me that people, I think, I don't know if it's education or if it's just wanting to share, people like wanna overshare.

It amazes me, and as we go through this, today's video, you'll see that there are a lot of people that share a lot of very sensitive things.

And some of them don't realize that they're sharing sensitive things until we aggregate them and analyze them.

OSINT is about gathering, but it's also just as much about analyzing it and figuring out what it means.

Here's Steve Wozniak, co-founder of Apple.

And you can see right here, he's geolocated his bio to Los Gatos, California.

Well, some of his tweets are also geolocated as well.

And what we're gonna do is we're gonna use a simple tool called GeoSocial Footprint, and we're gonna type in his name here.

And what this tool's gonna do is it's going to grab his most recent tweets, extract the geolocated data, and then plot it in a heat map here.

So forgive the for development purposes only, this just means that the site did not pay Google for access to their maps.

But if we look at this, you can see where Steve Wozniak is doing his geolocated tweets from.

Well, it gets even better because this is an interactive map, right?

So where's a place that people normally use social media?

All over the place, but I mean, in cities is often the place where, like I can see Death Valley there, which is interesting.

But would you say maybe your home and work?

And I'm really scared to tell you anything when you know when I have these videos into these interviews.

That's a very frequent response to people.

So 1 of the things that was near and Steve Wozniak does is he tweets.

Actually, he doesn't tweet with his geolocation on.

He uses Foursquare and checks into places.

Then Foursquare is tied to his Twitter and gets the geolocated content.

Remember, Steve Wozniak's bio said he was in Los Gatos, California.

Well, if we zoom in on this bright spot right here, guess where it is?

If we keep going in, let's just control zoom.

Here we have High Street and Cypress Way.

Let's just go ahead and go back to Google Maps.

Is it just to keep it more secure or make sure it's private or?

It's some to protect me from your audience because I know that you have some very talented people in your audience.

And some it's to make sure that whatever I do in here is is compartmentalized.

For instance, when I pull up Google Maps here, you see it pulls up the entire United States instead of this is Micah's neighborhood where he lives.

So some of it's to protect me and some of it's to protect

High Street and Cypress way in Los Gatos, California.

So all we're doing is we are taking this data, High Street right here in Cypress Way, and we are pulling that up in Google Maps.

And if you look right here, we have that kind of wavy area.

And if we look over here, here's that wavy area right there.

That spot, if I turn on this, seems to have a very big house at it.

It might be Steve Wozniak's house with a very nice pool and all.

And this is 1 of the things that we do in certain situations is we just see where the data leads us, use online free tools to evaluate the data and analyze it, and then come up with a recommendation.

If Steve Wozniak had contracted me and say, hey, figure out the risk of my online presence.

1 of the big things I would say is, you show people everywhere you go when you tweet and do stuff like that.

And that might be something that we could get him to change his behavior on so that we don't see all of the places where he eats and travels to.

Michael, it's Foursquare where people check in the whole time, is that right?

Foursquare is a geolocation-centered type of social media platform.

And people still use that, is it quite popular?

There's another tool here called socialbearing.com.

And what this allows us to do is for free analyze somebody's Twitter profile.

So again, let's just go over here to handle, we'll do Steve Wozniak.

What this is doing is grabbing the most recent 200 tweets from his profile, and then it's going to analyze them for me.

Now, I like to go ahead and hit this a couple of time to load like another 200 tweets and another 200 and what we'll be able to see is not only what is Steve Wozniak saying in his tweets, but how is he saying, how is he communicating to Twitter?

And you can see all the statistics here about how many impressions he's got.

So 1 of the, the, the things that Steve Wozniak does is 59.8% of the last 600 tweets were percent from the application for square.

I mean as an and now as an investigator I'm looking at that going steve was the act doesn't use Twitter as much as he uses Foursquare, and then Foursquare ties to Twitter.

Yeah, I mean, and Foursquare is just used for checking in, like I'm at this hotel or I'm at this place now, is that right?

What we can do on the left is filter out some of these things.

So let's look at his geolocated tweets and then if we scroll down what we get are these tweets and you see this via Foursquare.

So these are all of his tweets that are tweeted from Foursquare and geolocated.

And you can see it says, love many camp songs, startling biome in Death Valley.

They're posting some content, sometimes with pictures, and then that is trickling over to Twitter because he's connected those accounts.

And that would be a good pivot point for us as OSINT investigators.

We started with his Twitter, but now we know about his Foursquare and that he uses that probably more than Twitter.

There actually used to be a site out there called Please Rob Me.

And it was a proof of concept site where people literally would watch as people checked into places and they would say, oh, so and so just checked into the Dallas Fort Worth airport or some airport and they're not at home.

And it was a spoof site, but it caused a big stir because it was, it brought up these privacy issues.

And to be honest, there's a lot of people out there that don't care about privacy.

I was going to ask you, you know, do people, Are people more aware or are you encountering the same problem, which could be a problem or an advantage for you, depending on what you're doing.

Are people like, I don't care, I'm just gonna share it to the world?

Yeah, so there are several different, I would say, shades of gray there.

There are the very privacy focused, the people that don't care, and then the people that care a little bit, so some of their settings will be changed.

I don't know if we talked about this on a previous broadcast, but in open source intelligence, there is an inverse relationship with that and privacy.

As you increase your privacy, you decrease what we can find about you via open source intelligence.

As you decrease your privacy, we can usually find more or access more.

But like the average person out there, let's say non-technical, and I mean, depending on who's watching this, I mean, you may be watching this just to realize how you're oversharing, but what is the average Joe deal?

Is it just like it varies depending on who you're investigating?

And it varies not only who we're investigating, but what platforms they're on.

Because some platforms are a little bit more security conscious.

Well, for instance, Twitter makes you opt in.

I know, I know, I have to say this tongue in cheek, but Twitter makes you opt in to do the geotagging.

There's some platforms that just automatically do that.

I don't know if you remember back when the Parler app was big or Parley app was big.

People put that on their phones, they went places, and they maybe didn't realize that the GPS locations were being tagged.

Then during the January 6th insurrection over here in the United States, the people went places, their phones recorded it in the app, and then after Parler was compromised, all of that geolocation data that some people didn't even know was happening when it was released to the internet.

Yeah, so some platforms, really good with privacy, some make you opt in, say, are you really sure you wanna do this?

And some are just open and accessible by default.

So I took you on a tangent, so I took you off your flow, but that's brilliant, thanks.

Well, let's, you know, I had a flow here set up, but you're right.

Let's go ahead and maybe follow this path.

Let's move away from Steve Wozniak here and let's move over to something else.

I don't know if you've ever heard of this Untappd.com drinking app.

I don't know if anyone realized I don't drink alcohol.

So I don't follow this stuff, but it's good to know about it for people who enjoy their drinks.

That's a very interesting bit of data that you brought up there, because I don't date because I've married and my wife frowns upon that.

So I haven't been to like online dating, but for open source intelligence, I may have profiles on online dating sites because that's where my targets are.

So many times as OSINT people, we will go into places that, you know, the real Micah Hoffman would not go.

So even though you don't drink, I don't use this app, but it's a good data source to show some interesting things.

I might like beer, but I don't like telling the world I just drank this beer at this location with these people at this date and time.

Untapped, you take your mobile device, you take a picture of your beer like this person has.

So you sign up for an account on Untappd, then you put it on your mobile device, then when you go out or stay in and you drink a beer, you can take pictures of it.

And then as you can see here, we have a person is drinking a certain beer by a certain place at a certain location.

We also have the dates and times when this activity was logged.

So I initially was introduced to this back in 2015 when 1 of my buddies was tweeting out things like hey I just earned a badge for the most.

IPA is drinking singapore whatever I direct message like you realize you're telling me your alcohol, like consumption details?

And he says, what's the worst you can do?

It's like, oh, okay, challenge accepted, right?

That's, To a cyber guy, to an OSINT person, that's like the worst thing you can say.

What I did was I started looking at the site for that open data.

What can you see here without an account?

And that's another thing that we do in OSINT is we look at the data and we realize that this is not necessarily this person drinking all of these beers, it's that they've recorded it.

You know that people on the internet lie sometimes?

So, some of this, and so they may not have consumed all these beers, et cetera, But this is what their profile says.

Someone really enjoys drinking though, if he was drinking that amount, yeah.

Yeah, yeah, well, the interesting thing here, David, is not the individual data points, but this is something that we were talking about earlier, that aggregating this data gives us a better picture.

And so I created a tool called untapped.osint.ninja.

Micah is extremely humble, but Micah, I know you've created a whole bunch of tools.

So I'm really interested to see this new tool.

So offline, Give us some of the tools and I can put them below so people can see, you don't just use other people's tools, but you create your own and help people in the community.

Sorry, I took you off on a tangent there.

You're right, sometimes we have these ideas, these scratches, these scratches.

Yeah, that we need to scratch and the existing tools out there just don't do it.

So maybe we need to create a tool ourselves.

I'm well-versed in Python, and so My original tool to do this analysis of untapped was written in Python.

And then 2 people, 2 colleagues of mine, Brandon and Wesley, created this web interface, which makes it so much more accessible.

The idea here is that we take the username from this page and we run it through this.

So I'm going to type in the username here and hit scrape.

What this tool is doing in my browser is it's visiting untapped, querying it, grabbing that data about their friends, about where they're checking in.

See all David Bombal transcripts on Youtube

OSINT social media: Are you crazy to share so much information online? 😱