Corporate OSINT Program

Hi guys,

I've got to create a basic (at least currently) OSINT program for my company to identify any public IP addresses, open ports, running services, and any other web addresses/URLs we own but currently don't know about for cyber insurance reasons. I'm not too experienced with OSINT, let alone Corporate OSINT.

My current process is:

* Find all subdomains of domains we know about
* Perform DNS look up of these domains
* Pipe relevant data into Shodan to …

addresses basic corporate current cyber cyber insurance cybersecurity don identify insurance ip addresses open ports osint own ports process program public running services urls web