Multilingual OSINT Glossary
Methodological notes and sources: see the article Multilingual OSINT Glossary: methodological notes and sources.
A. General OSINT and Digital Investigations Terminology
15 terms
| English | Русский | 中文 | Pīnyīn | Italiano | Description |
|---|---|---|---|---|---|
| Closed Source Information | Закрытая информация | 封闭源信息 | fēngbì yuán xìnxī | Informazioni a fonte chiusa | Information not publicly accessible, controlled by specific entities and protected by legal, contractual or technical restrictions. |
| Collection Strategy | Стратегия сбора | 采集策略 | cǎijí cèlüè | Strategia di raccolta | A detailed plan that defines the sources, methods, timing and resources for collecting information relevant to an investigative requirement. |
| Counter-OSINT | Контр-ОСИНТ | 反开源情报 | fǎn kāiyuán qíngbào | Contro-OSINT | A set of defensive techniques and strategies to limit, obfuscate or deny access to personal and organisational information through open sources. |
| Digital Footprint | Цифровой след | 数字足迹 | shùzì zújì | Impronta digitale | The collection of data and traces left online by an individual or entity, including accounts, messages, photos and associated metadata. |
| Digital Open Source Information (DOSI) | Цифровая информация из открытых источников | 数字开源信息 | shùzì kāiyuán xìnxī | Informazioni digitali da fonti aperte (DOSI) | Open source information available predominantly in digital form, including web content, social media, metadata and public online data. |
| Finished Intelligence | Готовый аналитический продукт | 完成情报 | wánchéng qíngbào | Intelligence finita | Information that has been analysed, verified and presented in a structured format to support specific decisions or actions. |
| Intelligence Requirement (IR) | Требование разведки | 情报要求 | qíngbào yāoqiú | Fabbisogno informativo (IR) | A specific question or objective that guides OSINT collection, formulated before research begins. |
| Open Source Evidence | Доказательства из открытых источников | 开源证据 | kāiyuán zhèngjù | Prove da fonti aperte | Open source information collected and presented according to standards of evidentiary integrity, verifiability and chain-of-custody preservation. |
| Open Source Information | Открытая информация | 开源信息 | kāiyuán xìnxī | Informazioni da fonti aperte | Any information lawfully accessible to the public without legal, regulatory or contractual restrictions on disclosure. |
| Open Source Investigation | Расследование на основе открытых источников | 开源调查 | kāiyuán diàochá | Indagine su fonti aperte | An investigative methodology that uses exclusively publicly available information to establish facts, context and accountability. |
| OSINT (Open Source Intelligence) | ОСИНТ (разведка из открытых источников) | 开源情报 | kāiyuán qíngbào | OSINT (Intelligence da fonti aperte) | The systematic process of collecting, analysing and disseminating information from open sources to support decisions and investigations. |
| Osint Framework | Фреймворк ОСИНТ | 开源情报框架 | kāiyuán qíngbào kuàngjià | Framework OSINT | A systematic methodological structure that guides the OSINT practitioner through the planning, collection, analysis and documentation phases. |
| Raw Intelligence | Необработанная информация | 原始情报 | yuánshǐ qíngbào | Intelligence grezza | Data and information collected from sources without any additional processing, analysis or validation. |
| Source Validation | Проверка источника | 源验证 | yuán yànzhèng | Validazione della fonte | The systematic process of assessing the reliability, credibility and potential bias of an information source. |
| Transparency Data | Данные открытости | 透明度数据 | tòumíngdù shùjù | Dati di trasparenza | Information voluntarily published by organisations, governments or platforms to enable tracking and accountability. |
B. Investigative Process
20 terms
| English | Русский | 中文 | Pīnyīn | Italiano | Description |
|---|---|---|---|---|---|
| Actor Mapping | Картирование акторов | 行为体映射 | xíngwéitǐ yìngshè | Mappatura degli attori | The systematic identification of individuals, organisations and entities involved in an event, documenting their roles and interconnections. |
| Attribution Analysis | Анализ атрибуции | 归属分析 | guīshǔ fēnxī | Analisi di attribuzione | Attributing responsibility for an action, communication or digital artefact to a specific actor based on technical and contextual evidence. |
| Chronolocation | Хронолокация | 时间定位 | shíjiān dìngwèi | Cronolocalizzazione | Establishing the temporal sequence and timing of events based on timestamps, time zones, metadata and digital synchronisation evidence. |
| Collection | Сбор информации | 信息收集 | xìnxī shōují | Raccolta | The systematic phase of acquiring, downloading and recording information from public sources according to preservation protocols. |
| Content Analysis | Анализ содержания | 内容分析 | nèiróng fēnxī | Analisi del contenuto | The critical reading of texts, images and other content to identify meaning, context, intent and credibility. |
| Credibility Assessment | Оценка надежности | 可信度评估 | kěxìndù pínggū | Valutazione della credibilità | The process of evaluating the likelihood that a piece of information is accurate based on its source, methodology and independent corroboration. |
| Geolocation | Геолокация | 地理位置 | dìlǐ wèizhì | Geolocalizzazione | The process of identifying the geographic location of an event, device or person using coordinates, IP addresses, metadata and visual landmarks. |
| Incident Mapping | Картирование инцидента | 事件映射 | shìjiàn yìngshè | Mappatura dell’evento | The visual and sequential documentation of an event, including actors, locations, timeline and causality. |
| Investigative Analysis | Аналитическая работа | 调查分析 | diàochá fēnxī | Analisi investigativa | The critical examination and interpretation of collected information to identify patterns, causal connections and evidence-based conclusions. |
| Link Analysis | Анализ связей | 链接分析 | liànjiē fēnxī | Analisi dei collegamenti | Identifying and mapping connections between entities (people, organisations, IP addresses) to reveal hidden patterns and relationships. |
| Online Inquiry | Онлайн-запрос | 在线查询 | zàixiàn cháxún | Indagine online | The systematic searching and querying of digital sources, databases and online platforms to locate specific information. |
| Pattern Recognition | Распознавание паттернов | 模式识别 | móshì shíbié | Riconoscimento di pattern | Identifying recurring trends, consistent behaviours or meaningful sequences that indicate intent, association or behavioural norms. |
| Preliminary Assessment | Предварительная оценка | 初步评估 | chūbù pínggū | Valutazione preliminare | An initial evaluation of the scope, feasibility and resources required for an OSINT investigation before full collection begins. |
| Preservation | Сохранение | 保存 | bǎocún | Conservazione | The technical process of protecting the integrity of collected data through screenshots, encrypted backups and timestamped documentation. |
| Provenance | Происхождение | 来源 | láiyuán | Provenienza | The documented record of the history of a piece of information or object, from its original source through every subsequent transition. |
| Social Network Analysis (SNA) | Анализ социальных сетей | 社会网络分析 | shèhuì wǎngluò fēnxī | Analisi delle reti sociali (SNA) | The mapping and analysis of connections between individuals, identities and accounts to uncover power structures, central nodes and information flows. |
| Source Analysis | Анализ источника | 源分析 | yuán fēnxī | Analisi della fonte | The systematic evaluation of a source’s reputation, collection method, potential biases and track record of accuracy. |
| Spatial Analysis | Пространственный анализ | 空间分析 | kōngjiān fēnxī | Analisi spaziale | The mapping of geographic locations, actor movements and spatial relationships to visualise patterns of movement or distribution. |
| Technical Analysis | Технический анализ | 技术分析 | jìshù fēnxī | Analisi tecnica | The examination of metadata, timestamps, technical headers, file properties and connectivity data to establish authenticity and temporal context. |
| Verification | Проверка | 验证 | yànzhèng | Verifica | Confirming the accuracy and authenticity of information by comparison with independent sources and analytical methods. |
C. Security and Preparation
12 terms
| English | Русский | 中文 | Pīnyīn | Italiano | Description |
|---|---|---|---|---|---|
| Chain of Custody | Цепь доказательств | 证据链 | zhèngjù liàn | Catena di custodia | A documented record of everyone who has handled a piece of evidence, from its acquisition through analysis to presentation in court. |
| Compartmentalization | Разделение доступа | 隔离 | gélí | Compartimentazione | The practice of separating information and activities into compartments to limit the damage if any one of them is compromised. |
| Data Minimization | Минимизация данных | 数据最小化 | shùjù zuìxiǎohuà | Minimizzazione dei dati | The principle of collecting and retaining only the information strictly necessary to achieve the investigative objective, reducing privacy risks. |
| Digital Hygiene | Цифровая гигиена | 数字卫生 | shùzì wèishēng | Igiene digitale | Everyday defensive practices for maintaining digital security: strong passwords, updates, VPNs, 2FA and isolation of sensitive data. |
| Digital Landscape Assessment | Оценка цифрового ландшафта | 数字环境评估 | shùzì huánjìng pínggū | Valutazione del panorama digitale | Analysis of the online infrastructure, platforms, services and technologies relevant to an investigation in order to plan secure collection. |
| Digital Threat and Risk Assessment | Оценка цифровых угроз и рисков | 数字威胁和风险评估 | shùzì wēixié hé fēngxiǎn pínggū | Valutazione di minacce e rischi digitali | A systematic assessment of the risks to an investigator arising from hostile actors, tracking techniques and digital countermeasures during OSINT collection. |
| Evidentiary Copy | Копия доказательства | 证据副本 | zhèngjù fùběn | Copia probatoria | An exact copy of acquired data with intact metadata, a verified hash and integrity documentation, intended for legal or forensic use. |
| Online Investigation Plan (OIP) | План онлайн-расследования | 在线调查计划 | zàixiàn diàochá jìhuà | Piano di indagine online (OIP) | A strategic document specifying the investigative objectives, target sources, methodology, risks and mitigation measures before work begins. |
| OPSEC (Operational Security) | OPSEC (Операционная безопасность) | 作战安全 | zuòzhàn ānquán | OPSEC (Sicurezza operativa) | The set of procedures and habits that protect an investigator’s identity, location and activity from discovery by adversaries. |
| Resilience Plan | План восстановления | 恢复计划 | huīfù jìhuà | Piano di resilienza | A strategy for continuing operations or recovering data if a system or communication channel is compromised during an investigation. |
| Threat Model | Модель угрозы | 威胁模型 | wēixié móxíng | Modello di minaccia | A systematic description of potential adversaries, their capabilities, motivations and attack methods relevant to a specific investigation. |
| Working Copy | Рабочая копия | 工作副本 | gōngzuò fùběn | Copia di lavoro | A duplicate of the original data used for hands-on analysis, without the strict requirements of an evidentiary copy, in order to protect the original. |
D. Counter-OSINT and RuNet Terminology
15 terms
| English | Русский | 中文 | Pīnyīn | Italiano | Description |
|---|---|---|---|---|---|
| Canary Token / Honeypot Token | Токен-приманка | 蜜罐令牌 | mìguàn lìngpái | Token esca (canary/honeypot) | A decoy digital artefact (URL, email, credential) placed online to detect whether it has been accessed; used to monitor adversarial searches. |
| Counter-OSINT Measures | Контр-ОСИНТ мероприятия | 反开源情报措施 | fǎn kāiyuán qíngbào cuòshī | Misure di contro-OSINT | Defensive techniques to obfuscate, limit or deny access to personal and organisational information through OSINT research. |
| Data Leak | Утечка данных | 数据泄露 | shùjù xièlòu | Fuga di dati | The unauthorised access to and dissemination of personal or proprietary information, often available on underground markets or public forums. |
| Digital Footprint Minimization | Минимизация цифрового следа | 最小化数字足迹 | zuìxiǎohuà shùzì zújì | Minimizzazione dell’impronta digitale | The active practice of reducing the amount of personal data available online by deleting accounts and adjusting visibility and privacy settings. |
| Doxing / Deanonymization | Деанонимизация | 去匿名化 | qù nìmíng huà | Doxing / Deanonimizzazione | The process of identifying the real identity of a person hiding behind a pseudonym, anonymous account or VPN, often for the purpose of intimidation. |
| Email Privacy / Email Alias | Приватность электронной почты | 电子邮件隐私 | diànzǐ yóujiàn yǐnsī | Privacy email / Alias email | The use of email aliases, relay services or anonymous providers to conceal one’s real identity and reduce tracking through email. |
| Google Dorks | Google Dorks | 谷歌恶意查询 | gǔgē èyì cháxún | Google Dorks | The use of advanced search operators (site:, inurl:, filetype:) to find poorly protected files, directories or sensitive data indexed by search engines. |
| Netstalking | Интернет-следование | 网络跟踪 | wǎngluò gēnzōng | Netstalking | A practice that originated on the RuNet (~2009, named after the S.T.A.L.K.E.R. video game): systematically exploring the Net to find little-known, hidden, inaccessible or rare content, then analysing and archiving it; not to be confused with stalking a person. |
| Password Manager | Менеджер паролей | 密码管理器 | mìmǎ guǎnlǐ qì | Gestore di password | Encryption software that securely stores passwords and generates strong passwords to protect accounts from compromise. |
| Phone Number Lookup | Обратный поиск по номеру телефона | 电话号码反向查询 | diànhuà hàomǎ fǎnxiàng cháxún | Ricerca per numero di telefono | A service that links a phone number to a name, address and other publicly available personal information. |
| Probiv (Пробив) | Пробив | 私人信息挖掘 | sīrén xìnxī wājué | Probiv | A clandestine Russian lookup service that provides personal data (phone number, address, documents) using stolen databases and official sources. |
| RuNet | РуНет | 俄网 | éwǎng | RuNet | The Russian-language segment of the internet (.ru/.рф domains), understood as a socio-cultural space; in a counter-OSINT context it also covers private forums and underground marketplaces where stolen data and illicit services are sold. |
| Tor Browser | Браузер Tor | Tor浏览器 | Tor liúlǎnqì | Tor Browser | A specialised browser that routes traffic through the Tor network across multiple layers of encryption, anonymising web browsing. |
| Two-Factor Authentication (2FA) | Двухфакторная аутентификация | 双因素认证 | shuāng yīnsù rènzhèng | Autenticazione a due fattori (2FA) | A security method that requires two forms of verification (password + SMS/app) to access an account, preventing unauthorised access. |
| VPN (Virtual Private Network) | Виртуальная частная сеть | 虚拟专用网络 | xūnǐ zhuānyòng wǎngluò | VPN (Rete privata virtuale) | A service that encrypts the internet connection and hides the IP address, used for online privacy and to bypass geographic restrictions. |
E. IT Technical and Cybersecurity Terminology
25 terms
| English | Русский | 中文 | Pīnyīn | Italiano | Description |
|---|---|---|---|---|---|
| AI / Machine Learning | ИИ / Машинное обучение | 人工智能 / 机器学习 | réngōng zhìnéng / jīqì xuéxí | IA / Apprendimento automatico | Technologies that enable computers to learn from data and make predictions, used to automate OSINT analysis and pattern recognition. |
| Air Gap | Воздушный зазор | 气隙 | qìxì | Air gap (isolamento fisico) | The physical isolation of a computer or network from the internet and untrusted networks to prevent unauthorised remote access. |
| Algorithm | Алгоритм | 算法 | suàn fǎ | Algoritmo | A step-by-step procedure for solving a problem or processing data, used in cryptography, search and big-data analysis. |
| API (Application Programming Interface) | API (Интерфейс программирования приложений) | 应用程序接口 | yìngyòng chéngxù jiēkǒu | API (Interfaccia di programmazione) | A set of rules and protocols that allow different programs to communicate and share data, often publicly exposed and useful in OSINT. |
| Blockchain | Блокчейн | 区块链 | qūkuài liàn | Blockchain | A distributed ledger of cryptographically secured transactions, used in cryptocurrencies and to track ownership; useful for transaction investigations. |
| Boolean Search | Булева логика поиска | 布尔逻辑搜索 | bù ěr luójí sōusuǒ | Ricerca booleana | A search technique that uses logical operators (AND, OR, NOT) to refine queries and find specific results in databases and search engines. |
| Bot / Botnet | Бот / Ботнет | 机器人 / 僵尸网络 | jīqì rén / jiāngshī wǎngluò | Bot / Botnet | An infected computer remotely controlled by an attacker; a network of bots can launch DDoS attacks or send spam on a large scale. |
| Cloud Computing | Облачные вычисления | 云计算 | yún jìsuàn | Cloud computing | An IT model in which resources (storage, computing power) are provided by remote servers; often holds corporate data exposed to OSINT. |
| Cookie | Куки | Cookie | Cookie | Cookie | A small text file stored by the browser that tracks a user’s online behaviour; it can be analysed to examine browsing activity and intent. |
| Cryptography / Encryption | Криптография / Шифрование | 密码学 / 加密 | mìmǎ xué / jiāmì | Crittografia / Cifratura | The science of protecting information through mathematical encoding, used to secure communications, archives and online identities. |
| Dark Web | Даркнет | 暗网 | àn wǎng | Dark web | The part of the internet not indexed by conventional search engines, accessible via proxy/Tor and used for illegal activity and underground marketplaces. |
| DNS (Domain Name System) | DNS (Система доменных имён) | 域名系统 | yùmíng xìtǒng | DNS (Sistema dei nomi di dominio) | The protocol that converts human-readable domain names (osintops.com) into IP addresses; DNS records are public and reveal infrastructure. |
| Domain Name | Доменное имя | 域名 | yùmíng | Nome di dominio | A human-readable web address (e.g. osintops.com) that identifies a site; its ownership, registration and history are publicly searchable. |
| EXIF Data | EXIF данные | EXIF数据 | EXIF shùjù | Dati EXIF | Metadata embedded in digital photos, including date, time, GPS location and the camera used; it often contains geolocation information. |
| Firewall | Брандмауэр | 防火墙 | fánghuǒ qiáng | Firewall | A security system that monitors and controls incoming and outgoing network traffic for a device or network. |
| Hash / Cryptographic Hash | Хеш / Криптографический хеш | 哈希 / 密码哈希 | hāxī / mìmǎ hāxī | Hash / Hash crittografico | A unique string of characters generated by an algorithm that represents the content of a file; any change alters the hash. |
| HTTP / HTTPS | HTTP / HTTPS | HTTP / HTTPS | HTTP / HTTPS | HTTP / HTTPS | Web transfer protocols; HTTPS is encrypted. HTTP headers contain metadata useful in OSINT for profiling a site’s technology. |
| IP Address | IP-адрес | IP地址 | IP dìzhǐ | Indirizzo IP | A unique numeric identifier assigned to a device on the internet; traceable to a geographic location, ISP and owner via WHOIS/geolocation. |
| Malware | Вредоносное ПО | 恶意软件 | èyì ruǎnjiàn | Malware | Software designed to damage, control or steal data from a computer; traceable through hashes, C2 communications and behavioural signatures. |
| Metadata | Метаданные | 元数据 | yuán shùjù | Metadati | Data that describes other data: timestamps, geolocation, device, author; it often contains revealing information if not removed. |
| Proxy Server | Прокси-сервер | 代理服务器 | dàilǐ fúwù qì | Server proxy | An intermediary server that forwards web requests while masking the original IP address; used for anonymity and to bypass restrictions. |
| VPN (Virtual Private Network) | Виртуальная частная сеть | 虚拟专用网络 | xūnǐ zhuānyòng wǎngluò | VPN (Rete privata virtuale) | A service that encrypts the internet connection and masks the real IP address; used both for privacy and for investigating remotely in safety. |
| Web Scraping | Веб-скрейпинг | 网页抓取 | wǎngyè zhuāqǔ | Web scraping | The automated extraction of data from web pages using scripts; useful for collecting public information at scale and monitoring changes. |
| WHOIS | WHOIS | WHOIS | WHOIS | WHOIS | A public database that records the owner, registrar, technical contacts and registration/expiry dates of internet domains. |
| Zero Day | Zero Day / День нулевой | 0Day / 零日漏洞 | 0Day / língrì lòudòng | Zero day | A security vulnerability unknown to vendors and users; exploited by attackers before it is publicly disclosed. |
F. Threat Intelligence and Cybersecurity
20 terms
| English | Русский | 中文 | Pīnyīn | Italiano | Description |
|---|---|---|---|---|---|
| APT (Advanced Persistent Threat) | APT (Продвинутая стойкая угроза) | APT (高级持续威胁) | APT (gāojí chíxù wēixié) | APT (Minaccia persistente avanzata) | A sophisticated attacker, often state-sponsored, that maintains undetected access to a network for extended periods for espionage or sabotage. |
| Attack Surface | Поверхность атаки | 攻击面 | gōngjī miàn | Superficie di attacco | The total sum of all potential entry points in a network or application that an attacker could exploit. |
| Botnet | Ботнет | 僵尸网络 | jiāngshī wǎngluò | Botnet | A network of compromised computers controlled by a central attacker; used to launch DDoS attacks, send spam or infect other systems. |
| C2 (Command and Control) | C2 (Командование и управление) | C2 (命令与控制) | C2 (mìnglìng yǔ kòngzhì) | C2 (Comando e controllo) | The infrastructure used by attackers to communicate with malware planted on victim computers and direct attacks. |
| Cobalt Strike | Cobalt Strike | Cobalt Strike | Cobalt Strike | Cobalt Strike | An advanced penetration-testing framework frequently abused by attackers for post-exploitation, lateral movement and data exfiltration. |
| CTI (Cyber Threat Intelligence) | CTI (Киберугрозы разведки) | CTI (网络威胁情报) | CTI (wǎngluò wēixié qíngbào) | CTI (Intelligence sulle minacce informatiche) | The collection, analysis and dissemination of information about cybersecurity threats, adversaries, tactics and vulnerabilities. |
| DDoS (Distributed Denial of Service) | DDoS (Распределённая атака отказ в обслуживании) | DDoS (分布式拒绝服务) | DDoS (fēnbù shì jùjué fúwù) | DDoS (Negazione del servizio distribuita) | An attack that floods a server with traffic from multiple sources, making the service unavailable to legitimate users. |
| Exploit | Эксплуатация | 漏洞利用 | lòudòng lìyòng | Exploit | Code or a technique that takes advantage of a specific vulnerability to compromise a system or allow unauthorised code execution. |
| Fast Flux | Fast Flux | 快速变更 | kuàisù biàngēng | Fast flux | A technique that rapidly changes the IP addresses behind a domain to avoid blocking and host malicious infrastructure evasively. |
| Incident Response | Реагирование на инциденты | 事件响应 | shìjiàn xiǎngyìng | Risposta agli incidenti | A structured procedure for detecting, containing, eradicating and recovering from a security breach or cyber attack. |
| IOC (Indicator of Compromise) | IOC (Индикатор компрометации) | IOC (折衷指标) | IOC (zhézhōng zhǐbiāo) | IOC (Indicatore di compromissione) | Observable data (file hashes, IPs, domains, emails) indicating that a system has been compromised or attacked by malware. |
| JA3 / JA4 | JA3 / JA4 | JA3 / JA4 | JA3 / JA4 | JA3 / JA4 | Client-side SSL/TLS fingerprinting methods that identify malware and illegitimate clients based on their configuration signature. |
| JARM | JARM | JARM | JARM | JARM | A fingerprinting technique that analyses a server’s SSL/TLS response to identify and classify malicious servers and bots. |
| Phishing | Фишинг | 网络钓鱼 | wǎngluò diàoyú | Phishing | A social-engineering attack that uses fraudulent emails or messages to trick users into revealing credentials or downloading malware. |
| Ransomware | Вымогатель | 勒索软件 | lèsuǒ ruǎnjiàn | Ransomware | Malware that encrypts a victim’s files and demands payment for decryption; often spread through phishing or vulnerabilities. |
| Threat Actor | Угрозные актеры | 威胁行为体 | wēixié xíngwéi tǐ | Attore della minaccia | An individual, group or organisation that carries out intentional cyber attacks; often classified by motivation, capability and affiliation. |
| Threat Hunting | Охота на угрозы | 威胁狩猎 | wēixié shòuliè | Caccia alle minacce | The proactive search for signs of attack and compromise within a network, independent of security alerts. |
| TLP (Traffic Light Protocol) | TLP (Протокол светофора) | TLP (交通灯协议) | TLP (jiāotōng dēng xiéyì) | TLP (Protocollo del semaforo) | A standard for classifying how threat-intelligence information is shared; under version 2.0 (FIRST, 2022) the labels are: CLEAR (unrestricted, formerly «white»), GREEN (community), AMBER (organisation, with an «+STRICT» variant) and RED (recipients only). |
| TTP (Tactics, Techniques, Procedures) | TTP (Тактика, техника, процедуры) | TTP (战术、技术和程序) | TTP (zhànshù, jìshù hé chéngxù) | TTP (Tattiche, tecniche, procedure) | A framework describing how an attacker operates: strategies (tactics), specific methods (techniques) and operational processes (procedures). |
| Vulnerability | Уязвимость | 漏洞 | lòudòng | Vulnerabilità | A weakness or flaw in software, hardware or a procedure that an attacker can exploit to gain unauthorised access or cause harm. |
G. Network Protocols and Services
8 terms
| English | Русский | 中文 | Pīnyīn | Italiano | Description |
|---|---|---|---|---|---|
| ASN (Autonomous System Number) | ASN (Номер автономной системы) | ASN (自治系统号) | ASN (zìzhì xìtǒng hào) | ASN (Numero di sistema autonomo) | A unique numeric identifier assigned to an autonomous system: typically an ISP, but also large enterprise, cloud or CDN networks; traceable to determine network infrastructure. |
| BGP (Border Gateway Protocol) | BGP (Протокол пограничного шлюза) | BGP (边界网关协议) | BGP (biānjiè wǎngguān xiéyì) | BGP (Protocollo di gateway di frontiera) | A routing protocol that determines how data travels between autonomous systems on the internet; vulnerable to hijacking. |
| DNS Query | DNS запрос | DNS查询 | DNS cháxún | Query DNS | A request that resolves a domain name into an IP address; DNS logs reveal web browsing and malware C2 communications. |
| NetFlow | NetFlow | NetFlow | NetFlow | NetFlow | A protocol that collects and analyses network-flow metadata (source, destination, port, volume); used to analyse suspicious traffic. |
| PDNS (Passive DNS) | PDNS (Пассивный DNS) | PDNS (被动DNS) | PDNS (bèidòng DNS) | PDNS (DNS passivo) | A historical archive of DNS queries and resolutions that reveals a domain’s ownership, infrastructure and history without requiring active queries. |
| SMTP (Simple Mail Transfer Protocol) | SMTP (Простой протокол передачи почты) | SMTP (简单邮件传输协议) | SMTP (jiǎndān yóujiàn chuánshū xiéyì) | SMTP (Protocollo di trasferimento posta) | The standard protocol for sending email; SMTP headers contain information about routing and sender authentication. |
| SSH (Secure Shell) | SSH (Безопасная оболочка) | SSH (安全外壳) | SSH (ānquán wàiké) | SSH (Shell sicura) | A protocol for secure remote login to servers; public SSH keys are often traceable to identify infrastructure. |
| TCP/IP (Transmission Control Protocol / Internet Protocol) | TCP/IP | TCP/IP | TCP/IP | TCP/IP | The fundamental suite of protocols on which the internet is based; every network communication passes through them, leaving traceable metadata. |
H. Legal Framework and International Law
10 terms
| English | Русский | 中文 | Pīnyīn | Italiano | Description |
|---|---|---|---|---|---|
| Admissibility | Допустимость | 可接受性 | kě jiēshòu xìng | Ammissibilità | The determination of whether a piece of evidence is legally valid and can be presented in court under the applicable rules of evidence. |
| Chain of Custody (Legal) | Цепь доказательств (Юридическая) | 证据链(法律) | zhèngjù liàn (fǎlǜ) | Catena di custodia (giuridica) | The legal requirement to fully document how a piece of evidence was collected, preserved and handled in order to maintain its admissibility. |
| Due Process | Надлежащая процедура | 正当程序 | zhèngdàng chéngxù | Giusto processo | A legal principle requiring fair and impartial procedures in the collection and presentation of evidence in legal proceedings. |
| Expert Witness | Эксперт-свидетель | 专家证人 | zhuānjiā zhèngrén | Perito (testimone esperto) | A professional with recognised expertise who testifies in court on the interpretation of technical evidence, including OSINT and digital analysis. |
| Fact-Finding Mission | Миссия установления фактов | 事实调查团 | shìshí diàochá tuán | Missione di accertamento dei fatti | An official inquiry authorised by international organisations to establish the facts about human rights violations or war crimes. |
| International Criminal Court (ICC) | Международный уголовный суд | 国际刑事法院 | guójì xíngshì fǎyuàn | Corte penale internazionale (CPI) | An international judicial body that prosecutes crimes against humanity; it accepts OSINT as evidence when properly documented. |
| International Humanitarian Law (IHL) | Международное гуманитарное право | 国际人道法 | guójì réndào fǎ | Diritto internazionale umanitario (DIU) | A body of rules that protect people affected by armed conflict; violations of IHL constitute investigable war crimes. |
| Jurisdiction | Юрисдикция | 管辖权 | guǎnxiáquán | Giurisdizione | The legal authority of a court or government to exercise power over persons and activities; relevant to the admissibility of OSINT evidence. |
| Public International Law | Международное публичное право | 国际公法 | guójì gōngfǎ | Diritto internazionale pubblico | The system of rules governing relations between states and international organisations; it provides the legal framework for transnational investigations. |
| Rules of Evidence | Правила доказательства | 证据规则 | zhèngjù guīzé | Regole probatorie | The legal rules that determine which evidence is admissible in court; OSINT collection documentation must comply with these standards. |
I. Abbreviations and Acronyms
16 entries
| Abbreviation | English | Русский | 中文 | Pīnyīn |
|---|---|---|---|---|
| 2FA | Two-Factor Authentication | Двухфакторная аутентификация | 双因素认证 | shuāng yīnsù rènzhèng |
| APT | Advanced Persistent Threat | Продвинутая стойкая угроза | 高级持续威胁 | gāojí chíxù wēixié |
| C2 | Command and Control | Командование и управление | 命令与控制 | mìnglìng yǔ kòngzhì |
| CTI | Cyber Threat Intelligence | Киберугрозы разведки | 网络威胁情报 | wǎngluò wēixié qíngbào |
| DDoS | Distributed Denial of Service | Распределённая атака отказ в обслуживании | 分布式拒绝服务 | fēnbù shì jùjué fúwù |
| DNS | Domain Name System | Система доменных имён | 域名系统 | yùmíng xìtǒng |
| DOSI | Digital Open Source Information | Цифровая информация из открытых источников | 数字开源信息 | shùzì kāiyuán xìnxī |
| EXIF | Exchangeable Image File Format | Формат обмена файлами изображений | 可交换图像文件格式 | kě jiāohuàn túxiàng wénjiàn géshì |
| HTTP/HTTPS | HyperText Transfer Protocol (Secure) | Протокол передачи гипертекста (защищённый) | 超文本传输协议(安全) | chāo wénběn chuánshū xiéyì (ānquán) |
| IOC | Indicator of Compromise | Индикатор компрометации | 折衷指标 | zhézhōng zhǐbiāo |
| OSINT | Open Source Intelligence | Разведка из открытых источников | 开源情报 | kāiyuán qíngbào |
| SMTP | Simple Mail Transfer Protocol | Простой протокол передачи почты | 简单邮件传输协议 | jiǎndān yóujiàn chuánshū xiéyì |
| SNA | Social Network Analysis | Анализ социальных сетей | 社会网络分析 | shèhuì wǎngluò fēnxī |
| SSH | Secure Shell | Безопасная оболочка | 安全外壳 | ānquán wàiké |
| TTP | Tactics, Techniques, Procedures | Тактика, техника, процедуры | 战术、技术和程序 | zhànshù, jìshù hé chéngxù |
| VPN | Virtual Private Network | Виртуальная частная сеть | 虚拟专用网络 | xūnǐ zhuānyòng wǎngluò |