It is essential to monitor what is broadcasted on social media for compliant branding, instances of malicious/negative sentiment, and for the appropriate level of information sharing.

Online code repositories such as GitHub have grown to become standard solutions for version control and source code management. These solutions have proven to be easy-to-use but also prone to misconfigurations leading to the exposure of sensitive information (specifically sensitive code).

Today we'll be talking about robots and dorks because at Number Four of the Open Source Intelligence Top Ten (aka OSINT Top Ten) is Search Engine Exploitation.

It is important to examine “The Cloud” (especially vendor offerings like Amazon AWS, Google Cloud Platform, and Microsoft Azure) for anything that can be linked directly to your organization, brand, and offerings: key individuals, locations, domains, products, services, and project names.

More commonly known as "paste sites," these online sharing repositories make it easy to share text from anywhere to anyone.

Monitoring and managing how your organization is presented online and perceived in public digital spaces is an integral part of threat management.

Mismanagement or turning a blind eye to this vital part of an organization's digital presence can lead to brand damage, data leaks, or even possible persistent/ongoing attacks against existing live assets.

Is it true that one can only find dark Elves on the dark web? False, the dark elves we've seen are only in the Marvel Cinematic Universe. But there is information on the dark web that does not exist anywhere else.

Your technology stack can give away more than you would think. From this alone, anyone can gain knowledge and insight into the inner workings of your organization.

The results from our poll of open source intelligence (OSINT) sources are in, and we have our top ten. Check it out!

The list of “intelligence” to collect, analyze, assess, report, and monitor is vast with never ending possibilities of disciplines and categories. With so much “out there”, we want to take a poll and ask, “What are the most important sources of information that you use to investigate and manage the risk posture of your organization?”

OSINT can facilitate research, competitive intelligence, general information, and even IT Security.

DarcSight Labs is the research and development division of ThreatNG

Our Mantra! Our Call to Arms! Our Battle Cry!

The Protector of Nouns is a title we gave to ourselves to sum up who we are and our purpose.

... we wanted a name that defined our area of concentration, purpose, and identity. In essence, we wanted a name that was “A Mark, A Mission, A Brand, A Scar”! (Thank you Dashboard Confessional!)

Our original mission was to “bring-to-light” threats that lay deep within the dark web. It was during this mission, we encountered clues, patterns, and data that can facilitate damage or harm across all parts of the digital world.