Guide
FEATURED
2.1 MB
OSINT Investigation Checklist
A field checklist for when your browser has 47 tabs open and your dignity has left the building.
4.9 rating
1,247 extractions
Updated 4/14/2026
The checklist that politely asks chaos to wait outside
This guide walks investigators through planning, collection, verification, reporting, and the sacred ritual of naming screenshots something better than final-final-2.png.
What is inside
- Investigation prep steps so you do not begin with vibes alone.
- Verification checkpoints so one weird forum post does not become "intelligence."
- Documentation reminders because memory is a snitch.
- Follow-up and monitoring steps for cases that refuse to stay solved.
Recommended workflow
- Define the question before opening the fifteenth tab.
- Set legal scope and collection boundaries.
- Gather evidence in an order that supports later verification.
- Record findings with timestamps and source notes.
- Review gaps before pretending the case is complete.
Checklist sections in practice
Preparation
- Clarify objective, scope, and success criteria.
- Set up isolated workspace, note templates, and capture tools.
- Identify likely source categories before collection starts.
Collection
- Search broadly, then narrow with structure.
- Capture pages, documents, images, and source metadata.
- Preserve context so a screenshot still means something tomorrow.
Verification
- Cross-check every important claim against independent sources.
- Record contradictions rather than editing them out of existence.
- Separate direct observations from analysis and inference.
Reporting
- Summarize what was found.
- Explain confidence levels.
- Identify unanswered questions and sensible next steps.
Why it matters
Good OSINT is not dramatic keyboard mashing under neon lights. It is boring, structured, repeatable work with occasional moments of triumph and caffeine.
If your evidence folder looks like a junk drawer, this checklist is your intervention.