The Intelligence Hidden in Plain Sight
Open Source Intelligence — OSINT — is the systematic collection and analysis of information from publicly accessible sources. Intelligence agencies use it. Law enforcement uses it. Private investigators use it. And so do malicious actors. The digital ecosystem has made it extraordinarily powerful: a determined analyst can build a detailed, multi-dimensional profile of virtually any individual without touching a single private system.
Social media, professional networks, public records, electoral rolls, court filings, company registration data, domain records, news archives, forum posts, image metadata, and data broker sites all feed into an open-source picture of a person's life. In the hands of a skilled analyst, these fragments connect — revealing not just who someone is, but where they live, who they associate with, what they own, and where they're exposed.
For most people, that picture already exists in full. The question isn't whether it can be assembled. It's whether you know what it contains — and whether you're doing anything about it.
What Our OSINT Investigations Uncover
Our OSINT Investigations service runs a thorough intelligence sweep using the same methodology a well-resourced adversary would use. We build the fullest possible picture of what's publicly accessible about a subject and deliver it as a structured report — mapping every significant data category, surfacing connections between digital and physical identity markers, and giving you a clear view of the complete exposure profile.
Personal Identity
- Full legal name & aliases
- Date of birth indicators
- Current & historical addresses
- Phone numbers & email addresses
- Physical descriptors & photographs
Social & Professional
- Social media accounts & activity
- Professional profile history
- Interests & affiliations
- Public statements & opinions
- Event & location check-ins
Financial & Legal
- Business registrations & directorships
- Property ownership records
- Court records & legal filings
- Financial disclosure documents
- Bankruptcy & insolvency records
Network & Relationships
- Family member identification
- Known associates & connections
- Organisational affiliations
- Mutual account relationships
- Physical & digital co-location data
For Red Team Operations and adversarial threat modelling, we go further — email address variants, password breach records, photographs and metadata, active online accounts on obscure platforms, IP address history, and exposed network infrastructure including open ports and accessible portals.
- Full Discovery report: all publicly accessible information compiled, correlated, and presented in a structured intelligence product
- Personal threat assessment: which discovered information creates the greatest risk, and to whom it would be most valuable
- Digital/physical identity connection mapping — how online and offline identities are linked through open-source data
- Remediation guidance: specific steps to remove or obscure the most harmful exposures
- Red Team Operations support: email permutations, breach data, account enumeration, IP history, and infrastructure reconnaissance
Protection and Investigation
This service works two ways. For individuals and organisations wanting to understand and reduce their own exposure, it gives you the complete picture you need to make informed decisions about privacy remediation and security hardening. For clients with a legitimate investigation need — due diligence, threat actor identification, fraud investigation, pre-transaction background research — it provides the depth of open-source intelligence needed to support those decisions and any resulting legal proceedings.
All investigations use publicly accessible sources only and stay within applicable legal boundaries. Findings are delivered in clear, structured reports suited to internal use, security briefings, or legal and regulatory contexts.