Disclaimer
OSINT practitioners must be aware of the capabilities of emerging technologies like Advertising Intelligence (ADINT) and consider the OPSEc challenges it presents when employed by an adversary. If employing these techniques exercise caution and ethical responsibility when employing them. ADINT operates in a legal and ethical grey area, often intersecting with privacy laws and data protection regulations. As a guiding principle, any OSINT action should be taken with the honest belief that it serves the public interest—whether for investigative journalism, cybersecurity, or law enforcement purposes. Misuse of ADINT for unauthorised surveillance or personal gain can carry serious legal and ethical consequences.
Introduction
In the world of Open-Source Intelligence (OSINT), Advertising Intelligence (ADINT) has emerged as a powerful yet often overlooked discipline. ADINT leverages advertising data—such as geolocation tracking from ad networks, SDK data from mobile apps, and targeted ad behaviour—to geolocate subjects with high precision. Intelligence agencies, private investigators, and threat actors alike have used ADINT for tracking individuals, profiling behaviours, and monitoring activities.
This guide will break down how ADINT works and explain step-by-step techniques for geolocation.
Understanding ADINT
At its core, ADINT involves collecting and analysing advertising data to extract intelligence. The key components of ADINT geolocation include:
Ad Exchange Data – Ad networks collect extensive metadata from mobile devices, including location, app usage, and browsing habits.
Mobile SDK Exploitation – Many apps embed advertising SDKs that collect GPS coordinates, IP addresses, and device identifiers.
Programmatic Advertising – The automated buying and selling of ad space exposes user data, often in real time.
Tracking Pixels & Beacons – Small tracking scripts embedded in web pages or emails can reveal user locations.
Bidding Data Leakage – Ad bidding platforms unintentionally reveal high-precision location data during the real-time bidding process.
Step-by-Step Guide to Geolocating a Subject Using ADINT
1. Identifying Targeted Ad Networks
Research which ad networks operate in the region of interest.
Investigate mobile apps commonly used by the target demographic.
2. Extracting Location Data from SDKs
Find mobile apps that contain third-party advertising SDKs (e.g., Google Ads, Facebook Audience Network, or Chinese SDKs like Umeng).
Use tools like mitmproxy or Burp Suite to intercept app traffic and extract location data.
3. Leveraging Ad Bidding Platforms
Ad networks often expose partial geolocation data when serving location-based ads.
Using OpenRTB data leaks, it’s possible to track users' movements.
4. Deploying Tracking Pixels
Embed tracking pixels in ads, emails, or web pages.
Once clicked, these pixels report back IP addresses and precise device locations.
5. Analysing Digital Exhaust
Correlate leaked location data with social media check-ins or metadata from images.
Use publicly available ad analytics tools to track users' exposure to certain advertisements.
Commercially Available ADINT Tools
For OSINT professionals interested in exploring ADINT capabilities, several commercially available tools can assist in geolocation and data analysis:
Babel Street's Locate X: A tool that allows users to track devices' location histories using advertising IDs. It collects smartphone location data from various sources and compiles it into an easy-to-use interface.
AdClarity: Provides comprehensive insights into digital advertising campaigns, including tracking over a million brands daily. It aggregates real-time ad occurrences to measure impressions, cost, and interactions.
SEMrush: A marketing intelligence suite offering competitive insights for both paid and organic search. It provides comprehensive keyword tracking, SEO and PPC campaign management tools, and competitive analysis.
SpyFu: An all-in-one competitive intelligence tool for PPC and SEO. It offers insights into competitor paid search campaigns, including keyword targeting, ads, landing pages, and PPC budget spend.
These tools can provide valuable data for geolocation purposes, but it's essential to use them responsibly and within legal boundaries.
Ethical and Legal Considerations
While ADINT provides powerful capabilities, it raises significant ethical and legal issues:
Privacy Violations – Many jurisdictions (such as the EU’s GDPR) have strict regulations against unauthorised tracking.
National Security Risks – The misuse of advertising data by foreign intelligence agencies can pose significant threats.
Exploitation by Malicious Actors – Criminals can use ADINT for stalking, harassment, or financial fraud.
It is crucial for OSINT professionals to operate within legal frameworks and use ADINT responsibly. Those working in journalism, security, and intelligence should consult legal and ethical guidelines before deploying ADINT techniques.
Conclusion
ADINT is a game-changer for geolocation intelligence. Whether investigating missing persons or uncovering political manipulation, ADINT provides a non-intrusive yet highly effective method for locating subjects. However, ethical concerns and legal restrictions should always be considered before leveraging this technique.
As privacy concerns grow, governments and companies may attempt to tighten controls over ad-tracking mechanisms, but as history has shown, where there is data, there is intelligence to be gathered.
Further Reading
"How Ad Tracking Works: A Deep Dive into Ad Tech Surveillance" – MIT Technology Review
"The Role of Open-Source Intelligence in Modern Cybersecurity" – Journal of OSINT Studies
"How Foreign Intelligence Services Exploit Mobile Data" – U.S. Intelligence Community Report
Would you like any refinements or additional sections?