OSINT: Open Source Intelligence gathering

•Télécharger en tant que PPTX, PDF•

1 j'aime•1,224 vues

OSINT: Open Source Intelligence gathering 101 Slides from my talk on OSINT. I listed examples in the slides about tools, legal methods for both online and physical information security reconnaissance.

Technologie

WHAT IS OSINT?
 OSINT stands for Open Source INTelligence
 According to The U.S. Department of Defense (DoD), OSINT is "produced from publicly available
information that is collected, exploited, and disseminated in a timely manner to an appropriate audience
for the purpose of addressing a specific intelligence requirement.
 These methods allow for legal collection and analysis of individuals and organizations.
 OSINT gathering is the widely accepted first step in both security testing and penetration or hacking.

WHERE TO FIND OPEN SOURCE INTELLIGENCE?
 Physical Media: magazine archives, printed
newspapers, radio recordings
 Public Government Data: (applicable to all
levels of government) gov’t reports, FOIA,
directories of contacts
 Internet media: social media, blogs, Youtube
 Commercial sources: software APIs, Open CV
 Google Patent Search
 Unsecured or open directories

BENEFITS OF OSINT
For Individuals
 Verify information prior to blind dates or
online dating sites
 Crime and safety information
 Travel safety
 New or recently enacted ordinances & laws
For Professionals
 Emerging technologies
 Due diligence on potential vendors
 Ensuring culture fit with potential hires
 Competitor markets
 Verified consumer contact information

TOOLS AND FRAMEWORKS TO IMPLEMENT OSINT
Online
 osintframework.com
 Shodan
 Natural language & geek language on search
engines
Operation Systems
 Security focused Linux Operation Systems
 Open source Chromium
 Locally run scripts from sites like github.com

UNCONVENTIONAL METHODS OF OSINT
Public Libraries
 Hold newspaper & magazine archives
 Free Access to commercial contact data sites
like reference USA
 Free access to academic journals and abstracts
Form an LLC or Unaccredited University
 Allowed to collect data within reason
 Free access to certain services for free with a
.edu email address
 Provide analysis services in exchange for
submitted data: see data.com’s old business
model

Contenu connexe

Tendances

OSINT - Open Source Intelligence "Leading Intelligence and Investigation Tech...Falgun Rathod

Jesús Alcalde & Daniel Gonzalez- - OSINT: La verdad está ahí fuera [rooted2018]RootedCON

Bsides Knoxville - OSINTAdam Compton

Open source intelligence information gathering (OSINT)phexcom1

OSINTApurv Singh Gautam

Offensive OSINTChristian Martorella

Threat IntelligenceDeepak Kumar (D3)

Tools for Open Source Intelligence (OSINT)Sudhanshu Chauhan

How to Use Open Source Intelligence (OSINT) in InvestigationsCase IQ

OSINT for Attack and DefenseAndrew McNicol

OSINT: Open Source Intelligence - Rohan BraganzaNSConclave

Open source intelligencebalakumaran779

Getting started with using the Dark Web for OSINT investigationsOlakanmi Oluwole

Threat hunting for BeginnersSKMohamedKasim

Osint primern|u - The Open Security Community

Open Source Intelligence (OSINT)Paulo Colomés

Threat Hunting Procedures and Measurement MatriceVishal Kumar

From OSINT to Phishing presentationJesse Ratcliffe, OSCP

Open source intelligence y la unión de los mundos virtual y físicoZink Security

OSINT with Practical: Real Life ExamplesSyedAmoz

Tendances (20)

OSINT - Open Source Intelligence "Leading Intelligence and Investigation Tech...

Jesús Alcalde & Daniel Gonzalez- - OSINT: La verdad está ahí fuera [rooted2018]

Bsides Knoxville - OSINT

Open source intelligence information gathering (OSINT)

OSINT

Offensive OSINT

Threat Intelligence

Tools for Open Source Intelligence (OSINT)

How to Use Open Source Intelligence (OSINT) in Investigations

OSINT for Attack and Defense

OSINT: Open Source Intelligence - Rohan Braganza

Open source intelligence

Getting started with using the Dark Web for OSINT investigations

Threat hunting for Beginners

Osint primer

Open Source Intelligence (OSINT)

Threat Hunting Procedures and Measurement Matrice

From OSINT to Phishing presentation

Open source intelligence y la unión de los mundos virtual y físico

OSINT with Practical: Real Life Examples

Similaire à OSINT: Open Source Intelligence gathering

1482734.pptDorcusSitali

3i mind-open mind-webPublicLeaker

3i mind-open mind-webDeepDude

OSINT Forum – Week 5For this forum, you are to answer one or mor.docxloganta

Session 03 Business IntelligenceJorge Ramírez

Steven Greschner - About MeNextNet Partners

What makes OSINT Methodologies Vital for Penetration Testing?Zoe Gilbert

Osint - null chennai meetupAkash Thakur

Osint skillsFelixK4

Are you aware of the threat intelligence platform open source?securaa

Consumers' and Citizens' Privacy Carolina Rossini

Reply to post 1 & 2 with 250 words each.Post 11. What vafelipaser7p

File000095Desmond Devendran

Dr. Da-Yu Kao - The Investigation, Forensics, and Governance of ATM Heist Thr...REVULN

ESSENTIALS OF Management Information Systems 12eKENNETH C..docxdebishakespeare

ESSENTIALS OF Management Information Systems 12eKENNETH C.ronnasleightholm

Adjusting Your Security Controls: It’s the New NormalPriyanka Aash

Open Source Insight: Happy Birthday Open Source and Application Security for ...Black Duck by Synopsys

Practical and Actionable Threat Intelligence CollectionSeamus Tuohy

Smarter Security - A Practical Guide to Doing More with LessOmar Khawaja

Similaire à OSINT: Open Source Intelligence gathering (20)

1482734.ppt

3i mind-open mind-web

OSINT Forum – Week 5For this forum, you are to answer one or mor.docx

Session 03 Business Intelligence

Steven Greschner - About Me

What makes OSINT Methodologies Vital for Penetration Testing?

Osint - null chennai meetup

Osint skills

Are you aware of the threat intelligence platform open source?

Consumers' and Citizens' Privacy

Reply to post 1 & 2 with 250 words each.Post 11. What va

File000095

Dr. Da-Yu Kao - The Investigation, Forensics, and Governance of ATM Heist Thr...

ESSENTIALS OF Management Information Systems 12eKENNETH C..docx

ESSENTIALS OF Management Information Systems 12eKENNETH C.

Adjusting Your Security Controls: It’s the New Normal

Open Source Insight: Happy Birthday Open Source and Application Security for ...

Practical and Actionable Threat Intelligence Collection

Smarter Security - A Practical Guide to Doing More with Less

Dernier

Developing An App To Navigate The Roads of BrazilV3cube

CNv6 Instructor Chapter 6 Quality of Servicegiselly40

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays

A Domino Admins Adventures (Engage 2024)Gabriella Davis

08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls

Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700

Histor y of HAM Radio presentation slidevu2urc

Scaling API-first – The story of a global engineering organizationRadu Cotescu

Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC

IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge

The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge

Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer

Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer

GenCyber Cyber Security Day PresentationMichael W. Hawkins

08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls

From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software

Presentation on how to chat with PDF using ChatGPT code interpreternaman860154

EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science

🐬 The future of MySQL is Postgres 🐘RTylerCroy

Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsRoshan Dwivedi

Dernier (20)

Developing An App To Navigate The Roads of Brazil

CNv6 Instructor Chapter 6 Quality of Service

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

A Domino Admins Adventures (Engage 2024)

08448380779 Call Girls In Greater Kailash - I Women Seeking Men

Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...

Histor y of HAM Radio presentation slide

Scaling API-first – The story of a global engineering organization

Breaking the Kubernetes Kill Chain: Host Path Mount

IAC 2024 - IA Fast Track to Search Focused AI Solutions

The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf

Axa Assurance Maroc - Insurer Innovation Award 2024

Tata AIG General Insurance Company - Insurer Innovation Award 2024

GenCyber Cyber Security Day Presentation

08448380779 Call Girls In Diplomatic Enclave Women Seeking Men

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Presentation on how to chat with PDF using ChatGPT code interpreter

EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx

🐬 The future of MySQL is Postgres 🐘

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams

OSINT: Open Source Intelligence gathering

1. OSINT: OPEN SOURCE INTELLIGENCE GATHERING 101

2. WHAT IS OSINT?  OSINT stands for Open Source INTelligence  According to The U.S. Department of Defense (DoD), OSINT is "produced from publicly available information that is collected, exploited, and disseminated in a timely manner to an appropriate audience for the purpose of addressing a specific intelligence requirement.  These methods allow for legal collection and analysis of individuals and organizations.  OSINT gathering is the widely accepted first step in both security testing and penetration or hacking.

3. WHERE TO FIND OPEN SOURCE INTELLIGENCE?  Physical Media: magazine archives, printed newspapers, radio recordings  Public Government Data: (applicable to all levels of government) gov’t reports, FOIA, directories of contacts  Internet media: social media, blogs, Youtube  Commercial sources: software APIs, Open CV  Google Patent Search  Unsecured or open directories

4. BENEFITS OF OSINT For Individuals  Verify information prior to blind dates or online dating sites  Crime and safety information  Travel safety  New or recently enacted ordinances & laws For Professionals  Emerging technologies  Due diligence on potential vendors  Ensuring culture fit with potential hires  Competitor markets  Verified consumer contact information

5. TOOLS AND FRAMEWORKS TO IMPLEMENT OSINT Online  osintframework.com  Shodan  Natural language & geek language on search engines Operation Systems  Security focused Linux Operation Systems  Open source Chromium  Locally run scripts from sites like github.com

6. UNCONVENTIONAL METHODS OF OSINT Public Libraries  Hold newspaper & magazine archives  Free Access to commercial contact data sites like reference USA  Free access to academic journals and abstracts Form an LLC or Unaccredited University  Allowed to collect data within reason  Free access to certain services for free with a .edu email address  Provide analysis services in exchange for submitted data: see data.com’s old business model

OSINT: Open Source Intelligence gathering

Recommandé

Recommandé

Contenu connexe

Tendances

Tendances (20)

Similaire à OSINT: Open Source Intelligence gathering

Similaire à OSINT: Open Source Intelligence gathering (20)

Dernier

Dernier (20)

OSINT: Open Source Intelligence gathering