SOFL-24. Platform Internals

### Explanation Platform Internals functionality covers the non-public-facing aspects of a platform's design — internal identifiers, niche or experimental features, legacy and unofficial APIs, the platform's own source code repository, and the internal data schema exposed via breaches. None of these are part of the standard user-facing UI, but each of them leaks information that the platform stores or processes "under the hood". For OSINT, internals are valuable for several reasons: - **Internal identifiers** carry metadata. A Discord snowflake encodes a registration timestamp; sequential numeric IDs (VK, Telegram) let an investigator enumerate users created in the same window, find soft-deleted accounts, or correlate registration cohorts. - **Legacy and unofficial clients / APIs** expose endpoints or fields that the modern UI has hidden, deprecated or removed (e.g. older API responses still returning location data after the main app stopped showing it). - **Minor or experimental features** often slip through privacy review and end up exposing data the main UX doesn't — public Twitter Lists revealing co-membership, obscure profile widgets, A/B-tested screens. - **Open-source platform code** carries author emails and commit metadata, and the repository history can reveal design decisions, feature flags, and contributor identity. - **Breach datasets** expose the actual stored schema — password hashes, recovery emails, internal flags, soft-deleted records, undocumented fields — which is usually a superset of what the UI ever surfaces. Investigators who learn a platform's internals can extract signal that ordinary scraping or UI walkthroughs would never surface. The price of admission is higher (reading API specs, decompiling clients, parsing breach dumps), but the payoff is access to data the platform did not intend to expose. ### Examples {{some links to articles, videos, etc}} ### Types technical ### See also - [[SOFL-22. Accounts]] - [[SOFL-9. Search]] ### Typical weaknesses - [[SOWEL-1. Having and Filling Account]] - [[SOWEL-12. Losing Data to Breaches]] - [[SOWEL-19. Leaving Test Artifacts]]