OSINT with Practical: Real Life Examples

•

1 like•698 views

Index Top Cyber Crimes What is OSINT Resource For OSINT Goal - OSINT Information Gathering Analysis Career as a Digital Forensics Investigator Case Study - Malaysian Airlines Flight MH17 OSINT Process Confidential Data of GOV Preventive Measures www.fomada.com Presented By Syed Amoz: CEO Fomada

Technology

Defending
Cyber Crime
with OSINT
www.fomada.com

Syed Amoz
Co-founder & CEO of Fomada a cybersecurity company
Author of Surviving the hacking world & Become the Cyber Girl
Helped many Educational Organizations & secured them
Worked as a freelance penetration tester for 4 years
Visit www.fomada.com

Index
Top Cyber Crimes
What is OSINT
Resource For OSINT
Goal - OSINT
Information Gathering
Analysis
Career as a Digital Forensics Investigator
Case Study - Malaysian Airlines Flight MH17
OSINT Process
Confidential Data of GOV
Preventive Measures

Top Cyber
Crimes
Fake ID ( Impersonation )
Picture Morphing
Cyber Extortion
Cyber Defamation
Honey Trap Ransomware

Media- print newspapers, magazines, radio, and television
Internet - discussion groups, YouTube, social media websites
(i.e. – Facebook, Twitter, Instagram, etc.)
Public Government Data - public government reports,
telephone directories, press conferences,
Professional Publications - information acquired from journals
,
Information that can be accessed
from publicly available sources
What is OSINT ?
Open Source intelligence (OSINT)
OSINT Sources ?

Goal OSINT
Cyber Threat Intelligence
Cyber Warfare
Cyber Crime
Tracing Live events
Cyber Terrorism
1.
2.
3.
4.
5.

1
2
3
4
5
Identifying the Source
Harvesting
Data Processing
Analysis
Reporting
OSINT Process
Source : OWASP

Resources for OSINT
https://osintframework.com https://start.me/p/ZME8nR/osint

July 2014, Malaysian Airlines Flight MH17,
Crashed At Ukrainian-Russian border
Separatist's claimed to have shot down a
Ukrainian transport aircraft
The country’s president called the
incident an act of terrorism.
Case Study - Malaysian Airlines Flight MH17
Bellingcat used OSINT to expose Russian claims and
counterclaims as fabrications.
Purchased satellite photos from the
same area and time and
demonstrated that the MoD had used
older photos (May and June 2014)

Information Gathering
Finding target's Social Media

Information Gathering
Detecting Fake Image or person

Information Gathering
IP Lookup Spam Email

Information Gathering
Doing Image Forensics

Information Gathering
Doing Image Forensics
Error Level Analysis (ELA)

Information Gathering
Gathering info with public CCTV

Information Gathering
Dealing with Ransomware

Information Gathering
OSINT Confidential Data inurl:confidential gov.pk

Career as a Digital Forensics Investigator
Analyzing computer systems and networks
Gathering evidence
Reconstructing cyberattacks
Gathering computer and network information
collecting intelligence from the surface web, deep web & darknet
Analyzing and synthesizing actionable threat intelligence via open source tools
Conducts analysis of email related internal fraud/misconduct

Fun Hacks | Marceline Anderson
Certifcations
CHFI: Computer Hacking Forensic Investigator V9 - EC COUNCIL
Global Information Assurance Certification Forensic Analyst (GCFA) - GICA
CFCE: Certified Forensic Computer Examiner - IACIS

Thank you
Instagram - @amoz.official
Twitter - @amoz0x
Youtube - Syed Amoz
Email - amozsyed@gmail.com
www.fomada.com

What's hot

Most investigators turn to Google and common social media platforms such as Facebook and Twitter to conduct research for their investigations. However, much of the Internet is inaccessible through simple searches, and criminals are increasingly turning to the dark web to conduct illicit business. The dark web is anonymous and requires a special browser to access and some knowledge of how to navigate it safely. However, used properly, it can be a valuable source of information for investigators. It’s worthwhile for every investigator to develop the skills and knowledge to mine this treasure trove of dark data. Join Chad Los Schumacher, investigator and researcher at iThreat Cyber Group, as he leads participants on an exploration of investigations in the dark web. Webinar attendees will learn: What the dark web is and how it fits into the rest of the worldwide web What can be found on the dark web How to get to the dark web using Tor and other browsers How to locate common hubs and resources on the dark web and explore what they have to offer How to bring leads from the dark web to the surface in an investigation

Investigating Using the Dark Web

Case IQ

OSINT - Open Source Intelligence

c0c0n - International Cyber Security and Policing Conference

osint - open source Intelligence

Osama Ellahi

Social Engineering | #ARMSec2015

Hovhannes Aghajanyan

Red team Engagement

Indranil Banerjee

Osint presentation nov 2019

Priyanka Aash

OSINT for Attack and Defense

Andrew McNicol

Getting started with using the Dark Web for OSINT investigations

Olakanmi Oluwole

Putting MITRE ATT&CK into Action with What You Have, Where You Are

Katie Nickels

Presented at the DEFCON27 Red Team Offensive Village on 8/10/19. From the dawn of technology, adversaries have been present. They have ranged from criminal actors and curious children to - more modernly - nation states and organized crime. As an industry, we started to see value in emulating bad actors and thus the penetration test was born. As time passes, these engagements become less about assessing the true security of the target organization and more about emulating other penetration testers. Furthermore, these tests have evolved into a compliance staple that results in little improvement and increasingly worse emulation of bad actors. In this presentation, we will provide a framework complementary to the Penetration Testing Execution Standard (PTES). This complementary work, the Red Team Framework (RTF), focuses on the objectives and scoping of adversarial emulation with increased focus on the perspective of the business, their threat models, and business models. The RTF borrows part of the PTES, adding emphasis on detection capabilities as well as purple team engagements. We believe this approach will better assist organizations and their defensive assets in understanding threats and building relevant detections.

Red Team Framework

👀 Joe Gray

How MITRE ATT&CK helps security operations

Sergey Soldatov

With 1.2 billion monthly active users on Facebook alone, it’s not surprising that social media networks can be a rich source of information for investigators. And because Americans spend more time on social media than any other major Internet activity, including email, social media information and evidence is plentiful. You just need to know how to get it. Finding, preserving and collecting social media evidence often requires some forensic skills, as well as an understanding of the laws that govern its collection and use. It’s important for investigators to be aware of both the possibilities and limitations of social media forensics.

Social Media Forensics for Investigators

Case IQ

OSINT

Apurv Singh Gautam

EC-Council, a globally recognized cybersecurity credentialing body, offers the Certified Ethical Hacker (CEH) and Certified Penetration Testing Professional (CPENT) certifications to help you acquire the skills you need to be a part of Red and Blue Teams. CEH is the most desired cybersecurity training program, upping your ethical hacking skills to the next level. CPENT takes off from where CEH leaves off, giving you a real-world, hands-on penetration testing experience.

Red Team vs. Blue Team

EC-Council

Social engineering

Abdelhamid Limami

Cyber Kill Chain Deck for General Audience

Tom K

OSINT: Open Source Intelligence gathering

Jeremiah Tillman

Threat Intelligence Workshop

Priyanka Aash

Cyber Threat Hunting Workshop

Digit Oktavianto

Tools for Open Source Intelligence (OSINT)

Sudhanshu Chauhan

What's hot (20)

Investigating Using the Dark Web

OSINT - Open Source Intelligence

osint - open source Intelligence

Social Engineering | #ARMSec2015

Red team Engagement

Osint presentation nov 2019

OSINT for Attack and Defense

Getting started with using the Dark Web for OSINT investigations

Putting MITRE ATT&CK into Action with What You Have, Where You Are

Red Team Framework

How MITRE ATT&CK helps security operations

Social Media Forensics for Investigators

OSINT

Red Team vs. Blue Team

Social engineering

Cyber Kill Chain Deck for General Audience

OSINT: Open Source Intelligence gathering

Threat Intelligence Workshop

Cyber Threat Hunting Workshop

Tools for Open Source Intelligence (OSINT)

Similar to OSINT with Practical: Real Life Examples

Reply to post 1 & 2 with 250 words each.Post 11. What va

felipaser7p

In July 2016, the ATM heist of Taiwan First bank is based on well-known Carberp malware family. The threat of cybercrime is becoming increasingly complex and diverse on putting citizen’s data or money in danger. Cybercrime threats are often originating from trusted, malicious, or negligent insiders, who have excessive access privileges to sensitive data. The analysis of ATM heist threats presents many opportunities for improving the quality and value of digital evidence. This talk will introduce some OSINT methods that can help investigators to perform a cybercrime investigation process in a forensically sound and timely fashion manner. This talk further points out cybercrime investigation, digital forensics, and ICT governance for fighting against cybercrime issues. It requires the sincere examination of all available data volumes at a crime scene or in a lab to present digital evidence in a court of law.

Dr. Da-Yu Kao - The Investigation, Forensics, and Governance of ATM Heist Thr...

REVULN

Social Networking Threats

ejhilbert

Cyber crime & security

SohailAkbar14

Presentation

Lauren Austin

Cybercrime And Cyber forensics

sunanditaAnand

SURENDER SINGH Senior Prosecutor NIA

Surender Singh

Cyber Crime and Security ppt by Neeraj Ahirwar

Neeraj Ahirwar

02 fundamental aspects of security

Gemy Chan

Should the ″Dark Web″ be monitored, shut down completely, or left alone?

Kimberly Williams

Cyber Crime.ppt

TanviModi14

Frontiers of Computational Journalism week 11 - Privacy and Security

Jonathan Stray

Ethical Hacking

Pushkar Pashupat

OpenSourceIntelligence-OSINT.pptx

anonymousanonymous428352

Cybercrimes

Fit Tri

Open Web Data Feeds for Cybersecurity & Homeland Security Intelligence

Ohad Flinker

cyber crime and security

Ajay Singh

Electronic Communication Privacy Act 1986

Chelsea Porter

Cyber laws

dhawal mehta

Spyware

Farheen Naaz

Similar to OSINT with Practical: Real Life Examples (20)

Reply to post 1 & 2 with 250 words each.Post 11. What va

Dr. Da-Yu Kao - The Investigation, Forensics, and Governance of ATM Heist Thr...

Social Networking Threats

Cyber crime & security

Presentation

Cybercrime And Cyber forensics

SURENDER SINGH Senior Prosecutor NIA

Cyber Crime and Security ppt by Neeraj Ahirwar

02 fundamental aspects of security

Should the ″Dark Web″ be monitored, shut down completely, or left alone?

Cyber Crime.ppt

Frontiers of Computational Journalism week 11 - Privacy and Security

Ethical Hacking

OpenSourceIntelligence-OSINT.pptx

Cybercrimes

Open Web Data Feeds for Cybersecurity & Homeland Security Intelligence

cyber crime and security

Electronic Communication Privacy Act 1986

Cyber laws

Spyware

Recently uploaded

[BuildWithAI] Introduction to Gemini.pdf

Sandro Moreira

Design and Development of a Provenance Capture Platform for Data Science

Paolo Missier

Dubai, often portrayed as a shimmering oasis in the desert, faces its own set of challenges, including the occasional threat of flooding. Despite its reputation for opulence and modernity, the emirate is not immune to the forces of nature. In recent years, Dubai has experienced sporadic but significant floods, testing the resilience of its infrastructure and communities. Among the critical lifelines in this bustling metropolis is the Dubai International Airport, a bustling hub that connects the city to the world. This article explores the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...

Orbitshub

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

Dubai, known for its towering skyscrapers, luxurious lifestyle, and relentless pursuit of innovation, often finds itself in the global spotlight. However, amidst the glitz and glamour, the emirate faces its own set of challenges, including the occasional threat of flooding. In recent years, Dubai has experienced sporadic but significant floods, disrupting normalcy and posing unique challenges to its infrastructure. Among the critical nodes in this bustling metropolis is the Dubai International Airport, a vital hub connecting the world. This article delves into the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Orbitshub

Decarbonising Commercial Real Estate: The Role of Operational Performance

IES VE

Key topics covered: - Understanding the basics of IAM and its significance in the modern enterprise. IAM in a platformless environment - Tackling real-world issues like prioritizing frictionless yet secure user access, securing high-value APIs, integrating to business, compliance, and adapting to cloud native environments with scalable solutions - Practical demonstrations of how WSO2 products can be instrumental in deploying efficient IAM solutions - Preparing for upcoming trends and innovations in identity management

Navigating Identity and Access Management in the Modern Enterprise

WSO2

Retrieval augmented generation (RAG) is the most popular style of large language model application to emerge from 2023. The most basic style of RAG works by vectorizing your data and injecting it into a vector database like Milvus for retrieval to augment the text output generated by an LLM. This is just the beginning. One of the ways that we can extend RAG, and extend AI, is through multilingual use cases. Typical RAG is done in English using embedding models that are trained in English. In this talk, we’ll explore how RAG could work in languages other than English. We’ll explore French, Chinese, and Polish.

Introduction to Multilingual Retrieval Augmented Generation (RAG)

Zilliz

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Zilliz

Architecting Cloud Native Applications

WSO2

In this session, we will discuss the journey of API governance from its initial, ungoverned state to the development of sophisticated models that tackle contemporary challenges. We'll explore how APIs have become essential in the intersection of business and technology, adapting to advancements and evolving needs. We'll focus on how organizations have moved from launching to monetizing APIs, using models like pay-per-use and subscriptions, and finding the right balance between technical implementation and business strategy. We'll also highlight the impact of governance on monetization strategies, especially how data security, compliance, and service quality influence pricing. Real-world examples will demonstrate the effective integration of governance with monetization, including AI's role in dynamic pricing. Looking ahead, we'll share insights into future trends in API governance and monetization, emphasizing the importance of adaptability, continuous learning, and innovation.

API Governance and Monetization - The evolution of API governance

WSO2

At its core, the challenge of managing Human Resources data is an integration challenge: estimates range from 2-3 HR systems in use at a typical SMB, up to a few dozen systems implemented amongst enterprise HR departments, and these systems seldom integrate seamlessly between themselves. Providing a multi-tenant, cloud-native solution to integrate these hundreds of HR-related systems, normalize their disparate data models and then render that consolidated information for stakeholder decision making has been a substantial undertaking, but one significantly eased by leveraging Ballerina. In this session, we’ll cover: The overall software architecture for VHR’s Cloud Data Platform Critical decision points leading to adoption of Ballerina for the CDP Ballerina’s role in multiple evolutionary steps to the current architecture Roadmap for the CDP architecture and plans for Ballerina WSO2’s partnership in bringing continual success for the CD

Less Is More: Utilizing Ballerina to Architect a Cloud Data Platform

WSO2

AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)

Samir Dash

Six Myths about Ontologies: The Basics of Formal Ontology

johnbeverley2021

Introduction to use of FHIR Documents in ABDM

Kumar Satyam

Vector Search -An Introduction in Oracle Database 23ai.pptx

Remote DBA Services

TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....

rightmanforbloodline

Quantum Leap in Next-Generation Computing

WSO2

In today's digital world, trust is key to customer relationships, but keeping it is a huge challenge. Customers are well-informed and empowered, quick to change brands if their trust is broken, even if it costs them more. This puts a lot of pressure on organizations to handle trust and safety issues with great care and transparency. The challenge, however, is real. Fragmented solutions have left privacy, legal, and security teams in a perpetual cycle of catch-up, struggling to update privacy notices, manage customer data rights, and answer lengthy security questionnaires—all while trying to prove ROI to the business. It's a thankless job, filled with repetition, tedious tasks, and constant interdepartmental coordination. Combine this with fast regulatory changes and the quick evolution of AI, and it becomes overwhelming. Join this webinar to learn more about TrustArc's new innovative solution Trust Center, the only unified, no-code online hub for trust and safety information built for privacy, security, compliance, and legal teams. Trust Center streamlines your path to compliance, shortens the pre-sales cycle, and reduces both legal and regulatory risks, saving time, effort, and cost. This webinar will review: - Why companies are building unified Trust Centers for a robust privacy program. - How unified Trust Centers streamline sales cycles, ensure regulatory compliance, and reduce operational bottlenecks. - How compliance, legal, security, GRC, and privacy teams benefit from a unified Trust Center in terms of needs, pains, and outcomes. - How TrustArc Trust Center saves time and work while reducing legal, reputational, and compliance risk by effectively managing policies, notices, terms, and disclosures, and providing real-time updates on subprocessors.

TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...

TrustArc

Key topics covered: - Real-world examples of Choreo's comprehensive coverage from application design and deployment, security, scaling, and monitoring - Running different types of workloads, such as web applications, APIs, microservices, integrations, and tasks at scale, and wire them together to deliver seamless omnichannel digital experiences - How Choreo improves the developer experience by eliminating repetition, silos, and redundancy through enhanced discoverability and self-serviceability

Choreo: Empowering the Future of Enterprise Software Engineering

WSO2

Recently uploaded (20)