SlideShare uses cookies to improve functionality and performance, and to provide you with relevant advertising. If you continue browsing the site, you agree to the use of cookies on this website. See our User Agreement and Privacy Policy.
SlideShare uses cookies to improve functionality and performance, and to provide you with relevant advertising. If you continue browsing the site, you agree to the use of cookies on this website. See our Privacy Policy and User Agreement for details.
Successfully reported this slideshow.
Activate your 14 day free trial to unlock unlimited reading.
This is the slides of the online talk given at @NullBhopal. This introduces people to Open Source INTelligence and their uses in daily life and pentesting.
This is the slides of the online talk given at @NullBhopal. This introduces people to Open Source INTelligence and their uses in daily life and pentesting.
2.
Who am I ?
● Chandrapal
● Security Enthusiast
● Founder of Hack with GitHub
● Open Source Developer (@Chan9390)
● GSoC 2017 - Metasploitable 3
3.
Session is targeted to
● Beginners who are interested in Open Source Intelligence.
● For people who want to know what information lies there open on internet.
4.
Agenda
● What is intelligence ?
● What is Open Source Intelligence ?
● Recent trends in OSINT
● OSINT in real life with example (Twitter, Facebook)
● OSINT in pentests (offensive)
● Few Demos
6.
What is Intelligence ?
Wikipedia defines Intelligence as:
One's capacity for logic, understanding, self-awareness, learning, emotional
knowledge, planning, creativity, and problem solving
7.
What is Intelligence ?
Wikipedia defines Intelligence as:
One's capacity for logic, understanding, self-awareness, learning, emotional
knowledge, planning, creativity, and problem solving
In other words:
It is the ability to understand and draw a logical conclusion from the available
information
8.
What is Intelligence ?
Wikipedia defines Intelligence as:
One's capacity for logic, understanding, self-awareness, learning, emotional
knowledge, planning, creativity, and problem solving
In other words:
It is the ability to understand and draw a logical conclusion from the available
information
9.
Types of Intelligence
● Human Intelligence (HUMINT)
● Geospatial Intelligence (GEOINT)
● Signals Intelligence (SIGINT)
● Open-Source Intelligence (OSINT)
10.
Open Source Intelligence
● Art of collecting information which is scattered on publicly available sources
● Open here refers to overt, publicly available sources
● Not completely legal, as it is against the privacy of a person
● Gathering bits to form the big picture
● Depends on sources. Continuously evolving.
● Information sources could be anything not limited to metadata, social media
and blogs
11.
Traditional Methods
● Using search engines Eg: Google, Bing, etc
● News sites Eg: CNN, BBC, etc
● Corporate Websites
● Government Websites
● Blogs
12.
Modern Resources
● Advanced Search Engines
● Social Media sites
● Deepweb/Darkweb
● Automated tools
13.
Recent Trends in OSINT
https://trends.google.com
15.
OSINT in Real life
We use OSINT in everyday life
● Finding download links for Game of Thrones series
● Finding the best looking person
● Knowing about the company before applying for a position
● Knowing your ex’s latest crush :P
16.
Why OSINT has become so important ?
● Humans by nature try to get others attention
● So many post (personal) information on online platforms thinking that only
intended members will look.
● New smartphones have geo-tagging feature enabled by default
● Metadata of those images can give a glimpse of your daily life
24.
The problem I faced
Hack with GitHub - initiative to showcase open source security tools on GitHub
along with their Author’s twitter handle
25.
How OSINT has helped me ?
80% - @xyz123 - @xyz123
6% - @xyz123 - @_xyz123, @xyz123_, @xyz_123 or @_xyz123_
4% - Check their websites for Twitter handles
2% - Impossible to find
What about the other 8% ?
26.
How OSINT has helped me ?
3% - Check the links on Twitter. People generally brag about their tools.
2% - Same profile pictures. Use reverse image (https://tineye.com/)
3% - Git log - Email OSINT
27.
OSINT in Pentest
● Webapp
○ Wappalyzer
○ RetireJS
● Domain-IP lookup
○ Whois lookup
○ Reverse IP Lookup
● Find if emails were previously pwned
○ HaveIBeenPwned lookup
HUMINT - intelligence gathered by means of interpersonal contact GEOINT - analysis of imagery and geospatial information to gather information SIGINT - intelligence-gathering by interception of signals
WhoIS - query and response protocol that queries DB that stores the details of the registerd domains