At last month’s SANS OSINT Summit I gave a talk the usefulness of SSL certificates for open source intelligence researchers. The talk looks at three recent examples of how information from certificate transparency logs can be used to discover, attribute, and unmask threat actor infrastructure. The video of the talk has now been published and you can […]
Using SSL Certificates To Find Threat Actor Infrastructure Read More »
Some images are easier to geolocate than others. If an image is easy to geolocate it is generally because at least one of the following three conditions apply: Sometimes none of these conditions apply. When this is the case geolocation becomes much harder and a more methodological structure is needed. Here’s a walkthrough of such
Geolocation: At The Retail Park Read More »
A common challenge for OSINT practitioners and penetration testers alike is to fully identify the range of domains owned and managed by a particular organisation. Identifying the main domain that a company owns is usually fairly easy since it can be found in the second half of a company email ([email protected]) or as part of
How To Identify A Company’s Domains With Azure AD Read More »
In last week’s Wednesday Quiz Tilman Wagner posted this photo and asked us several questions about it: 1) Who posted it and where? 2) What was the occasion? 3) Did Tilman participate, and if so, how? So where to start? We need to know the location before we can answer any of Tilman’s questions. There
Quiztime: How To Clean Pictures For Better Search Results Read More »
Being able to prove exactly when data was posted to the internet is a core skill for internet investigators. If you want to be able to prove when a video was first uploaded, when an account was created, or when an editorial change was made to a website, then you need to be able to
How To Find Timestamps For Verification Read More »
