// Comparison

OSINT Techniques vs Practical Social Engineering: Which Should You Read?

Two cybersecurity books on OSINT, compared honestly: who each is for, what each does best, and which to read first.

Intermediate

5/52024

Resources for Uncovering Online Information

Michael Bazzell

Michael Bazzell's relentlessly updated technical manual for finding people, accounts, breach data, geolocation evidence, and online identifiers — the de facto reference of the modern OSINT field.

Intermediate

4/52022

Practical Social Engineering

A Primer for the Ethical Hacker

Joe Gray

Joe Gray's working manual for the social-engineering side of red team and threat intel: OSINT-driven recon, pretexting, phishing infrastructure, and the legal and ethical boundaries that separate professional work from criminal activity.

Read this if

Investigators, journalists, threat-intel analysts, fraud teams, and anyone whose job depends on what they can verify from public sources. The single most utilitarian OSINT book in print; Bazzell rewrites it nearly every year because the field's surface keeps moving.

Red teamers, fraud investigators, and threat-intel analysts who need to operationalize social engineering as a discipline rather than a stunt. Strongest for the OSINT-to-pretext pipeline — Gray shows how recon directly shapes what your call sounds like.

Skip this if

Readers wanting an academic intelligence-cycle textbook or a single tidy OSINT methodology. Bazzell's strength is breadth, currency, and tooling — if you want methodology before tools, read Hassan & Hijazi first. Also written for North America; non-US techniques are sparser.

Readers wanting Mitnick-style war stories. Gray writes like a practitioner, not a memoirist; the book is procedural and careful, not dramatic. Also light on adversarial deepfake / voice-clone tradecraft, which is where the field has moved since 2022.

Key takeaways

Treat the book as a current toolbox, not a finished doctrine — the URLs and tools die, the workflow Bazzell teaches outlives them.
Build a separate VM and disposable identity per investigation; the book's OPSEC posture is non-negotiable for serious work.
Breach-data, username, and email pivots are still the highest-yield queries in 2026; everything else is supporting evidence.

Recon is the engagement: a pretext that doesn't survive contact with the target's reality is a recon failure, not a delivery failure.
Documentation, scoping, and consent are not bureaucratic overhead; they are what separate professional social engineering from social engineering.
OSINT and SE are the same workflow viewed from two sides — what you can find is what you can credibly claim to know.

How they compare

We rate OSINT Techniques higher (5/5 against 4/5 for Practical Social Engineering). For most readers, that means OSINT Techniques is the primary pick and Practical Social Engineering is a useful follow-up.

Both books target intermediate-level readers, so the choice is about topic, not difficulty.

OSINT Techniques and Practical Social Engineering both cover OSINT, so reading them in sequence reinforces the same material from different angles.

Keep reading

OSINT Techniques

→ Alternatives to OSINT Techniques → What to read after OSINT Techniques