OSINT · Digital Intelligence
Before signing with someone, it pays to know what the internet says about them.
Open-source intelligence (OSINT) for due diligence, competitor mapping, brand monitoring, and leak tracking — everything public, professionally collected and analyzed.
Who it's for
- → Companies needing digital due diligence on partners, suppliers, or executives before closing deals .
- → Legal or communications teams needing to monitor brand reputation and detect negative mentions early.
- → Commercial departments wanting to map competition : what they say, where they publish, which clients they mention.
- → Companies suspecting their leaked data may be circulating in public forums or breaches.
Who it's NOT for
- × Anyone seeking private investigation of individuals . OSINT works on public information; private investigation requires a lawyer and legal authorization.
- × Anyone needing access to non-public data (bank statements, medical records): we do not do that. It is illegal.
- × Anyone seeking doxxing campaigns or public exposure of individuals: we decline the work.
What's included
01 · Collection
Multi-Source Mapping
Professional search across engines, social media, public records, web archives (Wayback), public forums, open databases. Everything within reach but requiring expertise to find.
02 · Leaks
Breach and Leak Search
Verification if domains, corporate emails, or credentials appear in known breaches (Have I Been Pwned, public leaks, monitored forums). Historical exposure report.
03 · Analysis
Analysis and Correlation
Not just collection — analysis of the material. Inconsistencies, connections between entities, temporal patterns, risk assessment. What raw data alone does not show.
04 · Report
Executive + Technical Report
Two-layer report: executive (1-2 pages, decisions) and technical (annex with sources, screenshots, methodology). Designed for internal or committee presentation.
How we work
01
Objective definition
Meeting to understand what you need to know and why (due diligence, continuous monitoring, post-incident). We define concrete questions to answer, not "investigate everything."
02
Investigation
Methodical execution with documented chain of custody. Takes 5 to 15 business days depending on scope. Unaltered information — reproducible evidence.
03
Continuous monitoring
For brands or companies requiring constant surveillance, monthly retainer with recurring reports and early alerts when relevant information appears.
Frequently asked questions
Is it legal? OSINT vs. private investigation? +
Fully legal. OSINT works exclusively with public information (legally accessible). We do not access systems, buy stolen data, or phish. Only what anyone could see with time and expertise.
How long does a report take? +
Between 5 and 15 business days for a standard due diligence report on a company or person. Complex cases with multiple entities can take longer. We give ETA at scope definition.
How deep can you go? +
Public information is surprising: forgotten documents in search engines, old profiles on deactivated networks, cross-referenced corporate records, historical leaks. What an attacker would use is what we collect first.
Can you continuously monitor and alert me if something changes? +
Yes, monthly monitoring retainer with early alerts. Useful for brands, public executives, companies in sensitive sectors. We define triggers based on your risk.
Do you work with lawyers or directly with the client? +
Both. For litigation or pre-litigation cases, we work under the law firm's direction to guarantee chain of custody and admissibility. For commercial due diligence, directly with the client.
Can you investigate someone without them knowing? +
Yes — OSINT is by definition passive. We do not contact the person, send connection requests, or create fake profiles. We only observe the public. The subject never knows they were investigated.
IT Diagnosis
Schedule IT Advisory / Secure Channel.