1. Introduction and context

1.1. The investigative need

Data extraction is becoming increasingly important in investigative journalism. To bridge the gap between unstructured web data and a queryable database, reporters must move beyond a ‘copy and paste’ workflow. This tutorial outlines an OSINT framework for web scraping: from navigating the DOM with BeautifulSoup to managing a chain of custody with SHA-256 hashing. Whether you are a no-code advocate or a Python enthusiast, these are the tools required to audit data at scale.

1.2. Learning outcomes

• Differentiate between static and dynamic web content to select the optimal extraction method.

• Construct advanced scraping queries using Python’s BeautifulSoup and no-code selectors.

• Execute a rigorous data preservation workflow to ensure evidentiary integrity.

• Synthesize large-scale datasets using AI-driven entity extraction and clustering.

1.3. Case study hook

A journalist who suspects a housing authority of deleting records of construction violations deploys a web scraper to capture a daily snapshot of the site. The daily captures prove that 15% of violations linked to a specific developer were removed from the public portal without explanation.

💡 2. Foundational theory and ethical-legal framework

2.1. Key terminology

• DOM (Document Object Model): The hierarchical structure of a webpage that scrapers navigate to find data.

• CSS selectors: Patterns used to select the specific elements (like .price or #document-id) you want to extract.

• Headless browser: A web browser without a graphical user interface, used to scrape sites that require JavaScript to load.

⚠️ 2.2. Ethical and legal boundaries

2.2.1. Consent & privacy
Journalists must adhere to the “stop at the login” rule: If data is behind a paywall, password, or requires bypassing a CAPTCHA, it is no longer considered open source. Scraping private or restricted areas may violate the Computer Fraud and Abuse Act (CFAA) or similar international laws.

2.2.2. Legal considerations
While the 2022 hiQ Labs v. LinkedIn ruling provided some protection for scraping public data, journalists face risks regarding “Terms of Service” violations. Excessive scraping can be interpreted as a Distributed Denial of Service (DDoS) attack.

Disclaimer: This tutorial is for educational purposes. Consult your newsroom’s legal department before initiating large-scale scraping projects involving personal data or proprietary systems.

🛠️ 3. Applied methodology: step-by-step practical implementation

3.1. Required tools & setup

• Environment: A dedicated Virtual Machine (VM) or a cloud-based Python environment like Google Colab.

• Libraries: Requests (fetching), BeautifulSoup4 (parsing), and Pandas (structuring).

• No-code: Web Scraper (browser extension) for quick hierarchical extraction.

👷‍♀️ 3.2. Practical execution (The “How”)

Scenario 1: Auditing exposed internal documents
Many organizations inadvertently leave directories open. We can use Python to index these files.

Scenario 2: Automated monitoring of government tenders
Using a “no-code” browser extension like Web Scraper, follow these steps:

1. Define sitemap: Enter the URL of the public tender portal.

2. Add selector: Set Type to Table. Click the first and second rows of the target data to train the tool.

3. Handle pagination: Use the link selector to click the “next” button automatically.

4. Execution: Run the scraper with a 2000ms delay to avoid being blocked.

💾 3.3. Data preservation and chain of custody

To ensure your findings survive a legal challenge, follow these mandatory steps:

1. Archive the source: Use Archive.today or the Wayback Machine to save the live page.

2. Log the metadata: Record the Date, Time, Source IP, and User-Agent string.

3. Generate a hash: Use the SHA-256 algorithm to create a unique digital fingerprint of your raw CSV.

   • Terminal command: openssl dgst -sha256 scraped_data.csv

🧠 4. Verification and analysis for reporting

4.1. Corroboration strategy

Technical data must be cross-referenced. If a scraper identifies a suspicious contract, verify it by:

• Checking the vendor's WHOIS records.

• Looking for the contract ID in separate offline archives or gazettes.

4.2. Linking data to narrative

🤖 4.3. AI assistance in analysis

LLMs are powerful for processing scraped text, provided the following steps are taken:

• Clustering: Feed the LLM a list of 1,000 project titles to identify the top 5 most frequent themes.

• Entity extraction: Use an LLM to find every mention of a specific politician across thousands of scraped news snippets.

• ⚠️ Warning: Hallucination risk. Always “spot-check” 10% of AI-generated labels against the raw data.

• ⚠️ Privacy warning: Never upload sensitive source data to public LLMs; use local instances for PII.

🚀 5. Practice and resources

5.1. Practice exercise

The challenge: Use a browser extension to scrape the FBI’s Most Wanted list. Extract the Name, Category, and Link for each individual. Ensure your final CSV has no duplicate entries.

5.2. Advanced resources

• ScrapingHub/Zyte: Documentation on handling complex JavaScript sites.

• GHDB (Google Hacking Database): Find “Dorks” to locate scrapable directories.

• GIJN’s Scraping with AI Guide: Expert workflows for using LLMs to build custom scrapers and identify website architectures.

• OCCRP’s Aleph: A global data platform for cross-referencing scraped datasets against millions of leaked corporate and public records.

• The OSINT Framework: An interactive directory for locating specialized scrapers for business registries and social media platforms.

• Apify Actors: A library of pre-configured scrapers designed to bypass anti-bot protections on sites like Google Maps and Amazon.

• Octoparse: A no-code web scraping tool that allows users to extract data from websites into structured formats like Excel or databases

✅ 6. Key takeaways and investigative principles

• Accuracy over speed: Always prioritize rate-limiting to ensure data isn’t corrupted by server timeouts.

• Clean the data: Scraping is 20% extraction and 80% cleaning (removing HTML tags, fixing dates).

• Hash everything: A dataset without a SHA-256 hash is a dataset that can be questioned in court.

• Transparency: Be prepared to publish your scraping code alongside your story for peer review.

• The human element: Use scraping to find the lead, but use traditional journalism to confirm it.

👁️ Coming next week…

Using Natural Language Processing (NLP) for sentiment analysis

Applying simple NLP and text analysis to large bodies of text (e.g., social comments, forum threads) to track emotional tone, emerging narratives, and keywords over time.