Hackers don’t always attack systems – they often attack people. Phishing, spear phishing, blackmail, impersonation. We examine what information about you and key employees is circulating on the internet and dark net.The result: a clear exposure map + specific protective steps.
PLN 99 net
– one-time report/person
or 399 PLN net/msc
– continuous monitoring of people
PROCESS
Meanwhile, much of this information is publicly available – on LinkedIn, in social media, in databases of data leaks, in business registries, in industry forums. OSINT is the discipline of collecting and analyzing information from open sources. We use the same methods that attackers use – to show you what they know about you before they try to take advantage.
PROCESS
For each person you commission for analysis, we conduct a systematic search in more than a dozen categories of sources – from the publicly available Internet to the dark net. The entire analysis is passive: we don’t contact the person under study, we don’t try to get additional information by social engineering methods, we don’t violate privacy beyond what is publicly available anyway.
Leaked emails and passwords
Check all known leak databases (Have I Been Pwned and others, including dark net)
Social media profile
LinkedIn, X, Facebook, Instagram: what job data, location, contacts are visible
Personal data in open sources
Address, phone number, PESEL (if visible in records), family photos
Links to companies
Function performed, employment history, ownership structure, cross capital ties
Dark net presence
Check known marketplaces and hacking forums for offers to sell data
Vulnerability to phishing and spear phishing
Assessing how much of the collected data would be enough for an effective personalized attack
Risk of blackmail
Identification of information that could be used as a leverage point
Full map of a person’s digital exposure – all the information found, sources, screen captures. Organized into clear categories with a risk assessment for each. A format consciously prepared for secure internal distribution – it can be shown to the subject without the risk of becoming a leak in itself.
Synthetic vulnerability assessment for four types of attacks: phishing, spear phishing, blackmail, identity theft. Each category is given a score with justification and a list of the strongest risk factors.
Every piece of information found, every leak – with an assessment of “what the attacker can do with it” and, where possible, with an indication of the source.
How does it work?
01
In the customer panel you provide basic data: first name, last name, business e-mail, optionally company name and position. Each person surveyed must consent to the OSINT analysis – in the case of your own person, the consent is given automatically when you place the order, in the case of another person (e.g., board member, key employee) we require a signed consent.
02
Our engines search more than a dozen categories of sources, collect the information found, verify its validity and classify it by risk. All analysis is passive and does not reveal to anyone that a person is being analyzed.
03
You receive an email notification with a secure link to the report. The report remains available in your customer panel for the duration of your active subscription, or up to 12 months after purchase for a one-time report. In a continuous subscription, automatic alerts notify you of new leaks or the arrival of new data on your network – sent when the next scan cycle is completed.
solution
The subscription can be extended to include additional people – upon request. For multi-person boards, we recommend the Guardian package (Cyber Monitoring + OSINT) for PLN 1,099/msc.
OSINT and Personal Security is recommended primarily for board members, CFOs, IT directors and people with access to critical company systems – in other words, those who are typically the targets of spear phishing attacks. The second audience is publicly exposed persons (PEPs) – politicians, journalists, well-known businessmen, who are particularly vulnerable to social engineering attacks and disinformation campaigns.
The third group is small business owners and partners, who often combine a personal role with a business role – an attack on an individual translates directly into company security. Continuous subscription makes sense especially for those who have recently changed positions, entered the public domain or, as a result of an incident, noticed their data circulating online.
No – but if you have an IT team, they’ll be happy too. Each report exists in two versions: a summary for management (threats in PLN) and a full technical analysis for IT (CVSS, vulnerability details, recommendations). If you don’t have an IT department – we can help you find a partner.
OSINT analysis is inherently informative and based on data publicly available at the time of the scan. Incomplete results (some data may be hidden or unavailable at the time of the scan) and false positives (e.g., data from another person with the same name) are possible. The results do not constitute evidence in legal proceedings – if necessary, a formal notification of the leak is recommended in accordance with RODO procedures. We use third-party data providers Threat Intelligence – see Terms and Conditions for details.
OSINT and Personnel Security is most often ordered together with:
499,00 zł
Checks the company’s obligations as a result of detected leaks
749,00 zł
all three of the above services in one package at a discount of ~12%
1 099,00 zł / month
Cyber Monitoring + OSINT in continuous monitoring, at a discount
Full exposure report in 48 hours.
Only £99 for a full person analysis.
