Trace Labs OSINT VM

Crowdsourced OSINT to Find Missing Persons

The Trace Labs team created a specialized OSINT VM specifically to bring together the most effective OSINT tools and customized scripts we saw being used during our Search Party CTF’s. Inspired by the infamous Buscador VM, the Trace Labs OSINT VM was built in a similar way, to enable OSINT investigators participating in the Trace Labs Search Party CTF’s a quick way to get started and have access to the most popular OSINT tools and scripts all neatly packaged under one roof.

Download OVA

See It In Action

Downloads

To get started, download the OVA version of choice below and run it in your choice of VM software (ie. VMware Workstation, Virtualbox etc.). The default credentials to log in to the TL OSINT VM 2020.2 are osint:osint and kali:kali for 2020.1

VM Release

Size

Install Guide

SHA256 Hash

TL OSINT VM 2020.2

3.6 GB

Install Guide v2

a4e83e93b6d432cd051566e1da67063e874d80971d6a65c63f9ef88f311d9a54

TL OSINT VM 2020.1

5.1 GB

Install Guide v1

96ad609a0737bd1a28e1079b6b0b5cadff2380d481b6932ef643b3bb12eb67ae

System Requirements

Category

Tools/Features

Operating Systems

Windows 10 x64 / Mac OS X / Linux Distribution x64

Processor

Intel Core i3 2.5 Ghz or AMD Phenom II 2.6 Ghz or greater

Memory

8 GB RAM

Storage

40 GB Available

We are continuing to build upon the Trace Labs OSINT VM and welcome any and all feedback. Our goal with this project is to create an OSINT focused VM that provides security, stealthiness and the ability to easily save digital forensic evidence during an investigation all within an easy to use package.

Want to contribute tool and configuration suggestions? Log a GitHub Issue on our GitHub page for the project here: https://github.com/tracelabs/tlosint-live

Credit for the creation & maintenance of this project goes to Jason Kregting, Tom Hocker (humanDecoded), Swetha Balla, lowprivs, Katniss, and Paul “Krkn” D!

Applications Included

Category

Tools/Features

Domains

• Sublist3r

Downloaders

• Browse Mirrored Websites
• Metagoofil
• Spiderpig
• WebHTTrack Website Copier
• Youtube-DL

Browsers

• Chromium Web Browser
• Firefox ESR
• Tor Browser

Emails

• Buster
• H8mail
• Infoga
• OSINT-Search
• theHarvester

Data Analysis

• DumpsterDiver
• Exifprobe
• Exifscan
• Photon
• Stegosuite

Frameworks

• FinalRecon
• Little Brother
• recon-ng
• sn0int
• Spiderfoot
• WikiLeaker

Phone Numbers

• OSINT-Search
• PhoneInfoga

Social Media

• Instaloader
• Twint

Usernames

• Sherlock
• WhatsMyName

FireFox Configuration Settings

• Delete cookies/history on shutdown
• Privacy protection (block mic/camera/geo)
• OSINT Bookmarks

Other tools
(not listed in the menu)

• checkdmarc
• Photon
• Carbon14
• Sherlock
• skiptracer
• h8mail
• Shodan
• Wireshark

Featured Blog Post

Thinking outside the box – Data Breaches 

October 14, 2020

A deep dive into password analysis and its application to enriching online investigation scope and findings.

Read More

Upcoming Search Party

National Australian Missing Persons Hackathon

October 28, 2020 11:00 PM

UTC

Sign up for our next OSINT Search Party CTF to help us crowdsource OSINT on real missing persons cases!

Learn More

Upcoming Search Party

conINT 2020 OSINT Search Party CTF

October 18, 2020 3:00 PM

UTC

Sign up for our next OSINT Search Party CTF to help us crowdsource OSINT on real missing persons cases!

Learn More

Upcoming Search Party

Global OSINT Search Party CTF 2020.09

August 18, 2020 4:54 AM

UTC

Sign up for our next OSINT Search Party CTF to help us crowdsource OSINT on real missing persons cases!

Learn More

Volunteer

Shop

Thank You to a Few of Our Sponsors

Learn More
Who We AreSearch Party CTFWhat We DoTL OSINT VMCore ValuesCore TeamSponsorsOp RequestPartnersBlogShopDonate to Trace LabsCode of ConductGet Involved
Email: info@tracelabs.org