NeedleStack

Meet the new hosts of NeedleStack. Robert Vamosi is a CISSP and award-winning journalist. AJ Nash has two decades of experience in the Intelligence community. Together they will host new episodes of NeedleStack, with an array of amazing guests.

Jacob Lloyd, head of investigations at Animal Welfare Investigations Project, has been putting OSINT skills to use to stop organized animal crime — dogfights, puppy mills, badger baiting and more. Jacob discusses how these crimes are often neglected by law enforcement due to lack of training and are thus dealt with reactively. He explains how to leverage pedigree sites, social media and other online sources to proactively investigate animal crime and save animals from this horrible fate. Key takeawaysWhat pedigree sites can tell you about fighting dogs and their ownersHow prevalent information on organized animal crime is on the surface webHow to get involved with Animal Welfare Investigations Project

From influence operations and Telegram to using marketing tools for OSINT insights, our guest gives pro tips on OSINT and cyber investigations for professional practitioners.Key takeawaysDigital forensics incident responseCyberthreat and OSINT crossoverMarketing tools for OSINT

In this episode, we sit down with cyber threat analyst and SANS OSINT instructor, Steven Harris. Steven discusses how Telegram is a must-use channel for investigating the war in Ukraine, and why cyber threat actors are flocking to the app.Key TakeawaysSOCMINT from law enforcement to cyber threatsInvestigating on TelegramWhy Telegram allows cyber threat actors a lower barrier to entry

Alex Lozano of Cybergy joins us to discuss how he uses OSINT and social media to protect executive clients, resources for his cyber students at University of Barcelona and the best tools for real-time monitoring.Key takeawaysHow to use OSINT for executive protectionResources for students and OSINT newbiesTools for real-time monitoring

Language can limit or expand your worldview. That's important to remember in OSINT where what you're able to find and analyze can greatly affect the intelligence you build. Skip Schiphorst, OSINT instructor at i-Intelligence, shares his expertise on why even baseline knowledge of a foreign language is important in a world flush with translation services; how foreign language content can counteract bias; and tips for verifying automated translations.Key takeawaysYou can find a lot more online than you may think by using foreign languages — even those using non-Latin charactersYou don't need to be a ninja with years of training to find foreign content online, or outsource everything to language expertsKnow the basics of OSINT, be critical and be patient when searching online in a foreign language

MJ Banias discusses how one man's late-night OpSec fail is an OSINTer's treasure. If that's too salacious for you, we also talk about how awesome newspaper archives and librarians are.

Journalists, academics and NGOs face unprecedented levels of threats in real life and in the digital world. With limited resources, they often lack secure methods to collect OSINT. That's why a digital investigations platform is being offered pro bono as part of a larger CISA initiative.

An analysts from DarkOwl joins us to discuss dark web research and all its facets. From AI and other trends on the dark web, to operational security, learn how to turn on the light beneath the surface of the internet.

How can I get in? Steve Stasiukonis knows the power OSINT brings to this crucial pen testing question. From uncovering who to pose as, what to wear and how to forge a badge, OSINT can be the key you need to unlock a client's physical security. Steve also discusses the gold mine OSINT brings to cyber pen tests and what CTI pros need to know before going on the dark web.

We go behind the scenes with Jon DiMaggio of Ransomware Diaries. As the chief security strategist at Analyst 1, Jon has conducted in-depth investigations of ransomware groups, including the famed Lockbit gang. He tells us the open-source tactics he uses and how cyber threats can take a mental toll.

Bullsh*t Hunting creators Justin Seitz and Some Lawyer share their tips on how OSINT and legal investigation tactics can benefit one another. They talk about their series “The Hunt” as it examines suspicious legal proceedings and possible wrongful convictions. Plus we dive deep into public records requests with tips of how to get the information you need.

Cybersecurity is rife with technological solutions, but as security researcher John Hammond knows all too well, it's people that make the difference. Hear how people make or break security intel, both as researchers and threat actors. We'll talk sock puppets, the role of OSINT for your own OPSEC and intelligence building, cybergang leaders as businessmen and more. Plus we'll dive into John's recent OSINT work on the ScreenConnect vulnerabilities and how they're being leveraged in the wild.

Do you wish you had more training opportunities or just chances to flex your OSINT skills? We're hosting a big event this month where we'll talk ways to level up your tradecraft, training opportunities, take-home tips and more.Mentioned in this episode:OSINTUp: a virtual, skill sharing eventJoin us for a day of free, open-source resources from expert researchers Thursday, February 22. This virtual event will bring together some of the leading OSINT experts to share tips, insights and resources for researchers. OSINTUp

There are many paths to OSINT — one of them is through training programs and online resources! Aubrey and Shannon break down what's available, what's free (or not) to keep you abreast of how you can gain and further your OSINT skills.Mentioned in this episode:OSINTUp: a virtual, skill sharing eventJoin us for a day of free, open-source resources from expert researchers Thursday, February 22. This virtual event will bring together some of the leading OSINT experts to share tips, insights and resources for researchers. OSINTUp

Propublica reporter and author of the Digital Investigations newsletter, Craig Silverman joins the podcast to discuss disinformation trends on social media platforms, elections around the world in 2024 and what journalists and OSINT investigators can learn from each other.

DefCon speaker and host of DoingFedTime on YouTube, Sam Bent joins the podcast to shine light on operational security concerns on the dark web. The reformed darknet marketplace seller shares insights and advice for best practices when investigating on the dark web.

Ritu Gill, or @OSINTtechniques as she's known online, joins the podcast to give tips for social media intelligence gathering. What are the little-known platforms to look at and how do you gather safely? Tune in to hear the tips.

Key takeawaysOSINT for child protectionThe importance of mental healthWhat law enforcement need to know about traffickingAbout Griffin GlynnIn his role as Chief Investigations Officer, Griffin Glynn oversees the extensive casework of the National Child Protection Task Force, leading a team of highly skilled analysts to ensure precise and efficient investigations into cases of missing, exploited and trafficked children. With more than 20 years of experience applying Open Source Intelligence (OSINT) techniques to various types of criminal investigations, Griffin now specializes in applying these skills to cases involving missing and exploited children, as well as counter-human trafficking. As an authority in OSINT, he is dedicated to broadening its impact in combating child exploitation globally. He has spent years developing top-notch training programs, equipping law enforcement officers with essential skills to fight against these heinous crimes effectively.Known as hatless1der in the online community, Griffin actively shares his expertise through a popular OSINT-focused blog, Twitter, and startme page. Through his work as an instructor at My OSINT Training, Griffin imparts his knowledge to both aspiring and established investigative professionals through engaging, accessible, and high-quality online and in-person training.Apart from his work with the NCPTF, Griffin also holds positions of Vice President at Clicksafe Intelligence, providing comprehensive intelligence solutions, and President of Hatless Investigations Group, delivering specialized training to law enforcement and intelligence professionals in online investigations.Further readingMy OSINT TrainingThe National Child Protection Task ForceGriffin's Start Me Collection

Jessica Smith, president and founder of ClickSafe intelligence and special investigations lead with the National Child Protection Task Force, joins the podcast to dispel misconceptions about child protection. From who is being targeted to where and how, Jessica Smith shares how misinformation about child exploitation can derail investigations, and how OSINT helps pave the way for child protection.Key takeawaysMisinformation around child protection can adversely affect investigationsHow OSINT plays a role in helping victimsThe new platforms where kids are targetedTips for vigilance and educationAbout Jessica SmithJessica Smith is a cyber security analyst, currently working within the private sector, focused on fraud identification, threat actor monitoring and intelligence analysis. Prior to transitioning to the private sector, Jessica spent six years working within Legal Services via her home state's Department of Corrections, where she assisted in internal sexual harassment and discrimination investigations, coordination of the Board of Pardons process and litigation management. During her tenure with the Department of Corrections, she completed her bachelor's degree in Psychology and Criminal Justice as well as a Master's of Science Degree in Criminal Justice. Jessica holds certifications in Interviewing and Interrogation from Century College, Critical Incident Management from FEMA as well as, Social Media Intelligence Expert (CSMIE) and Cyber Intelligence Professional (CCIP) from McAfee Institute. In addition to her current role as an intelligence analyst, Jessica serves as the Special Investigations Lead for the National Child Protection Task Force, managing cases with high levels of sensitivity, complexity, and longevity. Outside of her day job and volunteer work, Jessica is also in the process of building ClickSafe Intelligence, a non-profit dedicated to educating and empowering parents and youth to engage safely with social media through intelligence-based research into child predators and their grooming tactics.Further readingNational Child Protection Task ForceClickSafe Intelligence

We discuss recent Bellingcat reports on whether AI has the capability to reliably identify AI. The reporter and fellow shares his research on AI for OSINT and the results.Key takeawaysTesting AI's ability to recognize AI artBlending journalism and OSINT at BellingcatHow machine learning should and shouldn't be used in OSINTAbout Dennis KovtunDennis Kovtun is a freelance journalist with interest in OSINT and a 2023 Bellingcat Summer Fellow. Further readingTesting AI or Not: How Well Does an AI Image Detector Do Its Job?Can AI Chatbots Be Used for Geolocation?Dennis Kovtun's website

We talk to an OSINT professional about what he learned when he applied his daytime skills to a moonlighting hobby. On YouTube, Gary Ruddell shares 3-minute tips, geolocates scenes from movies and shares the OSINT discipline he learned from the U.K. military with hobbyists and practitioners just starting out.Key takeawaysApplying the intelligence cycleExecutive protection with social mediaGeolocation clues from the shortest frameAbout Gary RuddellGary Ruddell is a Cyber Threat Intelligence professional operating at the front lines of cyberspace by day. He is a veteran of the Royal Navy and Army Intelligence, and a holder of the coveted OSCP certification. Gary is a coffee-loving photographer, YouTuber and all round content creator.Find GaryGary Ruddell's websiteYouTubeLinkedIn

Producers Aubrey and Shannon review the latest articles and research on using AI in OSINT. Should you consider using AI chatbots in research now or in the future? And if so, how can you do so securely and with verification in mind?Key takeawaysAI chatbots aren't great at OSINT right now, but they might be one dayVerification is keyYou need an access policyReferences from the showCriminals Have Created Their Own ChatGPT Clones from WiredCan AI Chatbots Be Used for Geolocation? from BellingcatBest practices for creating a dark web access policy

How can researchers keep up with all the changes in the OSINT landscape? From AI to constantly shifting social media platforms, Neil Spencer from LifeRaft gives tips for how to adapt and optimize your OSINT practice.Key takeawaysHow AI has evolvedMassive shifts on social media platformsThreat verificationAbout Neil SpencerNeil Spencer is the director of market strategy and partnerships at LifeRaft. With more than twenty years in the security industry, Neil has worked with both corporate and government clients to implement technology that addresses the evolving threat landscape. His work at LifeRaft focuses on leveraging the wealth of online data sources, trends and new technologies to enhance threat intelligence in the security sector.Further reading5 tips for conduction OSINT on alt-social media platformsUnveiling digital vulnerabilities: the intersection of cyber & physical security9 best OSINT software tools for Telegram

As analysts assess how AI could improve their workflow, Babel Street is presenting technology that can help border agents better name-match terrorist watchlist to travelers. Declan Trezise, vice president of global solutions engineering, joins the show to discuss how AI can create more seamless borders for agents and innocent travelers.Key takeawaysDigitization and the future of bordersName–matching technology for terrorism watchlistsCreating faster, seamless travel for citizensAbout Declan TreziseDeclan Trezise is the Vice President of Global Solutions Engineering for Babel Street, and he is based out of the UK. He has many years of experience working out the thorniest problems of converting unstructured text into actionable insight, and communicating complex technical solutions to audiences at all levels and walks of life — from international royalty and heads of state to rock stars.References from the showAI-enhanced border securityBabel Street

Everyone is talking about using AI for OSINT, but what are the ethical considerations before you fire up your first chat? Before you start feeding a machine learning model your data and relying on it's results, our guest from Fivecast tells us what you should consider.Key takeawaysChatGPT has built-in biases (just like humans)Understand the human toll behind machine learningHow to use AI responsiblyAbout Trent LewisTrent is part of the Fivecast Data Science team and leads efforts in natural language processing of OSINT data and the evaluation of the Fivecast Risk Detectors.  Prior to joining Fivecast in 2021, Trent was an academic at Flinders University (2005-2021) teaching and researching in databases, programming and machine learning.  With a background in cognitive science, Trent has a PhD in Audio-Visual Speech Processing that explored the use of multi-modal data sources to improve the classification of speech. References from the showResponsible use of AIAnalyzing online communitiesLeveraging AI for counter terrorism industry briefFivecast

Wondering how to incorporate AI into your OSINT framework? We asked the CEO and founder of the popular training organization, OSINT Combine. Key takeawaysHow can OSINT researchers leverage generative AI?Tips for spotting disinformation in an AI worldTeaching ChatGPT your company datasetsAbout Chris PoulterChris is the Founder & CEO of OSINT Combine who are leaders in open-source intelligence training and software with support to counter-human trafficking, counter-terrorism, law enforcement and other strategically important efforts around the world. He spent over a decade in the Australian Defense Force with extensive operational experience around the world. He has an established background working in military and law enforcement environments domestically and overseas, with proven outcomes in developing open-source intelligence capability to multi-national teams that service strategic and operational objectives where the cyber, human and physical terrain overlap. Additionally, he is the creator of NexusXplore, a leading OSINT software platform that is trusted globally in supporting complex mission sets in the open-source environment. References from the showOSINT CombineNexus XploreAustralian OSINT SymposiumConnect with Chris

We're handing the mic over to our friends at Talking Threat Intelligence, a podcast by LifeRaft today. On the show, they had our very own Daniel Ben-Chitrit on to discuss the security implications of ChatGPT, how it could be used by phishing scammers to up their skills and the safest way for OSINT researchers to prompt AI.Key takeawaysSecurity implications of ChatGPT“A force multiplier” for phishing scammersThe safest way for OSINT researchers to prompt AIAbout Talking Threat IntelligenceTalking Threat Intelligence explores the intersection of OSINT and risk management. Each episode breaks down emerging threats that could impact an organization, insights into the latest technologies that can enhance security operations and tips for exploiting threat intelligence to keep your staff, assets and customers safe.References from the showListen to Talking Threat IntelligenceLifeRaftFind Dan on LinkedIn

We sit down with the author of the new OSINT reference book Deep Dive: Exploring the Real-world Value of Open Source Intelligence, Rae Baker. Baker is an expert in OSINT with an emphasis on maritime intelligence, analyzing vessels and ports around the world. In this episode, she shares tips from her book, blog and career, and we explore her one-of-a-kind OSINT training game, Kase Scenarios.

Not his real name, but there's real fun to be had learning how JoseMonkey geolocates videos on his wildly popular TikTok channel. Hear the tools, techniques and process he uses to pinpoint even the trickiest videos, the wildest things he's seen and how this supersleuth got into the GEOINT game.

We attended USGIF's GEOINT Symposium so you don't have to (but you should – it's great). NeedleStack producers Aubrey and Shannon break down the geospatial intelligence conference (and its many, many acronyms) and the presence of OSINT on the floor, in keynotes and the Innovation Hub. If you're an open-source researcher, tune in to understand what's out there and how to leverage this adjacent INT.Key takeawaysWhat skills are needed in geospatial intelligence organizations and how OSINT skills can translateLayering GEOINT and OSINT to synthesize and communicate intelligenceThe wide world of use cases for GEOINT

In this episode, our guest brings more than 30 years of experience from the Department of Defense to the conversation. James A. Samuel, Jr. is now in the private sector working as an entrepreneur in the GEOINT space, using his military knowledge to create apps that use location data to protect safety.

As commercial satellites increase and technology advances, what does the future of geospatial intelligence look like? We ask our guest to explain the basics of GEOINT, where it's headed and how other industries can utilize one of the most fascinating -INTs.

Abbi Dobbertin of Fivecast and Adam Huenke join the podcast to talk hot takes. As tradecraft and training leads, respectively, and years of OSINT practitioner experience between them, they've come to form opinions on some of OSINT's more heated topics.

Producers Shannon and Aubrey attend the 2023 Symposium on Open Source, Social Media and National Security. They discuss highlights, panel topics and advice for people hoping to break into a career in OSINT, INFOSEC and NATSEC.

This week, a high school criminology teacher joins the podcast to discuss how teaching open-source research helped engage his students during distant learning. In the classroom, OSINT can show students the power of open-source information and serves as a cautionary tale for sharing personally identifiable information online.

Our guest is a former FBI investigator and current university professor who has tips for practitioners in every industry. From the protocol before you log on to conduct OSINT research to the resources and reporting, here are the tips for approaching your OSINT like law enforcement.

A founding member of the OSINT Curious Project joins us to give practical tips and advice for researchers. We discuss tools, tradecraft and trends with Micah Hoffman.

The president of the OSMOSIS Association and host of OSINT Cocktail, Cynthia Navarro, joins the podcast to discuss how creating a community of open-source researchers had allowed her to learn from others and hone her skills.

The times they are a'changing. Open-source intelligence was once the lesser celebrated branch and now makes up the bulk of analytical reporting. Our guest tells how the federal government is changing its views on OSINT.

The director of the soon-to-open Open-Source Intelligence Laboratory of University of Albany joins the podcast to discuss the definition of OSINT and how his students will research its effect on society.

It's a new year and as researchers work to hit their goals, we want to revisit some of our most important advice for securely investigating online. It's time to take stock of your security hygiene and revisit how your digital fingerprint may be getting in the way of finding the data you need.

Watch when Jack Rhysider of Darknet Diaries shares his amazement at what hackers will do “for a free burrito,” or the moment Rob Fuller, a read team and CTI director, condemns security awareness training. From journalists to OSINT investigators to dark web experts, here are some of the best moments we shared with guests last season.

Our second book club episode features essential reading for threat intelligence. New York Times reporter, Nicole Perloth, gives a history of the zero-day market and how it has changed the cyber weapons arms race. Learn how this market was created and what it means for future cyber defense.

This special edition of NeedleStack features a must-read for open-source researchers, We Are Bellingcat by Eliot Higgins. Our producer Shannon discusses what she learned from the founder of Bellingcat's tell-all and how researchers can learn from the organization's practices.

In this episode, an expert OSINT practitioner from both government and private sector practices joins to share hands-on tips from in the field. He also shares what the students of Center for Intelligence and Research and Training are learning from their real-world client experiences.

Authoritarian regimes create propaganda and disinformation, in part, by blocking citizens' access to traditional news sources. In this episode, co-founder of Samizdat Online, Yevgeny Simkin, walks us through how their program works in partnership with outlets to syndicate articles to bypass censorship in Russia and other countries — to get citizens and researchers the information they need.

Nick Hardinges from the Reuters fact-checking team joins the podcast to walk us through how to go about debunking information online, from deciding what's worth covering to why grainy images should make you skeptical. Ultimately, fact-checking takes time, persistence and a healthy dose of intrigue. Key takeaways Know these telltale signs of doctored content Check your sources Do some digging on what you see About Nick Nick Hardinges is a former digital news editor and current fact-checker for Reuters, whose job is to find harmful, widely circulating and topical misinformation, and then address those claims in articles directly responding to the claims being made. Nick's main focus is on setting the record straight on social media but to sometimes address claims from elsewhere, such as outright lies in politics, or damaging conclusions reached in unscientific ‘research' papers. Where to find Nick https://twitter.com/NickHardinges (@NickHardinges) https://www.reuters.com/article/factcheck-coronavirus-sport/fact-check-list-of-108-fifa-soccer-players-is-not-proof-of-a-common-link-between-covid-19-vaccines-and-athlete-deaths-idUSL1N2T81NY (FIFA COVID misinformation story) https://www.reuters.com/article/factcheck-rosieholt-conservative/fact-check-parody-video-of-comedian-pretending-to-be-a-uk-conservative-mp-explaining-mini-budget-and-trickle-down-economics-taken-seriously-online-idUSL1N3150X8 (Spotting the difference) between legitimate videos and satire

Social media and traditional media overlap now more than ever, with social media providing an opportunity to reach and resonate with new audiences – for better or worse. Rachel Baig knows this intersection well. As a social media journalist and trainer for Deutsche Welle, she knows the ins and outs of not only using social to identify a great story but also how to spot a fake one. In this episode, Rachel breaks down important lessons from her training to understand media spoofs, verify images and videos, spot tell-tale signs of bots and more.

Fact-checkers' biggest nemesis is the proliferation of disinformation in the digital age. Chris Paul joins the episode to talk about Russian propaganda and disinformation techniques. Why are they so effective? Is it skill or just an innate vulnerability for humans to want to believe what they see? Chris Paul walks us through his research from the technical to the psychological.

The intersection of open-source information, disinformation, social media and journalism has spawned a new breed of investigator. Meet Brecht Castel, fact-checking journalist and OSINT aficionado. In this episode, Brecht shares his advice on how to be good at both. Learn how his background as a journalist helps him dig deeper, beyond “hashtag OSINT” and get the bigger story. And how his passion for OSINT has led down many interesting paths — from locating one tree in the whole of Africa to explaining why a mosquito with a number on its back is not part of Bill Gates' plan for world domination (or even a mosquito, for that matter).