75+ Best OSINT Training Courses

The biggest change that many investigators have noticed as technology has evolved is how much work can be completed prior to any boots-on-the-ground investigation. In fact, Scout Security Group reports that they’ve reduced their investigators’ required time in the field by 63% by utilizing open sources prior to any field work, sometimes even eliminating the need for field investigation altogether while still meeting investigative goals and expectations.

The OSINT training courses featured in this guide will help you learn valuable OSINT investigative skills and develop your ability to conduct more efficient investigations and produce more defensible intelligence.

Open-source intelligence (OSINT) isn’t defined by the tools you’ve mastered or how many OSINT courses you’ve taken. Tools and training are valuable. But OSINT is only as good as your ability to follow a proven methodology for collecting, verifying, analyzing, and interpreting public data responsibly.

Training can help you gain the analytical mindset and tradecraft needed to develop that process. Tools can enable you to collect and analyze data more efficiently, but a tool itself will not produce intelligence. Only an analyst can do that.

These OSINT training courses were chosen based on public information available from provider websites, course descriptions, course syllabi, and verified descriptions of training content and delivery methods. We focused on programs that detail hands-on OSINT skills and investigative workflows used in real-world cases and practical exercises.

We chose a variety of courses for all skill levels and types of training, including self-paced, live (online), and in-person training opportunities. Price and course information, including prerequisites and delivery methods, are provided as noted by the provider at time of writing.

This is not a list ranking the quality of courses or prospective student outcomes. It’s a curated list of courses selected based on availability and relation to real world investigations and was made with as much description of the training being provided as possible.

We’ll explore each course in more detail below.

1. ShadowDragon® OSINT Training Courses
2. SANS SEC497: Practical Open-Source Intelligence (OSINT)
3. SANS SEC587: Advanced Open-Source Intelligence (OSINT) Gathering and Analysis
4. IACIS OSINT: Open-Source Intelligence
5. NICCS Certified in Open Source Intelligence (C|OSINT)
6. My OSINT Training: All OSINT Course Bundle
7. OSINT Academy: Foundations of OSINT
8. Udemy: Open-Source Intelligence (OSINT)
9. Security Blue Team: Introduction to OSINT
10. Udemy: Certified OSINT Investigator: Online Search & Analysis
11. SANS FOR589: Cybercrime Investigations
12. Udemy: Practical OSINT: The Complete Course for Beginners
13. NobleProg: Open Source Cyber Intelligence – Introduction Training Course
14. NobleProg: Open Source Intelligence (OSINT) Advanced Training Course
15. Hackers Arise: OSINT (Open Source Intelligence)
16. Mosse Cyber Security Institute: MOIS – Certified OSINT Expert
17. eForensics Magazine: Shodan, OSINT & IoT Devices (W49)
18. eForensics Magazine: Open Source Intelligence for Forensics (W41)
19. eForensics Magazine: Natural Language Processing for OSINT and Threat Analysis (W54)
20. Plessas Academy: OSINT Comprehensive
21. Plessas Academy: Current OSINT Trends in Social Media
22. Mandiant Academy (Google Cloud): Intelligence Research I—Scoping
23. Mandiant Academy (Google Cloud): Intelligence Research II—Open Source Intelligence (OSINT)
24. Plessas Academy: OSINT Strategies for Investigating Privacy-Enhancing Apps
25. Basel Institute on Governance: Open-Source Intelligence
26. TCM Security: Introduction to OSINT
27. TCM Security: Practical OSINT Research Professional (PORP)
28. The OSINTion’s OSINT Courses
29. Alison: Fundamentals of Open-Source Intelligence
30. OSINT Starter Pack
31. Coursera: IBM and Google Cybersecurity Essentials
32. Coursera: Cybersecurity for Everyone (University of Maryland)
33. Coursera: Introduction to Cybersecurity Fundamentals
34. Bonus: 45 training courses and certifications for investigative career paths and specializations

“Data grows by the second, more than 5 billion social data points are created a day. Yet too many investigations stall in the same places — getting access, crawling sources, juggling exports and manual pivots,” says Nico Dekens, Senior VP of Engineering and Chief Innovator at ShadowDragon. “That doesn’t produce better intelligence; it produces fatigue. If the goal is faster, defensible decisions, the barrier isn’t a lack of data. It’s the friction between data, method and time.”

That frustration manifests itself early on in most investigations. Information isn’t the problem. But knowing what to do with it can be. Investigators stuck in silos of manual searches or disconnected tools waste more time pursuing false positives than they do developing actionable intelligence.

However, field work is still time-consuming and costly. Sure, it still has its place. But hitting the streets shouldn’t be your first step. With the proper OSINT framework in place, you can identify potential leads, confirm identities, map networks, and learn the shape of a case before you leave your desk. That alone can save weeks of work.

But OSINT isn’t intuitive. When you approach it without a strategy, it devolves into Googling until you get lucky. Even if you do find something, you can’t replicate it. You can’t defend your findings. You can’t scale that process. Training bridges that divide.

“Ethical boundaries are what separate responsible OSINT, the lawful analysis of publicly available information, from surveillance practices that involve covert monitoring, private data, or unclear accountability,” explains Courtney Pereira, who leads Content Marketing at ShadowDragon. “As open source intelligence becomes more widely used across investigations, corporate security, cyber research, and pro-active security work, clarity around these boundaries is no longer optional.”

That’s another reason training matters. Courses should do more than teach data collection. They should emphasize how to work inside legal and ethical parameters and still be effective.

Learn more about each OSINT training course below.

ShadowDragon® OSINT Training Courses

ShadowDragon® offers a variety of OSINT training courses taught by field analysts who understand that investigators need practical, repeatable skills. Training courses are designed around common investigative workflows so that when you learn something in class, you’re equipped to apply it to your investigations.

OSINT 101 introduces the investigator to open source intelligence. Topics include working with publicly available information (PAI), identifying common OSINT sources, and understanding the scope and limitations of OSINT data collection.

Critical Thinking 101 teaches you how to think about what you find. You’ll learn to challenge assumptions and validate sources. What may have been dead ends can become defensible intelligence when you consider all the variables.

Understanding Google for OSINT will teach you how to use Google properly as an investigative tool. Learn how to use advanced operators, filtering techniques, and follow the digital breadcrumbs that help you pivot deeper into your investigation.

Additional training is available for ShadowDragon® specific tools such as SocialNet® and Horizon Monitor®. These courses walk you through the system’s core functionality and investigative workflows. Courses focus on transforming data into analyzed intelligence and building on your foundational knowledge with practical exercises.

Cost: Contact for a quote

Prerequisites: Basic computer knowledge

Delivery methods:

• Virtual

SANS SEC497: Practical Open-Source Intelligence (OSINT)

SEC497: Practical Open-Source Intelligence (OSINT) from the SANS Institute is a hands-on course about how real-world investigations are conducted. This course will teach you practical tradecraft that walks you through core OSINT techniques coupled with real world scenarios that show you how to effectively collect, analyze, and validate information found in public domains.

The SEC497 course prioritizes hands-on experience, offering nearly 30 labs that let students actively investigate scenarios like tracking digital traces and finding concealed data, foregoing heavy theoretical discussion.

Cost: Starting at $8,780 USD

Prerequisites: Basic computer knowledge

Delivery methods:

• Self-paced (36 hours)
• Virtual (live online)
• Instructor-led (in-person, 6 days)

SANS SEC587: Advanced Open-Source Intelligence (OSINT) Gathering and Analysis

For those who know OSINT basics and want to take it to the next level, SANS SEC587 Advanced Open-Source Intelligence (OSINT) Gathering and Analysis teaches students how to scale their investigations.

This course teaches you how to handle huge volumes of public data, ensuring you maintain efficiency and the ability to defend your findings. Discover automation techniques using Python, APIs, and structured data formats like JSON that will allow you to break free from manual workflows and build repeatable, high volume collection and processing pipelines.

Cost: Starting at $8,780 USD

Prerequisites:

• SEC497: Practical Open-Source Intelligence (OSINT) recommended, but not required
• Foundational knowledge and experience with OSINT collection
• Basic understanding of intelligence analysis
• Understanding of how to use a Virtual Machine (VM)

Delivery methods:

• Self-paced (36 hours)
• Virtual (live online)
• Instructor-led (in-person, 6 days)

IACIS OSINT: Open-Source Intelligence

IACIS OSINT: Open-Source Intelligence is a practical beginner-level course that teaches students how investigators use public data. The curriculum gives students an inside look at the OSINT lifecycle of research, collection, exploitation, and analysis.

Throughout the course, students are taught how to turn information into actionable intelligence. This course is ideal for anyone in law enforcement, digital forensics, cyber security, or the private investigation industry because it focuses on technical proficiency coupled with investigative reasoning.

Cost: Starting at $995.00

Prerequisites: None noted

Delivery methods:

• Online
• In-person

NICCS Certified in Open Source Intelligence (C|OSINT)

NICCS Certified in Open Source Intelligence (C|OSINT) is an intelligence analysis training and certification program offered through the McAfee Institute. It’s featured in the training catalog of the National Initiative for Cybersecurity Careers and Studies.

C|OSINT training is designed to equip analysts with the skills to perform actual intelligence investigations, covering every step of the intelligence cycle from start to finish. The training also covers topics including social media intelligence (SOCMINT), reconnaissance types, privacy laws, and more. Certified in OSINT Training is offered as a self-paced course with a series of hands-on labs and culminates in a final exam.

Cost: Starting at $999

Prerequisites: None noted

Delivery methods:

• Online, self-paced

My OSINT Training: All OSINT Course Bundle

The My OSINT Training (MOT) All OSINT Course Bundle subscription includes unlimited access to all MOT courses and resources for one year. This includes the course library of training material (reference guides, exercises) as well as any new releases or updates to existing courses made while the subscription is active.

Right now, there are over 50 hours of training covering foundational OSINT skills all the way through more technical or niche specialties like social media research, search techniques, and technical analysis workflows. Bundle subscribers also get unlimited access to virtual live training events at no additional cost.

Cost: $999 for 1-year access (either one-time or annual subscription)

Prerequisites: No formal prerequisites listed

Delivery methods:

• Self-paced, on-demand video courses
• Live virtual training events
• Optional in-person or group training for organizations

OSINT Academy: Foundations of OSINT

Foundations of OSINT by OSINT Academy is a cohort-based course designed to develop real-world investigative skills over time. It’s an 8-week online course that teaches students how to investigate using the CRAWL™ (Communicate, Research, Analyze, Write, Listen) framework through the entire intelligence lifecycle.

Students learn foundational OSINT capabilities including finding and preserving online evidence, working with social media and public records data, analyzing images and metadata, and writing clear and defensible reports.

Cost: $2,100

Prerequisites: No formal prerequisites listed

Delivery methods:

• Virtual, asynchronous (self-paced) online course

Udemy: Open-Source Intelligence (OSINT)

The Udemy OSINT Course is designed for beginners, offering a self-paced introduction to the way that investigators and hackers ethically leverage publicly available information to find answers. Bonus sections cover setting up your virtual lab environment, protecting your own digital footprint, and using OSINT methods as an attacker.

This training is a low-cost introduction to OSINT without the certification or focus on official investigation procedures.

Cost:

• $44.99 for individual course
• Subscriptions starting at $14/month

Prerequisites: No formal prerequisites listed

Delivery methods:

• Self-paced, on-demand video course

Security Blue Team: Introduction to OSINT

Security Blue Team’s Introduction to OSINT course is a beginner-friendly, hands-on introduction to what open source intelligence looks like within cybersecurity and investigations. It covers fundamentals such as the intelligence lifecycle, OSINT basics and methodologies, and most common tools that help investigators/searchers collect and analyze open source information.

This course will take you about 5 hours to complete and is part of Security Blue Team’s Introduction to Blue/Threat path. It’s designed for beginners to complete before continuing on to deeper blue team or threat intelligence training.

Cost: Free

Prerequisites: No formal prerequisites listed

Delivery methods:

• Self-paced, online eLearning course

Udemy: Certified OSINT Investigator: Online Search & Analysis

The Certified OSINT Investigator: Online Search & Analysis course, offered on Udemy, is a short, skills-based course that teaches learners how to search, structure, and validate information online more effectively.

It focuses on search methodologies and investigative workflows, including Boolean search, Google dorking, X-ray searching, creating a structured search plan, and learning to think like an investigator.

Cost:

• $19.99 for individual course
• Subscriptions starting at $10.50/month

Prerequisites: No formal prerequisites listed

Delivery methods:

• Self-paced, on-demand video course

SANS FOR589: Cybercrime Investigations

SANS FOR589: Cybercrime Investigations provides real-world, hands-on training for understanding and investigating current cybercrime operations. Students will learn how to create cybercrime intelligence to target criminal infrastructure and gain insight into attacker tradecraft.

There are over 20 hands-on labs and real-world cyber crime case studies focused on topics such as underground economy and tracing cryptocurrencies, as well as money laundering operations.

Cost: Starting at $8,260 USD

Prerequisites: One of the following courses is recommended, but not required:

• SEC497: Practical Open-Source Intelligence (OSINT)
• SEC504: Hacker Tools, Techniques, and Incident Handling
• SEC587: Advanced Open-Source Intelligence (OSINT) Gathering and Analysis
• FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics
• FOR528: Ransomware for Incident Responders
• FOR578: Cyber Threat Intelligence

Delivery methods:

• Self-paced (30 hours)
• Virtual (live online)
• Instructor-led (in-person, 5 days)

Udemy: Practical OSINT: The Complete Course for Beginners

Udemy’s Practical OSINT: The Complete Course for Beginners is a hands-on beginner course that teaches students the basic techniques used by investigators to locate and analyze publicly available information.

It covers the entire process from start to finish, beginning with how to setup a secure OSINT lab (e.g., virtual machines, privacy, tools such as Kali Linux) before diving into the practical skills like Google dorking, username/email tracing, social media research, leaked data sets, and uncovering links.

Cost:

• $19.99 for individual course
• Subscriptions starting at $14/month

Prerequisites: No formal prerequisites listed

Delivery methods:

• On-demand video (self-paced)

NobleProg: Open Source Cyber Intelligence – Introduction Training Course

NobleProg’s Open Source Cyber Intelligence – Introduction Training Course is a brief instructor-led course meant to provide students with hands-on experience navigating OSINT workflows. Students will learn to quickly find useful intelligence on the open web through guided exploration.

Students will gain familiarity with what tools are used for tasks like identifying key signals to look out for or how to keep your findings organized.

Cost: Starting at $1,294

Prerequisites: Basic understanding of computers and the internet

Delivery methods:

• Live online (instructor-led)
• Onsite/in-person

NobleProg: Open Source Intelligence (OSINT) Advanced Training Course

NobleProg’s OSINT Professional Training Course will teach you how to operationalize your investigations into repeatable workflows that can be used in production environments.

Students will also explore more focused investigative topics like targeting corporations and individuals, real-time monitoring, financial investigations, and exposure of your own identity while investigating.

Cost: Starting at $3,205

Prerequisites: No formal prerequisites listed

Delivery methods:

• Live online (instructor-led)
• Onsite/in-person

Hackers Arise: OSINT (Open Source Intelligence)

The Hackers Arise Investigator Bundle is sold as a package that includes training, community membership, and a credential. The curriculum is built around realistic use cases and you learn through video lessons and hands-on exercises that aim to take you from gathering raw data to building intelligence from open sources.

It comes bundled with a voucher for the Certified OSINT Investigator (COI) exam, which you can take to receive a formal credential. There’s also access to the Hackers Arise community to learn from fellow learners and OSINT practitioners.

Cost: $399 for one-year access to the Investigator Bundle, $599 for lifetime access with updates

Prerequisites: No formal prerequisites listed

Delivery methods:

• Self-paced, on-demand video training

Mosse Cyber Security Institute: MOIS – Certified OSINT Expert

In MOSSE Cyber Security Institute’s (MCSI) Certified OSINT Expert certification, students learn how to gather information from search engines, social networks, databases, and the deep and dark web.

You’ll also learn how to process that data and put the puzzle together. The hands-on exercises and investigations will have you learning OSINT operations like footprinting and advanced correlation as well as reporting.

Cost: $699

Prerequisites: No formal professional IT experience required

Delivery methods:

• Fully online, self-paced training

eForensics Magazine: Shodan, OSINT & IoT Devices (W49)

In this course, you’ll learn how to use OSINT techniques to discover and investigate Internet-accessible devices using IoT-focused security techniques. Primarily focused on using Shodan for reconnaissance, you’ll learn how to discover exposed devices and how public data can be used to identify vulnerabilities.

The course provides hands-on experience through examples like locating devices based on their location, identifying exposed services, and examining known IoT exploits.

Cost: $39

Prerequisites:

• Basic knowledge of the Internet and computers
• Basic understanding of IoT technology

Delivery methods:

• Self-paced, on-demand online course

eForensics Magazine: Open Source Intelligence for Forensics (W41)

Open Source Intelligence for Forensics (W41) goes deeper into OSINT techniques with a focus on how open-source information assists in forensics. This training combines conventional OSINT approaches with forensic procedures.

You’ll learn how to move past simple searches and start working smarter by using research techniques focused on real world investigative scenarios ranging from everyday research to intelligence gathering in a professional capacity.

Cost: $149

Prerequisites:

• Basic computer knowledge
• Basic understanding of social media

Delivery methods:

• Self-paced, on-demand online course

eForensics Magazine: Natural Language Processing for OSINT and Threat Analysis (W54)

With eForensics Magazine’s W54, you’ll learn to leverage NLP to convert extensive text data into OSINT intelligence, expanding your skillset into machine learning. Using Python, NLTK, spaCy, machine learning libraries, and more, you’ll learn how to preprocess raw data and transform it into something intelligible.

This course is described as a gateway into leveraging AI-driven processes to help you move past manual open source research and begin automating how you find patterns and trends in large datasets.

Cost: $119

Prerequisites:

• Understanding of Python and requests
• No prior experience with NLP required

Delivery methods:

• Self-paced, on-demand online course

Plessas Academy: OSINT Comprehensive

Created and led by Kirby Plessas, Plessas Academy’s OSINT Comprehensive is a multi-day, hands-on online course dedicated to teaching students how to perform online investigations. Live and interactive, this course breaks down techniques for OPSEC and search strategies as well as practical ways to conduct investigations.

Students learn the processes of finding and verifying data across the open web, as well as connecting seemingly unrelated information. The course then explores more advanced topic areas, such as metadata analysis for images and documents and geolocation.

Cost: $995

Prerequisites: No formal prerequisites listed

Delivery methods:

• On-demand, self-paced video training

Plessas Academy: Current OSINT Trends in Social Media

Plessas Academy: Today’s OSINT Trends on Social Media is a short course delivered in webinar format. It explores current changes investigators should be aware of, including recent/new platform capabilities, privacy settings updates, newly popular applications, and how recent changes to platform search can be leveraged to help find information on popular social media platforms.

Cost: $795

Prerequisites: No formal prerequisites listed

Delivery methods:

• On-demand recorded webinar (12+ hours of instruction)
• Unlimited, on-demand access to all course recordings

Mandiant Academy (Google Cloud): Intelligence Research I—Scoping

Intelligence Research I—Scoping provides students with an introduction to one of the most neglected aspects of the intelligence process: knowing what you’re looking for before you begin gathering information.

Students will follow a repeatable, four-step scoping methodology while learning how to organize your research and utilize research management systems to stay on task and prevent information overwhelm. Students will also learn how to identify source relevance and reliability before initiating collection.

Cost: $2,000 for 3-month access

Prerequisites: Cyber Intelligence Foundations (or equivalent knowledge)

Delivery methods:

• Virtual, self-paced on-demand training (estimated 8 hours)

Mandiant Academy (Google Cloud): Intelligence Research II—Open Source Intelligence (OSINT)

Mandiant Academy’s Intelligence Research II—Open Source Intelligence (OSINT) is a continuation of Intelligence Research I. In this course, students learn how to actually collect and develop leads using open source material.

Students also learn how to use advanced search operators and how to maintain operational discipline, such as maintaining OPSEC during research, organizing investigations, documenting findings, and critical thinking to understand how different data points relate to each other.

Cost:

• $2,000 for 3-month access
• $3,000 for virtual, instructor-led course

Prerequisites: Cyber Intelligence Foundations and Cyber Intelligence Research I—Scoping (or equivalent knowledge)

Delivery methods:

• Virtual, self-paced on-demand training (estimated 16 hours)

Plessas Academy: OSINT Strategies for Investigating Privacy-Enhancing Apps

Many apps available today include privacy-enhancing features for their users. These applications range from encrypted messengers to anonymity networks. All have one thing in common: they make performing traditional OSINT methods more difficult.

This course provides step by step instruction on how to pivot when information is limited, correlate multiple accounts of the same user and think critically when investigating these applications.

Cost: $49.99

Prerequisites: No formal prerequisites listed

Delivery methods:

• Webinar with on-demand access for 30 days

Basel Institute on Governance: Open-Source Intelligence

The Basel Institute on Governance’s Open-Source Intelligence course is a brief self-study course, consisting of nine modules. Throughout the modules, participants will learn how to plan and conduct an OSINT investigation from beginning to end, including reporting on your findings, by working through a sample investigation. The course also covers many of the legal and ethical challenges that can be faced when using OSINT during an investigation.

Cost: Free

Prerequisites: No formal prerequisites, although familiarity with online research and data analysis is helpful.

Delivery methods:

• Online, self-paced learning (about 5 hours)

TCM Security: Introduction to OSINT

TCM Security’s Introduction to OSINT training course leads students through each of the foundational steps and tactics of OSINT investigations, including Google dorking, username searching, email tracing, image forensics, building sock puppets, and more, all tied back to the role of OSINT in the broader intelligence lifecycle. This course serves as a precursor to TCM’s Practical OSINT Research Professional (PORP) certification and includes an exam voucher.

Cost: $699

Prerequisites: Basic knowledge of computers and networking. An understanding of CompTIAA+/Net+/Sec+ or equivalent knowledge is recommended.

Delivery methods:

Live, instructor-led online training (one full day, with 6-month access to class recordings), plus:

• On-demand video content (9+ hours, 12-month access)
• Hands-on labs and exercises
• Class recordings (limited-time access)

TCM Security: Practical OSINT Research Professional (PORP)

TCM Security’s Practical OSINT Research Professional (PORP) certification is a skills-based course and exam that seeks to train (and certify) real-world open source intelligence gathering skills.

To earn your certification, you’ll work through a simulated intelligence-gathering engagement, tackle hands-on challenges, and compile your research into an actionable report. Given 72 hours to complete the test, students learn and work through real-life scenarios that you would expect to face as a part of the OSINT discipline.

Cost: $399

Prerequisites:

No formal prerequisites, but the following are recommended:

• Prior Linux experience
• Knowledge of virtualization

Delivery methods:

• Self-paced on-demand training (9+ hours, 12-month access)

The OSINTion’s OSINT Courses

The OSINTion offers short, practical hands-on OSINT training courses, typically between 4 and 8 hours long, focused on particular areas of OSINT such as investigating people or companies, advanced search engine techniques, image analysis (IMINT), or OPSEC for intelligence analysts.

All courses are taught by Joe Gray, a skilled OSINT practitioner and competition winner. Courses range from beginner to advanced, and every topic is covered through live exercises in the classroom with interactive lectures and even CTF style training in virtual courses.

Cost: $100-$370, depending on course

Prerequisites:

• No formal prerequisites listed.
• For advanced courses, completion of foundational courses (or equivalent knowledge) is recommended.

Delivery methods:

• Live in-person instructor-led
• Live online instructor-led
• On-demand, self-paced courses

Alison: Fundamentals of Open-Source Intelligence

The Principles of Open-Source Intelligence (OSINT) course, available through Alison, provides a brief introduction to OSINT and its application in the cybersecurity and investigative industries.

Students learn the role of OSINT in cyber threat detection and online investigations, as well as foundational techniques for discovering hidden or obfuscated information (e.g., reverse image searches, metadata).

Cost: Free, with optional paid certificate available after course completion.

Prerequisites: No formal prerequisites listed.

Delivery methods:

• Online, self-paced course (approximately 1-2 hours)

OSINT Starter Pack

OSINT Starter is a free beginner’s guide to learning how to conduct open-source investigations. The training tab will direct you to hands-on training where you can learn step-by-step through learning paths, including AFP’s free digital investigation courses.

These courses teach you about advanced search methods, social media investigation, image verification, geolocation, and more. Lessons are broken down into beginner, intermediate, and advanced training.

Cost: Free

Prerequisites: No formal prerequisites listed

Delivery methods:

• Self-paced online learning

Coursera: IBM and Google Cybersecurity Essentials

IBM and Google Cybersecurity Essentials, available through Coursera, is an introductory course on foundational cybersecurity topics. It’s broken up into small lessons on topics like common attacks, risk vs. threat, security frameworks, job roles, and more.

This course provides a thorough introduction to cybersecurity as a profession. Since it’s offered by Coursera, it’s considered part of entry-level career paths from partners like IBM and Google. Learners should complete this course before any hands-on labs or specialized paths.

Cost: Free

Prerequisites:

• No formal prerequisites listed.
• Basic knowledge of computers and web browsers recommended.
• Basic understanding of the cyber security field is recommended.

Delivery methods:

• Online, self-paced course (estimated 10-13 hours)

Coursera: Cybersecurity for Everyone (University of Maryland)

Cybersecurity for Everyone by the University of Maryland covers fundamental cybersecurity principles for beginners at no cost through Coursera. Lessons cover topics such as the history of the internet, threat discovery and development, threat actors, how attacks occur, frameworks for cybersecurity incidents, and policy and strategy surrounding cyber risk.

Lessons are grounded in practicality by providing context on how and why these things matter to your business or the public.

Cost: Free

Prerequisites: No formal prerequisites listed

Delivery methods:

• Online, self-paced course (estimated 20-22 hours)

Coursera: Introduction to Cybersecurity Fundamentals

Introduction to Cybersecurity Fundamentals is an introductory cybersecurity course offered on Coursera. The course explores common cyber attacks and the models and best practices that we have in place to protect against them.

This course is broken up into different modules. In addition to an introduction to cybersecurity, students learn about encryption and key management, as well as how organizations can build and manage security programs with policies and incident response.

Cost: Free

Prerequisites: No formal prerequisites listed.

Delivery methods:

• Online, self-paced course (estimated 3 hours)

Corporate intelligence and risk management courses

• Certified Fraud Examiner (CFE) – Helpful for fraud/internal investigations and other forms of employee or owner misconduct against an organization.
• Certified Protection Professional (CPP) – Industry standard certification for corporate security.
• Professional Certified Investigator (PCI) – General training that covers the many methods an investigator can utilize.
• Certified Anti-Money Laundering Specialist (CAMS) – Helpful if you’re an investigator at a financial institution that requires AML programs (e.g., banks, fintechs).
• Certification in Risk Management Assurance (CRMA) – Beneficial if you work closely with internal audit/risk teams.
• ICA Diploma in Managing Sanctions Risk – Qualification for sanctions compliance and risk.
• ICA Diploma in Governance, Risk and Compliance – This qualification is ideal for current or future compliance officers.
• ICA Diploma in Financial Crime Prevention – Corporate level training for investigators who delve into corporate governance, financial crime investigations, regulatory compliance standards, terrorist financing crimes, and data/infosec.
• ICA Certifications (International Compliance Association) – Internationally recognized certifications for internal compliance.

Criminal investigations / law enforcement courses

• IAI Certifications (International Association for Identification) – Certification classes for bloodstain pattern analysis, forensic photography, forensic videography, latent prints, multiple crime scene certifications, firearm/toolmarks certifications, etc.
• GIAC Certified Forensic Examiner (GCFE) – Windows forensic certification. Includes training on data triage, log analysis, web browser forensics.
• Certified Forensic Security Responder (CFSR) – Certifies that you have advanced incident response skills. Coursework includes cyber breach detection, remediation, and root-cause analysis.
• EnCase Certified Examiner (EnCE) – Certifies your ability to operate the Opentext™ EnCase™ Forensic platform.
• EnCase Certified eDiscovery Practitioner (EnCEP) – Certifies your ability to operate the OpenText™ EnCase™ Information Assurance software. Includes training on eDiscovery planning, project management, and best practices.
• Certified Computer Examiner (CCE) – Well known industry standard certification for computer forensics examiners.
• CLEA (Certified Law Enforcement Analyst) – Certifies expertise in multiple analysis techniques and intelligence production.

Financial crime and AML investigations courses

• ICA Certified Financial Crime Investigator – Ideal for individuals who are already working in monitoring or investigations capacities.
• Certified Financial Crimes Specialist (CFCS) – Highlights proficiency in all areas of financial crime.
• Advanced CAMS Financial Crimes Investigations (CAMS-FCI) Certification – Aims to give financial crime investigators the advanced training they need to perform financial crime investigations (from Association of Certified Anti-Money Laundering Specialists).
• CAMS (Certified Anti-Money Laundering Specialist) – One of the most sought-after AML certifications globally.
• Certified Fraud Examiner (CFE) – Another highly respected certification for those in the financial investigation field.
• ICA Diploma in Anti Money Laundering – Offers students comprehensive knowledge on global AML/CFT rules and regulations. Covers how to design and execute a risk-based AML program and how to serve as a strategic AML advisor.
• ICA Certifications (International Compliance Association) – Certifications that are respected worldwide in compliance industries.
• TRM Labs certifications – Offers training and certifications focused around blockchain and cryptocurrencies. Courses range from general topics and fundamentals to investigations and compliance, digital forensics, seizure and cryptocurrencies taxes.
• Chainalysis Digital Asset Programs – Tailored to help investigators, compliance professionals, regulators, and analysts who investigate cryptocurrency transactions and work with blockchain data.

National security and geopolitical intelligence courses

• CDASA (Certified Defense All-Source Analyst) – This certification applies to any defense intelligence workplace.
• Certificate of Intelligence Practice – This is an entry-level certification that covers the basics of OSINT and intelligence analysis.
• Intelligence Analysis and Assessment Techniques – This course will show you how to methodically assess information you are given, find patterns, and draw conclusions that can be acted on.
• Critical Thinking and Structured Analysis – This course dives into the critical thinking skills needed for analytical reasoning and structured analysis.
• ISA’s Professional Development & Training – For comprehensive training, this 3-course package explores topics from intel community basics to OSINT, analytics, and national security policy.
• Structured Analytic Techniques – Learn how to methodically assess information, find patterns, and minimize cognitive biases to make the best defensible decisions possible based on your analysis.
• Structured Analytic Techniques: Basic Diagnostic Techniques – Covers topics such as how to frame your questions, identify assumptions, organize your evidence, and draw sound analytical conclusions.

Investigative journalism and research courses

• IRE’s Watchdog Workshop – Hands-on training covering investigative reporting techniques, data journalism, public records and verification.
• Data Journalism Training from Google News Initiative – Free data journalism training that teaches journalists how to find, analyze, visualize, and use data in their reporting and stories.
• MJ’s Data Journalism Academy – Learn how to work with spreadsheets, how to clean your data and visualize it.
• Data visualisation for journalists – Data visualization for journalists.
• The Centre for Investigative Journalism – Workshops on learning investigative reporting skills including research, data, analysis and storytelling.

Cyber threat intelligence courses

• Certified Forensics Investigator (CFI) – A certification focused on performing forensic investigations on Windows, Linux, and network attacks.
• Computer Hacking Forensic Investigator (CHFI) – Training that provides certification in information security focusing on digital forensics and evidence collection of cybercrimes.
• CompTIA Security+ – Perfect entry-level certification for someone looking for a globally recognized certification.
• CompTIA Cybersecurity Analyst (CySA+) – An advanced certification focused on cybersecurity analysis.
• GIAC Cyber Threat Intelligence (GCTI) – Assures that you have knowledge of cyber threat intelligence including strategic, operational, and tactical knowledge.
• GIAC Certified Intrusion Analyst (GCIA) – Certifies you have knowledge in proactive monitoring of networks/hosts, performing traffic analysis, and intrusion detection/prevention.
• Certified Threat Intelligence Analyst (CTIA) – This cybersecurity certification goes through the cyber threat intelligence lifecycle, including plan, collect, analyze, and disseminate.
• MITRE ATT&CK training certifications – Provides learning courses as well as other resources on how to use their ATT&CK knowledge.

These OSINT training courses will help you build a strong foundation of knowledge. But skills and training aren’t enough to overcome the biggest hurdle most investigators face: how to move from knowing what to do to actually doing it at scale. As your investigations increase in complexity, connecting dots between sources and organizing your findings into actionable, defensible conclusions become more difficult.

ShadowDragon® Horizon® was built to solve these investigative challenges. By combining collection, enrichment, and analysis in a single workspace, you’re not switching between disjointed tools or building repetitive manual workflows. Instead, you can map networks and pivot between sources smoothly as your investigation progresses, transforming the skills you gained from training into scalable, repeatable processes. Get in touch with our team to learn how ShadowDragon® can simplify your OSINT investigations.