Privacy & Security Research

Minimize What Can Be Known

Independent research on OSINT defense and digital privacy, home of the OSINT Defense & Security Framework

Explore ODSF Read the Research
01 The Doctrine

Your public footprint is an attack surface.

Every sophisticated campaign begins with reconnaissance. Adversaries assemble fragments of public data (profiles, posts, records, metadata) into a roadmap for targeting organizations and the people inside them. PsySecure researches how that exposure forms, and how to systematically take it away.

Exposure precedes attack

Reconnaissance is the first step of the kill chain. What can be found will eventually be used.

Defense begins with visibility

See yourself as the adversary does. Defensive OSINT maps your exposure before someone else does.

Reduction over reaction

Smaller, well-managed footprints offer fewer opportunities for exploitation than any alert ever will.

02 The Framework

OSINT Defense & Security Framework

The open OSINT risk management framework: five focus areas and 150 controls that treat what attackers can learn from public information as managed attack surface. Category-level orientation to NIST CSF 2.0, and openly licensed under CC BY 4.0.

01

Digital Footprint Reduction

Minimizing the public exposure of sensitive information about the organization and its people: what surfaces in search results, social platforms, and public databases.

02

Social Engineering Defense

Hardening the human element against attacks that weaponize OSINT: awareness built on real reconnaissance, and verification protocols for sensitive requests.

03

Technology Exposure Management

Controlling the technical attack surface discoverable through OSINT tooling: visible infrastructure, service enumeration, and technology stack details.

04

Executive Exposure Protection

Safeguards for high-profile individuals facing elevated targeting and personal risk: account and recovery hardening, SIM-swap protection, consent-scoped household exposure, and travel and calendar exposure.

05

Continuous Monitoring & Response

Ongoing surveillance of public data for emerging threats and leaks: breach exposure, leaked credentials, and the capability to respond rapidly.

Read the Overview Download the Framework (PDF)
03 The Podcast

The Lockdown

The practical privacy & security podcast: 36 episodes on operational privacy, OSINT defense, and security that survives contact with real life. Tin-foil hats optional.

Browse Episodes
04 The Briefing

Stay ahead of your exposure.

A daily executive briefing on what changed overnight, and a deep guide to reducing what attackers can find. Take one, or both.

Daily · Free

Daily Executive Briefing

Security, privacy, and OSINT exposure in a two-minute read, delivered every weekday morning.

  • Privacy and OSINT shifts that change your exposure
  • Breaches, threat actors, and serious vulnerabilities
  • The one thing worth knowing first, up top
Subscribe to the briefing Unsubscribe anytime · no trackers
Cover of Minimize What Can Be Known, the PsySecure executive guide
The Guide · Free PDF

Minimize What Can Be Known

An executive guide in 17 chapters on reducing the public information threat actors use.

Download PDF Read more
05 Latest Writing All research →
What a Field CISO Actually Is

What a Field CISO Actually Is

Field CISO roles have multiplied across the industry, and the understanding of what the job involves has lagged well behind the hiring. After four and a half years in the role, here is what it is, what it demands, and how to tell a peer from a sales meeting.

Read
Whatsapp vs Signal

Whatsapp vs Signal

Both apps use the same encryption protocol, but only one is owned by a company fined billions for privacy violations. Here's why I have only ever used Signal.

Read
The Space Between - Why 68% of Breaches Exploit Spaces We Never Defend

The Space Between - Why 68% of Breaches Exploit Spaces We Never Defend

Discover how the Japanese concept of ma (間) reveals why 68% of cyberattacks succeed in the space between our security controls.

Read