What We Do

At Spotlight Infosec, we use Open Source Intelligence (OSINT) techniques to find answers for our clients. Below are a few examples of the types of work we can do for your organization.

High-profile person and organization OSINT risk assessments
Domain and IP address research
OSINT investigations
OSINT trainings

We highly encourage potential clients to contact us with their requirements so that we can tailor solutions that fit their unique needs.

In The News

Take a look at our people in the news:

"The Deep Clean: How to Search and Destroy Your Old Accounts", Consumer Reports Magazine, Page 27, October 2019
"As FaceApp Goes Viral, So Do Concerns About Privacy, Russia Ties", The Wall Street Journal web site, https://www.wsj.com/articles/as-faceapp-goes-viral-so-do-concerns-about-privacy-russia-ties-11563485572, July 2019
"Intelligence for the OSINT Curious", Recorded Future Podcast, https://www.recordedfuture.com/podcast-episode-115/, July 2019
"Privacy Fix: How to Find Old Online Accounts", Consumer Reports Magazine, https://www.consumerreports.org/digital-security/how-to-find-old-online-accounts/, April 2019
Micah Hoffman presenting at the Layer8 Social Engineering and Open Source Intelligence (OSINT) conference in June 2019. Talk is titled "Getting the Good Stuff: Understanding the Web to Achieve Your OSINT Goals"

About Us

Simply put, we understand cyber security and OSINT. Those fields are our passions and we use our expert skills to help bring our customers answers.

We are researchers, teachers, and practitioners.

Micah "WebBreacher" Hoffman, principal investigator and owner of Spotlight Infosec LLC, has been in the cyber security and OSINT fields for over 15 years. Since 2014, Micah has taught courses for the SANS Institute and, in 2018, he launched SANS's first OSINT course, SEC487 - Open Source Intelligence (OSINT) Gathering & Analysis. An avid OSINT researcher and teacher, Micah maintains a personal web site at WebBreacher.com that has links to blog posts and videos of his webcasts and conference talks. He is a heavy contributor to the cyber and OSINT communities and is one of the founding members of the The OSINT Curious Project (https://osintcurio.us).