Just gave a SANS @MIC talk and wanted to share the links to the sites and tools I discussed. A video of the talk is below: https://www.youtube.com/watch?v=BVFhMqktkeE https://osintcurio.us/http://osintframework.dehttp://www.cnn.com/robots.txthttps://www.cisco.com/robots.txthttps://www.apple.com/robots.txthttps://firstname.lastname@example.org,41.053944,3.75zhttps://whatsmyname.app/https://www.bellingcat.com/news/2020/05/18/military-and-intelligence-personnel-can-be-tracked-with-the-untappd-beer-app/https://untappd.com/NorthernMonkhttps://untappd.osint.ninjahttps://wifi.xfinity.com/https://viewdns.info/https://www.osintcombine.com/data-visualization-toolhttps://haveibeenpwned.com/https://dehashed.com/https://sans.org/sec487https://github.com/webbreacher/untappdscraperInstant Data Scraper Google Chrome Extension
The links from my SANS @MIC talk/webcast from 2020-03-16.
I was fortunate enough to present a talk at the Layer8 OSINT and Social Engineering conference in June 2019. Below are the notes to the demo I executed during that talk so that you can follow along. Talk title: Getting the Good Stuff: Understanding the Web to Achieve Your OSINT Goals Abstract: As OSINTers we... Continue Reading →
Consumer Reports article on finding online accounts that Micah Hoffman helped with. OSINT Privacy Cyber Cybersecurity
I've been working with some of the amazing people in the OSINT world for a while. Most are amazing and so willing to share ideas. So we decided to create a trusted, online resource at https://OSINTCurio.us Definitions OSINT - "a method of using open source tools to collect information from publicly available sources and then... Continue Reading →
A couple weeks ago, I had the pleasure of speaking at the Dutch DEX-XL conference in The Netherlands. I'm trying to lower the barrier to doing talks and workshops by not making presentation "decks of slides" (for PowerPoint, etc.). I'm finding that, as we go through the talk, people have questions and instead of showing... Continue Reading →
Here are the links for my SANS @Night OSINT talk in Washington DC (December 2018): SEC487 OSINT Course https://www.sans.org/sec487 or https://www.sans.org/course/open-source-intelligence-gathering Frameworks https://osintframework.com http://osintframework.de https://start.me/p/OmExgb/terrorism-radicalisation-research-dashboard Social Media sharing https://www.yelp.com/ https://email@example.com,-77.027874,12.12z https://firstname.lastname@example.org,-78.28559749,5.588090556z Social Media Scraping tools UntappdScraper - https://github.com/WebBreacher/untappdScraper Yelp - https://github.com/WebBreacher/foodndrink Recon-NG - Profiler Module - https://webbreacher.com/2014/12/11/recon-ng-profiler-module/ Github Scraper - Zen - https://github.com/s0md3v/Zen Protect Yourself... Continue Reading →
This is a guest post by Steve Hall (https://twitter.com/shall_1). Thanks for writing it Steve! I recently attended SANS Denver (SEC487) because I wanted to round out my knowledge on some of the OSINT I had been doing. The class covered multiple tools to help accomplish the task of documenting your process, one of them being... Continue Reading →