OSINT NOTES

A lot of OSINT sources like to clarify what OSINT is or open source intelligence from the get go. They give trite and staid definitions that seem to clear the hurdle for legalese. The OHCHR Berkeley Protocol is thorough in its proceedings of jurisprudence and the juridical nature of investigations. However it is also noted that open source investigators are not vested with the same powers of legal entities such as the ability to subpoena or carry out a full fledged legal investigation. Open source investigators still have the responsibilities to protect witnesses and respect the rights of the accused as legal entities practice. There is a fair bit of legalese used in the Berkeley Protocol making it abstruse to a regular reader. There is a gamut of evidentiary practices with regards to copy right. You have to seek the permission of the creator of content to get approval for use. But there is the case of 'fair use' of media though there is a narrow allowance as evidence. Creative Commons licenses may allow for freer use but not strictly permission free. Security is an important aspect of Open Source Intelligence. CIA is briefly mentioned in the security section of the Protocol, CIA being Confidentiality, Integrity, and Availability. There are trade offs depending on what is prioritized. You cannot have them all; one is in exclusion of the other. Greater Confidentiality may mean less Availability. Greater Integrity may mean less Confidentiality. Greater Availability may mean less Confidentiality or Integrity. There are different levels of security from the organizational level, project level, and specific activities level. One must stress the importance of security in an Open Source investigation to avoid detriments of person, reputation, financial, or legal. There was a huge build up to the actual steps in an open source intelligence investigation. I suppose all the preliminary information was necessary to build off of as a base of knowledge to further an educational objective. Being outed in an investigation is part of security. You do not want to leak your identity depending on the level of scrutiny of third parties. You have to be sure to protect your cover identity and tailor your internet activity accordingly to your sock puppet account. There is an idea of contamination of digital devices. You should not use personal devices for professional investigation. Your user agent can leak and expose you to being ID'd by your device. You need to properly segment different investigations as well if there are multiple investigations being done. This is done at a device level. Also there is a risk of malware infections. Depending on the technological prowess of the investigated there could be risk of malware infections also considering the risk of drive by downloading of malware off of websites while conducting an investigation is a credible risk in an investigation. The cyber threats that exist run the gamut of denial of service attacks, social engineering, and man in the middle attacks. The Berkeley Protocol does not refer to sock puppet accounts as such but as virtual identities cultivated. There is a certain level of paranoia to the Protocol maybe due to the fact that a lot of human rights abuses are carried out by nation state actors and nation state actors such as Russia have a sophisticated cyber element at play that can track researchers and their research online. Being overwhelmed by the wealth of information and data seems to be a feature of open source investigations. There is so much information that it can overload your senses to take it in seemingly all at once. From what appears to be the crux of the job of the analyst to ingest information in bulk, process and then provide actionable intelligence for the decision makers. With the inundation of information, from technological advancements, the Analyst have taken an outsize role in the intelligence cycle. In the manual called Criminal Intelligence for Analyst there is a distinction made between "Strategic Intelligence" and "Operational Intelligence". Strategic Intelligence is more concerned with policy and positioning of an organization. Operational Intelligence is concerned with a direct end in an investigation. It is more local in scope and short term than Strategic Intelligence which is more long term. Intelligence is generally regarded as information that has been analyzed and being able to draw inferences for action. It is information that has been processed. Inferences are described as being speculative and uncertain with their own risks of being incorrect.

Comments

Post a Comment

Popular posts from this blog

Knowing how to pivot is important in OSINT it seems and to go from a wide scope to a narrower scope. Pivot charts are useful to collect information of results from selectors, each pivot being a resultant node of information. Going from a wide search to a narrower search is like the goldilock's effect, a little too wide and you lose focus but too focused you can lose out on other wider details. All sources state that methdology trumps tools and the focus early on in an OSINT career is to develop your methodology like knowing how to pivot and knowing the intelligence cycle. Being nimble and flexible in your search queries is important to hone your searches using Google as a primary tool to locate information. You just have to Google it. You Google to find tools like websites that facilitate investigations. It seems that Rae Baker, the author of Deep Dive into OSINT, is adept at using Google to serve her needs though she stresses the importance of methodology. Cynthia Hetherington of ...
Read more
Being in California I have seen plaques from the native sons of the golden west and thought nothing about them at the Burlingame train station. They seemed like a benign fraternity but if you dig a little deeper into their history you realize they were like California's KKK chapter against the Japanese. They really hated the Japanese and wanted to expel them from California as if the Japanese were vermin in the early 20th century. Native sons of the golden west go way back into the 1800's and their anti-japanese stance existed at the moment it seems that Japanese immigrants arrived in the late 1800's. They wanted to end birth right citizenship for Japanese Americans who were born in America. This echoes today with Republicans questioning birth right citizenship and considering getting rid of it. The hostilities towards Japanese immigrants resonants today with the attack on the newly arrived Latinx immigrants. The zenophobia is always an old trope that seems to never end wit...
Read more
My learning methods are flawed. I am not doing spaced retrieval exercises which is supposedly the most effective means of learning. Spacing out what you retrieve from memory of your reading is time tested the best way. I tend to read and reread which is ineffective and I don't force myself to sit away from the text and try to remember everything I have just read. It is like dyeing cloth. You dip the cloth in the dye over and over again and the coloration gets more and more saturated and radiant. Spacing the time you remember what you have learned repeatedly ,spaced repetition, is important and I have to practice this more.
Read more