Sitemap
Open in app

Sign in

Medium Logo
Write

Sign in

Ethereum (ETH) OSINT investigations tools

Igor S. Bederov
5 min readAug 19, 2022

Ethereum (ETH) is the second most popular cryptocurrency in the world, as well as a platform for creating decentralized online services based on a blockchain based on smart contracts (smart contracts). The concept of the second cryptocurrency was proposed by its creator Vitalik Buterin at the end of 2013, and the network was launched on July 30, 2015. In this article, we will look at simple Ethereum research methods and techniques that an OSINT specialist uses in his work.

We are aware of the effectiveness of such cryptocurrency research tools as Chainalysis, CipherTrace, Elliptic, etc. However, in our articles, we always try to place maximum emphasis on the use of free data sources available to everyone.

Let’s start the story by listing the popular Ethereum blockchain observers.

The main explorer of the Ethereum blockchain is the Etherscan service [https://etherscan.io]

Be sure to take a couple of minutes to register on the platform, as this will open up advanced opportunities for you to receive data on transactions and Ethereum crypto wallets. By the way, back in 2020, Etherscan launched an AI system for blacklisting tokens and wallets previously associated with illegal activities.

As alternative browsers, we can recommend: Blockchair [https://blockchair.com/ru] and Blockchair Chrome Extension [https://chrome.google.com/webstore/detail/blockchair/fhhkkooikehnkaodebbfnkinedlllcfk]

Tokenview [https://tokenview.com]

All of the above browsers suffer from the same disease — the lack of a built-in visualization system for Ethereum transactions between cryptocurrency wallets. As a result, you have to work with tabular information.

You can correct this annoying misunderstanding using the following services:
Ethtective [https://www.ethtective.com]

GraphSense, but here you need to specifically dance with a tambourine. However, if you can reach out to the developers, then there is an opportunity to get demo access to their cloud using the SaaS model [https://graphsense.info, https://github.com/graphsense]

And of course, Maltego CE with the free Tatum Blockchain Explorer module connected, which allows you to explore the transactions of cryptocurrencies such as Bitcoin, Ethereum, Litecoin, Bitcoin Cash and Dogecoin [https://www.maltego.com]

Another interesting tool for crypto research is Breadcrumbs.app [http://breadcrumbs.app]. The tool, unfortunately, is shareware, but even the free version is not inferior in functionality to the previously discussed Ethtective.

Breadcrumbs.app will show whether the address belongs to a specific exchange, service or scam project. Shows the AML characteristics of all incoming and outgoing transactions. Breadcrumbs.app Chrome extension [https://chrome.google.com/webstore/detail/breadcrumbs-blockchain-in/dlnalaneihafdkdcekejdekiclgdghka]

SpiderFoot tool, designed for reconnaissance of web resources, will provide a small opportunity for research with a crypto wallet. [https://www.spiderfoot.net/]

We turn to the identification of Ethereum crypto wallets. The official sources of data on the ownership of a particular wallet are the Etherscan browser, as well as the Ethtective visualizer based on its data.

In addition to official sources, you can use Google Dorks to collect data on ownership of Ethereum wallets.

For example, Dork [0xB3764761E297D6f121e79C32A65829Cd1dDb4D32 -block] allows you to clean up search results by removing unnecessary public blockchains from it.

Dork [site:etherscan.io 0xB3764761E297D6f121e79C32A65829Cd1dDb4D32] allows you to search for information about a crypto wallet on a selected website.

Dork [site:https://docs.google.com/spreadsheets Bounty intext:”@gmail.com”] allows you to find ready-made databases of identified Ethereum crypto wallets used in various BugBounty programs.

Services for scoring Ethereum crypto wallets.

Vivigle [https://vivigle.com/]. A blockchain explorer that allows you to identify and label related entities.

Blacklists of Ethereum crypto wallets that have been used in fraudulent transactions or distribution of malicious software.

In addition, there are various replenished blacklists of Ethereum wallets associated with fraudulent activities or cybercrime. As an example, here is a list located on the Cryptoblacklist website [https://www.cryptoblacklist.io/en/ethereum-blacklist]. You can download data from it for use in your own products.

Unfortunately, there is not much information about OSINT methods and tools for the Ethereum cryptocurrency. In this article, we have tried to collect for you everything that is freely available. If you know any additional interesting services, applications or OSINT methods over the air, then share it in the comments. So it will be possible to collect the most complete OSINT guide for Ethereum.

… join my Medium Blog https://medium.com/@ibederov_en, Facebook https://www.facebook.com/ibederov.en/ or Telegram https://t.me/ibederov_en!

Eth
Ethereum
Cryptocurrency
Osint
Crypto

--

--

Igor S. Bederov
Igor S. Bederov

Written by Igor S. Bederov

2.8K followers
7 following

Sherlock Holmes of the digital age… Join my Telegram https://t.me/ibederov_en!

Responses (1)

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech