CB
Uploaded byChandrapal Badshah
PPTX, PDF415 views

OSINT mindset to protect your organization - Null monthly meet version

The document outlines the offensive OSINT (Open Source Intelligence) mindset for defending organizations, emphasizing the three phases of data aggregation, intelligence derivation, and storage. It discusses key aspects to investigate about an organization, including its products, technical infrastructure, and employee information, to assess potential vulnerabilities and threats. Recommendations for proactive defense include continuous monitoring of online presence, password management, and vulnerability management to mitigate risks.

Embed presentation

Downloaded 22 times
Offensive OSINT mindset to defend your Organization Chandrapal Badshah
About Me Chandrapal Badshah Security Researcher Open Source Enthusiast Twitter : @bnchandrapal Website : badshah.io
Story time ...
Fiction ?
https://hackerone.com/reports/397527
What is Open Source Intelligence ?
What is OSINT ? “An art of collecting publicly available data and deriving useful information from it”
The OSINT Mindset
The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel
The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel
The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel
The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel
Three questions to ask yourself ? What do you know about the organization ? What do you technically know about the organization ? Did you checkout the employees of the organization ?
What do you know about the organization ?
What do you know about the organization ? ● What does it sell - a product / service / something else ? ● How does the company make profit ? ● Board of Directors & Investors ● Acquisitions and Partnerships ● Job openings ● Supply chain / vendors
Sources ● Company website ● Blogs ● LinkedIn ● Newspapers ● Third party review blogs ● Crunchbase
Example : Job openings
Impact : Breaches on Acquisitions might affect you https://www.infosecurity-magazine.com/news/paypal-acquired-company-suffered/
Impact : Supply Chain Attacks
What do you technically know about the organization ?
Domains and subdomains Virustotal
Domains and subdomains Virustotal SecurityTrails
Domains and subdomains Virustotal SecurityTrails Rapid7’s FDNS
Domains and subdomains Virustotal SecurityTrails Rapid7’s FDNS Google Certificate Transparency Logs
Digital Assets Subdomain takeovers Exposed databases Software with default and weak passwords
Impact : Digital Assets
IP addresses & open ports ● Shodan
IP addresses & open ports ● Shodan ● Software running on non standard ports
Did you checkout the employees of the organization ?
Email addresses hunter.io - allows to get email address patterns
Email addresses hunter.io - allows to get email address patterns HaveIBeenPwned
Online coding platforms Online code platforms: ● GitHub ● Gitlab ● Bitbucket Online code compiling platforms: ● Repl.it
Online content sharing ● Pastebin & other pastie sites ● Public GitHub gists / Gitlab snippets ● Google docs / sheets with public shareable link ● Trello boards
Password Reuse
How can we protect organization using OSINT ?
Understand what’s in your control and what’s not Digital assets What the organization posts online Security & Organizational policies
Understand what’s in your control and what’s not Digital assets What the organization posts online Security & Organizational policies Employees’ personal online accounts
How to tackle (un)intentional data leaks ?
Continuous Monitoring Monitor for keywords on about your organization on online platforms ● Google alerts ● Tools like Real Time Scrapper & DataSploit ● Third party monitoring services
Continuous Monitoring Monitor for keywords on about your organization on online platforms ● Google alerts ● Tools like Real Time Scrapper & DataSploit ● Third party monitoring services Monitor if employee’s email is found in a data breach ● HaveIBeenPwned FREE notification service
How to proactively defend your organization ?
Never Reuse Passwords Evangelize the use of password managers
Never Reuse Passwords This breach could have never happened
Vulnerability Management ● Allows you to know your network ○ Network ○ DNS records ○ Open Ports ○ Software / Technology stack used ● Vulnerable software ○ Dependency Check
Vulnerability Management This could have been prevented
Thank You Any Questions ?

More Related Content

PPTX
Let’s hunt the target using OSINT
byChandrapal Badshah
 
PDF
How to get started in InfoSec ?
byChandrapal Badshah
 
PPTX
OSINT for Proactive Defense - RootConf 2019
byRedHunt Labs
 
PPTX
Empowering red and blue teams with osint c0c0n 2017
byreconvillage
 
PPTX
OSINT using Twitter & Python
by37point2
 
PDF
OSINT - Open Source Intelligence "Leading Intelligence and Investigation Tech...
byFalgun Rathod
 
PDF
OSINT Basics for Threat Hunters and Practitioners
byMegan DeBlois
 
PDF
OSINT- Leveraging data into intelligence
byDeep Shankar Yadav
 
Let’s hunt the target using OSINT
byChandrapal Badshah
 
How to get started in InfoSec ?
byChandrapal Badshah
 
OSINT for Proactive Defense - RootConf 2019
byRedHunt Labs
 
Empowering red and blue teams with osint c0c0n 2017
byreconvillage
 
OSINT using Twitter & Python
by37point2
 
OSINT - Open Source Intelligence "Leading Intelligence and Investigation Tech...
byFalgun Rathod
 
OSINT Basics for Threat Hunters and Practitioners
byMegan DeBlois
 
OSINT- Leveraging data into intelligence
byDeep Shankar Yadav
 

What's hot

PDF
Osint ashish mistry
byn|u - The Open Security Community
 
PDF
From OSINT to Phishing presentation
byJesse Ratcliffe, OSCP
 
PDF
OSINT - Open Source Intelligence
byc0c0n - International Cyber Security and Policing Conference
 
PPT
Owasp osint presentation - by adam nurudini
byAdam Nurudini
 
PPT
Open source intelligence
bybalakumaran779
 
PDF
Osint presentation nov 2019
byPriyanka Aash
 
KEY
Enterprise Open Source Intelligence Gathering
byTom Eston
 
PPTX
Getting started with using the Dark Web for OSINT investigations
byOlakanmi Oluwole
 
PDF
Offensive OSINT
byChristian Martorella
 
PPTX
osint - open source Intelligence
byOsama Ellahi
 
PPTX
OSINT Black Magic: Listen who whispers your name in the dark!!!
byNutan Kumar Panda
 
PDF
Practical White Hat Hacker Training - Passive Information Gathering(OSINT)
byPRISMA CSI
 
PDF
OSINT x UCCU Workshop on Open Source Intelligence
byPhilippe Lin
 
PDF
Osint
byKamal Rathaur
 
PPTX
Maltego
bypenetration Tester
 
PPTX
Datasploit - An Open Source Intelligence Tool
byShubham Mittal
 
PDF
What you need to know about OSINT
byJerod Brennen
 
PDF
OSINT Social Media Techniques - Macau social mediat lc
byCyber Threat Intelligence Network
 
PDF
Open source intelligence information gathering (OSINT)
byphexcom1
 
PPTX
Nmapper theHarvester OSINT Tool explanation
byWangolo Joel
 
Osint ashish mistry
byn|u - The Open Security Community
 
From OSINT to Phishing presentation
byJesse Ratcliffe, OSCP
 
OSINT - Open Source Intelligence
byc0c0n - International Cyber Security and Policing Conference
 
Owasp osint presentation - by adam nurudini
byAdam Nurudini
 
Open source intelligence
bybalakumaran779
 
Osint presentation nov 2019
byPriyanka Aash
 
Enterprise Open Source Intelligence Gathering
byTom Eston
 
Getting started with using the Dark Web for OSINT investigations
byOlakanmi Oluwole
 
Offensive OSINT
byChristian Martorella
 
osint - open source Intelligence
byOsama Ellahi
 
OSINT Black Magic: Listen who whispers your name in the dark!!!
byNutan Kumar Panda
 
Practical White Hat Hacker Training - Passive Information Gathering(OSINT)
byPRISMA CSI
 
OSINT x UCCU Workshop on Open Source Intelligence
byPhilippe Lin
 
Osint
byKamal Rathaur
 
Maltego
bypenetration Tester
 
Datasploit - An Open Source Intelligence Tool
byShubham Mittal
 
What you need to know about OSINT
byJerod Brennen
 
OSINT Social Media Techniques - Macau social mediat lc
byCyber Threat Intelligence Network
 
Open source intelligence information gathering (OSINT)
byphexcom1
 
Nmapper theHarvester OSINT Tool explanation
byWangolo Joel
 

Similar to OSINT mindset to protect your organization - Null monthly meet version

PDF
OWASP_OSINT_Presentation.pdf
bynetisBin
 
PPT
Mark Arena - Cyber Threat Intelligence #uisgcon9
byUISGCON
 
PPT
1482734.ppt
byDorcusSitali
 
PPTX
Are you aware of the threat intelligence platform open source?
bysecuraa
 
PDF
The Osint Codebook Cracking Open Source Intelligence Strategies Alexandre Deg...
byjurasbelke22
 
PDF
Tools and Techniques Used in Open Source Intelligence.pdf
byCyberPro Magazine
 
PDF
A handbook of the threat intelligence tools your company needs
bySecuraa
 
PDF
Threat Intelligence & Threat research Sources
byLearningwithRayYT
 
PDF
Threat Intelligence 101 - Steve Lodin - Submitted
bySteve Lodin
 
PDF
OSINT: The Most Comprehensive Guide on Open Source Intelligence
byvishalkoli34
 
PDF
Introduction to the Current Threat Landscape
byMelbourne IT
 
PDF
Robots, Ninjas, Pirates and Building an Effective Vulnerability Management Pr...
bySecurity Weekly
 
PPTX
OSINT - Open Soure Intelligence - Webinar on CyberSecurity
byMohammed Adam
 
PPTX
Advanced Persistent Threat - Evaluating Effective Responses
byNetIQ
 
PDF
Are you aware of the threat intelligence platform open source?
bysecuraa
 
PDF
Opsec for security researchers
byvicenteDiaz_KL
 
PDF
How to Use OSINT and Web Scraping for Data Collection.pdf
byStefan Smiljkovic
 
PDF
[Bucharest] Attack is easy, let's talk defence
byOWASP EEE
 
PPTX
Threat Intelligence (CTI) Blue Teams.pptx
byPhongTrn639136
 
PDF
F5 Hero Asset - Inside the head of a Hacker Final
byShallu Behar-Sheehan FCIM
 
OWASP_OSINT_Presentation.pdf
bynetisBin
 
Mark Arena - Cyber Threat Intelligence #uisgcon9
byUISGCON
 
1482734.ppt
byDorcusSitali
 
Are you aware of the threat intelligence platform open source?
bysecuraa
 
The Osint Codebook Cracking Open Source Intelligence Strategies Alexandre Deg...
byjurasbelke22
 
Tools and Techniques Used in Open Source Intelligence.pdf
byCyberPro Magazine
 
A handbook of the threat intelligence tools your company needs
bySecuraa
 
Threat Intelligence & Threat research Sources
byLearningwithRayYT
 
Threat Intelligence 101 - Steve Lodin - Submitted
bySteve Lodin
 
OSINT: The Most Comprehensive Guide on Open Source Intelligence
byvishalkoli34
 
Introduction to the Current Threat Landscape
byMelbourne IT
 
Robots, Ninjas, Pirates and Building an Effective Vulnerability Management Pr...
bySecurity Weekly
 
OSINT - Open Soure Intelligence - Webinar on CyberSecurity
byMohammed Adam
 
Advanced Persistent Threat - Evaluating Effective Responses
byNetIQ
 
Are you aware of the threat intelligence platform open source?
bysecuraa
 
Opsec for security researchers
byvicenteDiaz_KL
 
How to Use OSINT and Web Scraping for Data Collection.pdf
byStefan Smiljkovic
 
[Bucharest] Attack is easy, let's talk defence
byOWASP EEE
 
Threat Intelligence (CTI) Blue Teams.pptx
byPhongTrn639136
 
F5 Hero Asset - Inside the head of a Hacker Final
byShallu Behar-Sheehan FCIM
 

More from Chandrapal Badshah

PPTX
Dangling DNS records takeover at scale
byChandrapal Badshah
 
PDF
Detecting secrets in code committed to gitlab (in real time)
byChandrapal Badshah
 
PPTX
OSINT Mindset to protect your Organization
byChandrapal Badshah
 
PPTX
Solving OWASP MSTG CrackMe using Frida
byChandrapal Badshah
 
PPTX
OWASP Serverless Top 10
byChandrapal Badshah
 
PPTX
Pentesting Android Apps using Frida (Beginners)
byChandrapal Badshah
 
ODP
pwnd.sh
byChandrapal Badshah
 
ODP
Web Application Firewall
byChandrapal Badshah
 
PPTX
Netcat - A Swiss Army Tool
byChandrapal Badshah
 
Dangling DNS records takeover at scale
byChandrapal Badshah
 
Detecting secrets in code committed to gitlab (in real time)
byChandrapal Badshah
 
OSINT Mindset to protect your Organization
byChandrapal Badshah
 
Solving OWASP MSTG CrackMe using Frida
byChandrapal Badshah
 
OWASP Serverless Top 10
byChandrapal Badshah
 
Pentesting Android Apps using Frida (Beginners)
byChandrapal Badshah
 
pwnd.sh
byChandrapal Badshah
 
Web Application Firewall
byChandrapal Badshah
 
Netcat - A Swiss Army Tool
byChandrapal Badshah
 

Recently uploaded

PDF
What is Voice User Interface (VUI) Definition & Examples.pdf
byDesign Studio UI UX
 
PDF
कम्प्यूटर.pdf for all computer examination
bynm92169694
 
PDF
Top 10 API Automation Testing Tools: Features, Pros & Cons
byhenrycavill30521
 
PDF
Strengthening cybern resilience for a leading indian Financial Services group
bypandeydevika621
 
PDF
Industrial RFID Landscape for 2025 - Readers, Tags, Antennas, Printers, etc
byRich Rogers
 
PPTX
Cesium formate brine - A brief history - prepared by John Downs in May 2011
byJohn Downs
 
PDF
Regenerative Agriculture Finance : Environmental impact
byrose mason
 
PDF
The map to conquer linear algebra for IT engineer
byakipii ogaoga
 
PDF
Achieving Interoperability in Healthcare IT: A Strategic Guide
byHart, Inc.
 
PPTX
Salesforce Spring 26 Release Key .pptx
byMehediHasan939830
 
PDF
250 Prompts - ChatGPT acting as your Assistant
byMihir Nagarkar
 
PDF
Artificial Intelligence and Barbarism - Conceptual Map
byalfadix
 
PPTX
AN Introduction to UNIX File System—An Approach
bysonjuktaweb
 
PDF
Video Infrastructure_ Streaming Architecture and Delivery Systems.pdf
byTenbyte Limited
 
PPTX
Digital transformation success powered by EPM and NexInfo.pptx
byjayasuryanexinfo
 
PPTX
Corporate AI Training to AI Enable a Company Workforce
byStélio Inácio
 
PDF
Techbrains Baku 2025 by GoUP - all speaker session
byHusseinMalikMammadli
 
PDF
Beyond BBB: Practical Alternatives to Posterior Approximation in Bayesian Neu...
byTomasz Kusmierczyk
 
PDF
AI Driven & AI Native Development AI native development
byZainKarim7
 
PPTX
Cybersecurity Basics: Understanding Threats, Protection Methods, and Safe Dig...
byDhruvManiar3
 
What is Voice User Interface (VUI) Definition & Examples.pdf
byDesign Studio UI UX
 
कम्प्यूटर.pdf for all computer examination
bynm92169694
 
Top 10 API Automation Testing Tools: Features, Pros & Cons
byhenrycavill30521
 
Strengthening cybern resilience for a leading indian Financial Services group
bypandeydevika621
 
Industrial RFID Landscape for 2025 - Readers, Tags, Antennas, Printers, etc
byRich Rogers
 
Cesium formate brine - A brief history - prepared by John Downs in May 2011
byJohn Downs
 
Regenerative Agriculture Finance : Environmental impact
byrose mason
 
The map to conquer linear algebra for IT engineer
byakipii ogaoga
 
Achieving Interoperability in Healthcare IT: A Strategic Guide
byHart, Inc.
 
Salesforce Spring 26 Release Key .pptx
byMehediHasan939830
 
250 Prompts - ChatGPT acting as your Assistant
byMihir Nagarkar
 
Artificial Intelligence and Barbarism - Conceptual Map
byalfadix
 
AN Introduction to UNIX File System—An Approach
bysonjuktaweb
 
Video Infrastructure_ Streaming Architecture and Delivery Systems.pdf
byTenbyte Limited
 
Digital transformation success powered by EPM and NexInfo.pptx
byjayasuryanexinfo
 
Corporate AI Training to AI Enable a Company Workforce
byStélio Inácio
 
Techbrains Baku 2025 by GoUP - all speaker session
byHusseinMalikMammadli
 
Beyond BBB: Practical Alternatives to Posterior Approximation in Bayesian Neu...
byTomasz Kusmierczyk
 
AI Driven & AI Native Development AI native development
byZainKarim7
 
Cybersecurity Basics: Understanding Threats, Protection Methods, and Safe Dig...
byDhruvManiar3
 

OSINT mindset to protect your organization - Null monthly meet version

Editor's Notes

  • #4 It was getting dark and our hacker hero was tired of looking at multiple online code repositories. Before he closes his 30 tabbed browser, he stumbled upon an unusual repository. What intrigued him was that the code repo had less code, but lots of releases. After downloading, decompiling and hours of debugging, he found the slack token of the target organization. Using the slack token, he was able to get messages from most of the Slack channels of the target organization.
  • #12 This has happened even to one of the best companies among us
  • #14 Data could be scattered on multiple places or could get it in a single place Is not confined to a bunch of tools which call them the best OSINT tool
  • #21 Let us forget the organizations we work with for some time
  • #22 http://www.mca.gov.in/mcafoportal/checkCompanyName.do
  • #26 https://www.tripwire.com/state-of-security/featured/operation-shadowhammer-hackers-planted-malware-code-video-games/
  • #33 Exactis
  • #34 Shodan - allows to monitor upto 16 IPs
  • #35 Shodan - allows to monitor upto 16 IPs
  • #37 hunter.io - get the email format. Is it {firstname}.{lastname}@company.com or {firstname}@company.com. If you find the pattern, with the help of LinkedIn you could actually get all emails of employees HIBP - was this email leaked in some previous breach ? If yes, can we get the credentials from the breach ?
  • #38 hunter.io - get the email format. Is it {firstname}.{lastname}@company.com or {firstname}@company.com. If you find the pattern, with the help of LinkedIn you could actually get all emails of employees HIBP - was this email leaked in some previous breach ? If yes, can we get the credentials from the breach ?
  • #40 If you find the info, contact the website to take down the info
  • #46 https://github.com/NaveenRudra/RTS https://github.com/DataSploit/datasploit
  • #47 https://github.com/NaveenRudra/RTS https://github.com/DataSploit/datasploit
  • #51 Know yourself Since you can look into your digital assets, make sure it is configured properly Remove DNS records when no longer used Think like an attacker Always think how the public information could be used against your company Proper compartmentation Without proper compartmentation, attackers are able to leverage information from one compromised account to access another related account. Vulnerability Management A good vuln mgmt covers all assets. Vuln mgmt tools will find easily exploitable vulns Employee awareness You cannot control the employees’ personal online accounts All you can do is give provide general awareness of how posting company data online / reusing passwords could be tragic ---- Have different accounts for different env HaveIBeenPwned - free updates --- Devils advocate (policies, Data Loss Prevention)