Open-source intelligence

OSINT sources can be divided up into six different categories of information flow:^[2]

• Media: printnewspapers,magazines,radio,andtelevisionfrom across and between countries.
• Internet:online publications,blogs,discussion groups,citizen media (i.e. – cell phonevideos,anduser created content),YouTube,and othersocial mediawebsites (i.e. –Facebook,Twitter,Instagram,etc.). This source also outpaces a variety of other sources due to its timeliness and ease of access.
• Public government data: public government reports, budgets, hearings,telephone directories,press conferences, websites, and speeches. Although this source comes from an official source they are publicly accessible and may be used openly and freely.
• Professional and academic publications: information acquired fromjournals,conferences, symposia,academic papers,dissertations, and theses.
• Commercial data:commercial imagery,financial and industrial assessments, and databases.
• Grey literature:technical reports,preprints,patents, working papers, business documents, unpublished works, andnewsletters.

OSINT is distinguished from research in that it applies theprocess of intelligenceto create tailored knowledge supportive of a specific decision by a specific individual or group.^[3]

Collecting open-source intelligence is achieved in a variety of different ways,^[4]such as:

• Social MediaIntelligence, which is acquired from viewing or observing a subjects online social profile activity.
• Search enginedata mining or scraping.
• Public recordschecking.
• Information matching and verification fromdata brokerservices.

OSINT, broadly defined, involves gathering and analyzing publicly accessible information to produce actionable insights.^[5]

TheU.S. Department of Homeland Securitydefines OSINT as intelligence derived from publicly available information, collected and disseminated promptly to address specific intelligence needs.^[6]

NATOdescribes OSINT as intelligence obtained from publicly available information and other unclassified data with limited public distribution or access.^[7]

TheEuropean Uniondefines OSINT as the collecting and analyzing information from open sources to generate actionable intelligence, supporting areas like national security, law enforcement, and business intelligence.^[8]

TheUnited Nationshas also recognized OSINT’s potential, noting its value in monitoring member states’ compliance with international regulations across various sectors, including public health and human rights.^[9]

In theprivate sector,companies likeIBMdefine OSINT as the process of gathering and analyzing publicly available information to assess threats, inform decisions, or answer specific questions. Similarly, cybersecurity firms such asCrowdStrikedescribe OSINT as the act of collecting and analyzing publicly available data for intelligence purposes.^[10]

OSINT practices have been documented as early as the mid-19th century in the United States and early 20th century in the United Kingdom.^[11]

OSINT in theUnited Statestraces its origins to the 1941 creation of theForeign Broadcast Monitoring Service (FBMS),an agency responsible for the monitoring of foreign broadcasts. An example of their work was the correlation of changes in the price of oranges in Paris with successful bombings of railway bridges duringWorld War II.^[12]

TheAspin-Brown Commissionstated in 1996 that US access to open sources was "severely deficient" and that this should be a "top priority" for both funding andDCIattention.^[13]

In July 2004, following theSeptember 11 attacks,the9/11 Commissionrecommended the creation of an open-source intelligence agency.^[14]In March 2005, theIraq Intelligence Commissionrecommended^[15]the creation of an open-source directorate at the CIA.

Following these recommendations, in November 2005 theDirector of National Intelligenceannounced the creation of the DNIOpen Source Center.The Center was established to collect information available from "the Internet, databases, press, radio, television, video, geospatial data, photos and commercial imagery."^[16]In addition to collecting openly available information, it would train analysts to make better use of this information. The center absorbed theCIA's previously existingForeign Broadcast Information Service(FBIS), originally established in 1941, with FBIS head Douglas Naquin named as director of the center.^[17]Then, following the events of9/11theIntelligence Reform and Terrorism Prevention Actmerged FBIS and other research elements into theOffice of the Director of National Intelligencecreating theOpen Source Enterprise.

Furthermore, the private sector has invested in tools which aid in OSINT collection and analysis. Specifically,In-Q-Tel,aCentral Intelligence Agencysupported venture capital firm in Arlington, VA assisted companies develop web-monitoring and predictive analysis tools.

In December 2005, the Director of National Intelligence appointedEliot A. Jardinesas the Assistant Deputy Director of National Intelligence for Open Source to serve as the Intelligence Community's senior intelligence officer for open source and to provide strategy, guidance and oversight for theNational Open Source Enterprise.^[18]Mr. Jardines has established the National Open Source Enterprise^[19]and authoredintelligence community directive 301.In 2008, Mr. Jardines returned to the private sector and was succeeded byDan Butlerwho is ADDNI/OS^[20]and previously Mr. Jardines' Senior Advisor for Policy.^[21]

The web browser is a powerful OSINT tool that provides access to numerous websites and both open source and proprietary software tools that are either purpose-built for open source information collection or which can be exploited for the purposes of either gathering of open source information or to facilitate analysis and validation to provide intelligence. A cottage industry of both for-profit and not-for-profit investigative and educational groups such asBellingcat,IntelTechniques, SANS and others offer indices, books, podcasts and video training materials on OSINT tools and techniques. Books such as Michael Bazzell'sOpen Source Intelligence Techniquesserve as indices to resources across multiple domains but according the author, due to the rapidly changing information landscape, some tools and techniques change or become obsolete frequently, hence it is imperative for OSINT researchers to study, train and survey the landscape of source material regularly.^[22]A guide by Ryan Fedasiuk, an analyst at theCenter for Security and Emerging Technology,lists six tools open-source analysts can use to stay safe and utilize operational security (OPSEC) when conducting online investigations. These includeVPNs,cached webpages,digital archiveservices, URL and file scanners, browser sandbox applications, andantivirus software.^[23]

Numerous lists of aggregated OSINT content are available on the web. The OSINT Framework contains over 30 primary categories of tools and is maintained as an open source project onGitHub.^[24]

A main hindrance to practical OSINT is the volume of information it has to deal withinformation explosion.The amount of data being distributed increases at a rate that it becomes difficult toevaluate sourcesinintelligence analysis.To a small degree the work has sometimes been done by amateur crowd-sourcing.^[25]

Private individuals illegally collecting data for a foreign military or intelligence agency is consideredespionagein most countries. Espionage that is nottreason(e.g. betraying one's country of citizenship) has been a tool of statecraft since ancient times.^[26]

The OSINT Foundation is a professional association for OSINT practitioners in the United States Intelligence Community.^[27]It is open to U.S. Citizens and seeks to raise the prominence of the open-source intelligence discipline.^[28]

OSMOSIS (an association for OSINT professionals) provides courses and conferences that lead to the designation of being Open-Source Certified (OSC). OSMOSIS is an offshoot of the Hetherington Group, a private investigation and corporate & market intelligence group. According to the OSC, its goal is to "help standardize our profession and demonstrate that our members are Legal, Ethical, and Competent practitioners of investigating and analyzing Publicly Available Information." Further they state that, "To obtain the OSC designation, practitioners must meet certain requirements to demonstrate dedication to their craft and pass a 100-question exam."^[29]

The company IntelTechniques offers online and live training that can lead to the Open Source Intelligence Professional Certification (OSIP) and/or help individual practitioners develop and formalize their skills, sans certification. Their certification program "provides participants with an opportunity to work through a real-world scenario and demonstrate that they can produce an intelligence product that meets a high professional standard."^[30]In addition to their training program, IntelTechniques offers a community that serves supports those seeking the OSIP certificiation, but is also open to practitioners who enroll in the training program itself without the intention of seeking certificiation. This community facilitates an exchange of information about best practices, the training itself and tradecraft & methodology in a moderated environment.

Other organizations including Bellingcat, offer training as well other options for OSINT practitioners to associate and exchange information on OSINT best practices and issues.

• WashTimes,Washington Times – CIA mines 'rich' content from blogs, 19 April 2006
• GCN,Government Computer News – Intelligence units mine the benefits of public sources 20 March 2006
• FindAcricles,Military Intelligence Professional Bulletin October–December, 2005 by Barbara G. Fast
• FAS.org,Congressional Testimony on OSINT and Homeland Security 21 June 2005
• Forbes,When Everyone Can Mine Your Data by Taylor Buley, 11.21.08]
• Thompson, Clive (2006-12-03)."Open-Source Spying".The New York Times.Retrieved2018-05-29.
• "Open Source Intelligence (OSINT)".RIS Open Source Intelligence.2018-05-29.Retrieved2018-05-29.
• "The Intelligence Network: I n t r o d u c t i o n".intellnet.org.2008-05-09. Archived from the original on 2008-05-09.Retrieved2018-05-29.

• United Nations Office of the High Commissioner for Human Rights;University of California, Berkeley Human Rights Center(2022).Berkeley Protocol on Digital Open Source Investigations A Practical Guide on the Effective Use of Digital Open Source Information in Investigating Violations of International Criminal, Human Rights and Humanitarian Law(PDF).New York, Geneva: UN Office of the High Commissioner for Human Rights; Human Rights Center, UC Berkeley School of Law.ISBN978-92-1-154233-2.OCLC1334608062.

• Deneuville, A., Hernández López, G. & Rasmi, J. (Eds.) 'Contre-enquêtes en sources ouvertes'.Multitudes,89, 2022.
• Arthur S. Hulnick: 'The Dilemma of Open Source Intelligence: Is OSINT Really Intelligence?', pages 229–241, The Oxford Handbook of National Security Intelligence, 2010
• Cody Burke: 'Freeing knowledge, telling secrets: Open source intelligence and development', Bond University, May 2007Archived2016-08-17 at theWayback Machine
• Florian Schaurer, Jan Störger: 'The Evolution of Open Source Intelligence', OSINT Report 3/2010, ISN, ETH Zürich, October 2010
• Hassan, Nihad A. (30 June 2018).Open source intelligence methods and tools: a practical guide to online intelligence.Hijazi, Rami. [United States].ISBN978-1-4842-3213-2.OCLC1043830928.{{cite book}}:CS1 maint: location missing publisher (link)

• The Open Source Intelligence Resource Discovery Toolkit
• The New Craft of Intelligence: Making the Most of Open Private Sector Knowledge
• Actual Intelligence Case Studies Leveraging Open Source Intelligence (OSINT)
• Sailing the Sea of OSINT in the Information Age
• Open Source Intelligence (OSINT): Issues for Congress,Congressional Research Service, December 5, 2007
• Open Source Intelligence (OSINT): Issues for Congress,Congressional Research Service, January 28, 2008
• The Free Library,FMSO-JRIC and Open Source Intelligence: speaking prose in a world of verse, Military Intelligence Professional Bulletin, Oct–Dec, 2005 by Jacob W. Kipp