Successfully reported this slideshow.

OSINT mindset to protect your organization - Null monthly meet version

1

Share

Apr. 27, 2019
1 like 326 views
Upcoming SlideShare
Luncheon - 2016-05-19 IBM Security - Threat Intelligence by Michael Montecillo
Luncheon - 2016-05-19 IBM Security - Threat Intelligence by Michael Montecillo
Loading in …3
×
1 of 52
1 of 52

OSINT mindset to protect your organization - Null monthly meet version

Apr. 27, 2019
1 like 326 views

1

Share

Download to read offline

Technology

This presentation covers different sources of information about organization, some breach case studies and how we could have prevented it using OSINT and other techniques.

This presentation covers different sources of information about organization, some breach case studies and how we could have prevented it using OSINT and other techniques.

Technology

Recommended

More Related Content

Similar to OSINT mindset to protect your organization - Null monthly meet version

HP Software Performance Tour 2014 - Guarding against the Data Breach
HP Enterprise Italia
Level Up Your Security with Threat Intelligence
IBM Security
2010 Sc World Congress Nyc
Bob Maley
Addressing Fraud Risk Management with Facts
Infosys BPM
CrikeyCon VI - The Boring Security Talk
kieranjacobsen
Mining attackers mind
keyuradmin
Key Findings from the 2015 IBM Cyber Security Intelligence Index
IBM Security
MineMeld and the Importance of Centralized Threat Intelligence
JamilaKaya

More from Chandrapal Badshah

Dangling DNS records takeover at scale
Chandrapal Badshah
Detecting secrets in code committed to gitlab (in real time)
Chandrapal Badshah
How to get started in InfoSec ?
Chandrapal Badshah
OSINT Mindset to protect your Organization
Chandrapal Badshah
Solving OWASP MSTG CrackMe using Frida
Chandrapal Badshah
OWASP Serverless Top 10
Chandrapal Badshah
Pentesting Android Apps using Frida (Beginners)
Chandrapal Badshah
Let’s hunt the target using OSINT
Chandrapal Badshah
pwnd.sh
Chandrapal Badshah
Web Application Firewall
Chandrapal Badshah
Netcat - A Swiss Army Tool
Chandrapal Badshah

Featured

What to Upload to SlideShare
SlideShare
Be A Great Product Leader (Amplify, Oct 2019)
Adam Nash
Trillion Dollar Coach Book (Bill Campbell)
Eric Schmidt
APIdays Paris 2019 - Innovation @ scale, APIs as Digital Factories' New Machi...
apidays
A few thoughts on work life-balance
Wim Vanderbauwhede
Is vc still a thing final
Mark Suster
The GaryVee Content Model
Gary Vaynerchuk
Mammalian Brain Chemistry Explains Everything
Loretta Breuning, PhD
Blockchain + AI + Crypto Economics Are We Creating a Code Tsunami?
Dinis Guarda
The AI Rush
Jean-Baptiste Dumont
AI and Machine Learning Demystified by Carol Smith at Midwest UX 2017
Carol Smith
10 facts about jobs in the future
Pew Research Center's Internet & American Life Project
Harry Surden - Artificial Intelligence and Law Overview
Harry Surden
Inside Google's Numbers in 2017
Rand Fishkin
Pinot: Realtime Distributed OLAP datastore
Kishore Gopalakrishna
How to Become a Thought Leader in Your Niche
Leslie Samuel
Visual Design with Data
Seth Familian
Designing Teams for Emerging Challenges
Aaron Irizarry
UX, ethnography and possibilities: for Libraries, Museums and Archives
Ned Potter
Winners and Losers - All the (Russian) President's Men
Ian Bremmer

Related Books

Free with a 14 day trial from Scribd

See all
The Future Is Faster Than You Think: How Converging Technologies Are Transforming Business, Industries, and Our Lives Peter H. Diamandis
(4.5/5)
Free
SAM: One Robot, a Dozen Engineers, and the Race to Revolutionize the Way We Build Jonathan Waldman
(5/5)
Free
From Gutenberg to Google: The History of Our Future Tom Wheeler
(3.5/5)
Free
Talk to Me: How Voice Computing Will Transform the Way We Live, Work, and Think James Vlahos
(4/5)
Free
So You Want to Start a Podcast: Finding Your Voice, Telling Your Story, and Building a Community That Will Listen Kristen Meinzer
(3.5/5)
Free
Bezonomics: How Amazon Is Changing Our Lives and What the World's Best Companies Are Learning from It Brian Dumaine
(4/5)
Free
Autonomy: The Quest to Build the Driverless Car—And How It Will Reshape Our World Lawrence D. Burns
(5/5)
Free
No Filter: The Inside Story of Instagram Sarah Frier
(4.5/5)
Free
Future Presence: How Virtual Reality Is Changing Human Connection, Intimacy, and the Limits of Ordinary Life Peter Rubin
(4/5)
Free
Live Work Work Work Die: A Journey into the Savage Heart of Silicon Valley Corey Pein
(4.5/5)
Free
Life After Google: The Fall of Big Data and the Rise of the Blockchain Economy George Gilder
(4/5)
Free
Everybody Lies: Big Data, New Data, and What the Internet Can Tell Us About Who We Really Are Seth Stephens-Davidowitz
(4.5/5)
Free
Energy Conservation in Buildings: The Achievement of 50% Energy Saving: An Environmental Challenge? Elsevier Books Reference
(4/5)
Free
Longitude: The True Story of a Lone Genius Who Solved the Greatest Scientific Problem of His Time Dava Sobel
(4/5)
Free
Young Men and Fire: Twenty-fifth Anniversary Edition Norman Maclean
(4.5/5)
Free
System Identification: Tutorials Presented at the 5th IFAC Symposium on Identification and System Parameter Estimation, F.R. Germany, September 1979 Elsevier Books Reference
(4/5)
Free

Related Audiobooks

Free with a 14 day trial from Scribd

See all
The Quiet Zone: Unraveling the Mystery of a Town Suspended in Silence Stephen Kurczy
(4.5/5)
Free
An Ugly Truth: Inside Facebook’s Battle for Domination Sheera Frenkel
(4.5/5)
Free
A Brief History of Motion: From the Wheel, to the Car, to What Comes Next Tom Standage
(4/5)
Free
Driven: The Race to Create the Autonomous Car Alex Davies
(4.5/5)
Free
Test Gods: Virgin Galactic and the Making of a Modern Astronaut Nicholas Schmidle
(5/5)
Free
Spooked: The Trump Dossier, Black Cube, and the Rise of Private Spies Barry Meier
(4/5)
Free
Second Nature: Scenes from a World Remade Nathaniel Rich
(5/5)
Free
After Steve: How Apple Became a Trillion-Dollar Company and Lost its Soul Tripp Mickle
(4.5/5)
Free
Dignity in a Digital Age: Making Tech Work for All of Us Ro Khanna
(4/5)
Free
Einstein's Fridge: How the Difference Between Hot and Cold Explains the Universe Paul Sen
(4.5/5)
Free
User Friendly: How the Hidden Rules of Design Are Changing the Way We Live, Work, and Play Cliff Kuang
(4.5/5)
Free
A World Without Work: Technology, Automation, and How We Should Respond Daniel Susskind
(4.5/5)
Free
Uncanny Valley: A Memoir Anna Wiener
(4/5)
Free
Blockchain: The Next Everything Stephen P. Williams
(4/5)
Free
Lean Out: The Truth About Women, Power, and the Workplace Marissa Orr
(4.5/5)
Free
Bitcoin Billionaires: A True Story of Genius, Betrayal, and Redemption Ben Mezrich
(4.5/5)
Free

OSINT mindset to protect your organization - Null monthly meet version

  1. 1. Offensive OSINT mindset to defend your Organization Chandrapal Badshah
  2. 2. About Me Chandrapal Badshah Security Researcher Open Source Enthusiast Twitter : @bnchandrapal Website : badshah.io
  3. 3. Story time ...
  4. 4. Fiction ?
  5. 5. https://hackerone.com/reports/397527
  6. 6. What is Open Source Intelligence ?
  7. 7. What is OSINT ? “An art of collecting publicly available data and deriving useful information from it”
  8. 8. The OSINT Mindset
  9. 9. The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel
  10. 10. The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel
  11. 11. The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel
  12. 12. The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel
  13. 13. Three questions to ask yourself ? What do you know about the organization ? What do you technically know about the organization ? Did you checkout the employees of the organization ?
  14. 14. What do you know about the organization ?
  15. 15. What do you know about the organization ? ● What does it sell - a product / service / something else ? ● How does the company make profit ? ● Board of Directors & Investors ● Acquisitions and Partnerships ● Job openings ● Supply chain / vendors
  16. 16. Sources ● Company website ● Blogs ● LinkedIn ● Newspapers ● Third party review blogs ● Crunchbase
  17. 17. Example : Job openings
  18. 18. Impact : Breaches on Acquisitions might affect you https://www.infosecurity-magazine.com/news/paypal-acquired-company-suffered/
  19. 19. Impact : Supply Chain Attacks
  20. 20. What do you technically know about the organization ?
  21. 21. Domains and subdomains Virustotal
  22. 22. Domains and subdomains Virustotal SecurityTrails
  23. 23. Domains and subdomains Virustotal SecurityTrails Rapid7’s FDNS
  24. 24. Domains and subdomains Virustotal SecurityTrails Rapid7’s FDNS Google Certificate Transparency Logs
  25. 25. Digital Assets Subdomain takeovers Exposed databases Software with default and weak passwords
  26. 26. Impact : Digital Assets
  27. 27. IP addresses & open ports ● Shodan
  28. 28. IP addresses & open ports ● Shodan ● Software running on non standard ports
  29. 29. Did you checkout the employees of the organization ?
  30. 30. Email addresses hunter.io - allows to get email address patterns
  31. 31. Email addresses hunter.io - allows to get email address patterns HaveIBeenPwned
  32. 32. Online coding platforms Online code platforms: ● GitHub ● Gitlab ● Bitbucket Online code compiling platforms: ● Repl.it
  33. 33. Online content sharing ● Pastebin & other pastie sites ● Public GitHub gists / Gitlab snippets ● Google docs / sheets with public shareable link ● Trello boards
  34. 34. Password Reuse
  35. 35. How can we protect organization using OSINT ?
  36. 36. Understand what’s in your control and what’s not Digital assets What the organization posts online Security & Organizational policies
  37. 37. Understand what’s in your control and what’s not Digital assets What the organization posts online Security & Organizational policies Employees’ personal online accounts
  38. 38. How to tackle (un)intentional data leaks ?
  39. 39. Continuous Monitoring Monitor for keywords on about your organization on online platforms ● Google alerts ● Tools like Real Time Scrapper & DataSploit ● Third party monitoring services
  40. 40. Continuous Monitoring Monitor for keywords on about your organization on online platforms ● Google alerts ● Tools like Real Time Scrapper & DataSploit ● Third party monitoring services Monitor if employee’s email is found in a data breach ● HaveIBeenPwned FREE notification service
  41. 41. How to proactively defend your organization ?
  42. 42. Never Reuse Passwords Evangelize the use of password managers
  43. 43. Never Reuse Passwords This breach could have never happened
  44. 44. Vulnerability Management ● Allows you to know your network ○ Network ○ DNS records ○ Open Ports ○ Software / Technology stack used ● Vulnerable software ○ Dependency Check
  45. 45. Vulnerability Management This could have been prevented
  46. 46. Thank You Any Questions ?

Editor's Notes

  • It was getting dark and our hacker hero was tired of looking at multiple online code repositories.

    Before he closes his 30 tabbed browser, he stumbled upon an unusual repository. What intrigued him was that the code repo had less code, but lots of releases.

    After downloading, decompiling and hours of debugging, he found the slack token of the target organization.

    Using the slack token, he was able to get messages from most of the Slack channels of the target organization.
  • This has happened even to one of the best companies among us
  • Data could be scattered on multiple places or could get it in a single place
    Is not confined to a bunch of tools which call them the best OSINT tool
  • Let us forget the organizations we work with for some time
  • http://www.mca.gov.in/mcafoportal/checkCompanyName.do
  • https://www.tripwire.com/state-of-security/featured/operation-shadowhammer-hackers-planted-malware-code-video-games/
  • Exactis
  • Shodan - allows to monitor upto 16 IPs

  • Shodan - allows to monitor upto 16 IPs

  • hunter.io - get the email format. Is it {firstname}.{lastname}@company.com or {firstname}@company.com. If you find the pattern, with the help of LinkedIn you could actually get all emails of employees

    HIBP - was this email leaked in some previous breach ? If yes, can we get the credentials from the breach ?
  • hunter.io - get the email format. Is it {firstname}.{lastname}@company.com or {firstname}@company.com. If you find the pattern, with the help of LinkedIn you could actually get all emails of employees

    HIBP - was this email leaked in some previous breach ? If yes, can we get the credentials from the breach ?
  • If you find the info, contact the website to take down the info
  • https://github.com/NaveenRudra/RTS
    https://github.com/DataSploit/datasploit
  • https://github.com/NaveenRudra/RTS
    https://github.com/DataSploit/datasploit
  • Know yourself
    Since you can look into your digital assets, make sure it is configured properly
    Remove DNS records when no longer used

    Think like an attacker
    Always think how the public information could be used against your company

    Proper compartmentation
    Without proper compartmentation, attackers are able to leverage information from one compromised account to access another related account.

    Vulnerability Management
    A good vuln mgmt covers all assets. Vuln mgmt tools will find easily exploitable vulns

    Employee awareness
    You cannot control the employees’ personal online accounts
    All you can do is give provide general awareness of how posting company data online / reusing passwords could be tragic

    ----

    Have different accounts for different env

    HaveIBeenPwned - free updates

    ---

    Devils advocate (policies, Data Loss Prevention)

    • ×