Title: Opensource intelligence and dark web user de-anonymisation

Authors: Tashi Wangchuk; Digvijaysinh Rathod

Addresses: Department of Information Technology, Royal University of Bhutan, Dewathang, Samdrup Jongkhar, Bhutan ' School of Cyber Security and Digital Forensics, National Forensic Sciences University, Gujarat, India

Abstract: The dark web has emerged as a platform where cybercriminals carry out illegal activities. Attempts to investigate and de-anonymise the suspicious dark web users have not been able to keep up with the pace of the dark web's flourishing coupled with dysfunctional tools and techniques. This study proposes and evaluates a dark web investigation framework using a Python-based tool to harvest data from the dark web to derive intelligence for further investigation using the available opensource intelligence (OSINT) tools. In the experimental implementation of the framework and the tool (Dark2Clear), the tool successfully scraped the hidden service URLs, harvested the e-mail addresses of the dark web users, and suspicious e-mail addresses were used as input to the OSINT tools for gathering intelligence to de-anonymise. It was observed that the framework and tool can be effectively used by the investigators to investigate and de-anonymise suspicious dark web users.

Keywords: hidden services; opensource intelligence; dark web; investigation framework; de-anonymisation.

DOI: 10.1504/IJESDF.2023.129273

International Journal of Electronic Security and Digital Forensics, 2023 Vol.15 No.2, pp.143 - 157

Received: 29 Jan 2022
Accepted: 30 Mar 2022

Published online: 02 Mar 2023 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article