think like a hacker learn how to use osint to defend your
play

Think Like a Hacker: Learn How to Use OSINT to Defend Your - PowerPoint PPT Presentation

Mar 19, 2024 •46 likes •296 views

Think Like a Hacker: Learn How to Use OSINT to Defend Your Organization Rosa L. Smothers SVP of Cyber Operations KnowBe4, Inc. The worlds most popular integrated Security Awareness Training and Simulated Phishing platform Based

  1. Think Like a Hacker: Learn How to Use OSINT to Defend Your Organization Rosa L. Smothers SVP of Cyber Operations

  2. KnowBe4, Inc. • The world’s most popular integrated Security Awareness Training and Simulated Phishing platform • Based in Tampa Bay, Florida, founded in 2010 • CEO & employees are ex-antivirus, IT Security pros • 200% growth year over year • We help tens of thousands of organizations manage the problem of social engineering

  3. Agenda • Secure Set Up to Conduct OSINT Investigations • Language and Culture • How and Where to Conduct Searches • Locations and Images • Apps and Tools 3

  4. Safety First 4

  5. Secure Your Setup Before Any Investigation Hardware/Software or Cloud-Based • Dedicated Machine • Amazon Lightsail, MS Azure portal, Google • Disk Wiper Cloud, etc. • Virtual Machine • Virtual Machine instance(s) • VPN • VPN 5

  6. Personas 6

  7. All About the Bona Fides Create Your Persona(s) • Social Media profile • Image • Robust and Consistent Background • Aged Profile 7

  8. Think Like the Adversary 8

  9. “It’s What I’d Do/Say/Think…” Avoid Mirror Imaging • Social Media Platforms Based Upon Culture • Persona’s Image • Social Media Connections/Interest Groups 9

  10. Watch Your Language 10

  11. The ABCs (or АБВы or اﺑت…) of Investigating Accounts Linguistic and Cultural Context is Key • Social Media Platforms Based Upon Culture • Persona’s Image • Use of Language vputin@yandex.ru ≠ впутин@яндекс.ру balassad@syriantelecom.com.sy ≠ ﺑَﺷَﺎراﻷَﺳَد@syriantelecom.com.sy 11

  12. The ABCs (or АБВы or اﺑت…) of Investigating Accounts Linguistic and Cultural Context is Key • Usernames are often a “tell” Jabwthac,@yandex.ru Hojvhrg;@zain.com Офицерфсб@yandex.ru اﺧﺗراﻗك@zain.com 12

  13. The ABCs (or АБВы or اﺑت…) of Investigating Accounts Usernames • Naming Conventions • Numbers in a username often birthdate of user or their children • Can indicate interest (sports or pop culture reference) 13

  14. Pattern of Life 14

  15. Time After Time Date and Time is an Indicator • Pattern-of-life analysis is a method of observation specifically used for documenting or understanding a subject's habits 15

  16. Locations & Images 16

  17. Location, Location, Location • Aerial Analysis What time is it? What is today? What season is it? What can be expected tomorrow? What type of industry drives this economy? Where are we? 17

  18. A Photo Says a Thousand Words • Photo Analysis Meta data Clone detection Magnification/Zoom to detect miniscule details Principal Component Analysis (PCA) *https://www.cia.gov/kids-page/games/games_aerial_analysis.html 18

  19. Apps & Tools 19

  20. The Right Tool for the Right Job Plenty of Options, Some Only Dependent upon OS of Choice • Multiple Search Engines • Google Hacking DB • Shodan – device discovery • Contextualwebsearch.com • Public Databases • Property Records • Open S3 Buckets • Dark Web Data Breaches • Data Visualization • GitHub (.py) • PaGoDo, Tweepy, 20

  21. The KnowBe4 Security Awareness Program WORKS Baseline Testing Use simulated phishing to baseline assess the Phish-prone™ percentage of your users. Train Your Users The world's largest library of security awareness training content; including interactive modules, videos, games, posters and newsletters. Automated training campaigns with scheduled reminder emails. Phish Your Users Best-in-class, fully automated simulated phishing attacks, hundreds of templates with unlimited usage, and community phishing templates. See the Results Enterprise-strength reporting, showing stats and graphs for both training and phishing, ready for management. Show the great ROI!

  22. Security Awareness Training Program That Works • Drawn from a data set of over six million users • Across nearly 11K organizations • Segmented by industry type and organization size • 241,762 Phishing Security Tests (PSTs)

  23. Resources Ransomware Hostage CEO Fraud Prevention Manual 12+ Ways to Hack Two-Factor Authentication Rescue Manual CEO fraud is responsible for over $3 billion All multi-factor authentication (MFA) mechanisms can be in losses. Don’t be next. The CEO Fraud compromised, and in some cases, it's as simple as Get the most complete Ransomware Prevention Manual provides a thorough sending a traditional phishing email. Want to know how to Manual packed with actionable info overview of how executives are defend against MFA hacks? This whitepaper covers over that you need to have to prevent compromised, how to prevent such an attack a dozen different ways to hack various types of MFA and infections, and what to do when you and what to do if you become a victim. how to defend against those attacks. are hit with ransomware. » Learn More at www.KnowBe4.com/Resources «

  24. Know more about KnowBe4. Contact: Rosa L. Smothers (727) 748-4199 rosas@knowbe4.com

  25. Thank You! Know more about KnowBe4. Contact: Rosa L. Smothers (727) 748-4199 rosas@knowbe4.com

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

OSINT OPEN-SOURCE INTELLIGENCE OSINT Offensive OSINT * 1 Whoami Adam Nurudini CEH, ITIL

OSINT OPEN-SOURCE INTELLIGENCE OSINT Offensive OSINT * 1 Whoami Adam Nurudini CEH, ITIL

OSINT OPEN-SOURCE INTELLIGENCE OSINT Offensive OSINT * 1 Whoami Adam Nurudini CEH, ITIL V3, CCNA, CCNP, CASP, PCI-DSS, BSC-IT Lead Security Researcher @ Netwatch Technologies Project Consultant, Information Security Architects Ltd

454 views • 17 slides
W0RKSH0P @KirilsSolovjovs Why am I doing this? Many people atuending hacker conferences are

W0RKSH0P @KirilsSolovjovs Why am I doing this? Many people atuending hacker conferences are

Network concepts introduction & wireshark W0RKSH0P @KirilsSolovjovs Why am I doing this? Many people atuending hacker conferences are not in fact experts, but come here to learn and have fun Opportunity to learn something new

942 views • 46 slides
Italys Surveillance Toolbox Riccardo Coluccini @ORARiccardo 34C3 27th-30th December

Italys Surveillance Toolbox Riccardo Coluccini @ORARiccardo 34C3 27th-30th December

Italys Surveillance Toolbox Riccardo Coluccini @ORARiccardo 34C3 27th-30th December 2017 OSINT OSINT Google Search VAT numbers OSINT Payments by Ministry of Interior due to transparency law n33/2013 OSINT Google

399 views • 36 slides
Sourcing meets OSINT 3rd of March 2020 // ERA webinar // www.theera.org by Gordon Lokenberg

Sourcing meets OSINT 3rd of March 2020 // ERA webinar // www.theera.org by Gordon Lokenberg

Sourcing meets OSINT 3rd of March 2020 // ERA webinar // www.theera.org by Gordon Lokenberg What is OSINT? Used by Law Enforcement Used by the ARMY Used by Private Investigators Used by Sourcers MAINLY ONLINE, mainly

610 views • 14 slides
How to defend your proposal like professional Dr Dr. Reyas What is proposal presentation

How to defend your proposal like professional Dr Dr. Reyas What is proposal presentation

RD FYP 1 WORKSHOP 3 RD Proposal Presentation How to defend your proposal like professional Dr Dr. Reyas What is proposal presentation or proposal defend To defend your final year project work a) Comply with Bachelor or Diploma

436 views • 33 slides
OSINT tools for security auditing Open Source Intelligence with python tools Jos Manuel Ortega

OSINT tools for security auditing Open Source Intelligence with python tools Jos Manuel Ortega

OSINT tools for security auditing Open Source Intelligence with python tools Jos Manuel Ortega @jmortegac http://jmortega.github.io https://github.com/jmortega/osint_tools_security_auditing Agenda OSINT introduction Server

743 views • 62 slides
CAN WE FIX IT? SEBASTIUS, HACKER HOTEL 2016 About me Sebastian Oort Teacher by day Self taught

CAN WE FIX IT? SEBASTIUS, HACKER HOTEL 2016 About me Sebastian Oort Teacher by day Self taught

CAN WE FIX IT? SEBASTIUS, HACKER HOTEL 2016 About me Sebastian Oort Teacher by day Self taught hacker/fixer Love retro-hardware CAN WE FIX IT? PROJECT 4 PRACTICAL REPAIRS FOR EVERYONE APRIL 2, 2016 HACKER HOTEL DATUM KLANT REFLOW BAKE

447 views • 23 slides
.NET HIJACKING to DEFEND POWERSHELL AMANDA ROUSSEAU CanSecWest 2017 | .NET Hijacking to Defend

.NET HIJACKING to DEFEND POWERSHELL AMANDA ROUSSEAU CanSecWest 2017 | .NET Hijacking to Defend

1 .NET HIJACKING to DEFEND POWERSHELL AMANDA ROUSSEAU CanSecWest 2017 | .NET Hijacking to Defend PowerShell 2 MALWARE UNICORN Senior or Malware Researcher @ Endgame, Inc. Wo Works s as s a a Mal alware are Re Researc archer r at at

1.04k views • 47 slides
DUTY TO DEFEND BY JOHN R. CRAWFORD NO DUTY TO DEFEND WHEN INSURED FAILS TO GIVE TIMELY NOTICE

DUTY TO DEFEND BY JOHN R. CRAWFORD NO DUTY TO DEFEND WHEN INSURED FAILS TO GIVE TIMELY NOTICE

DUTY TO DEFEND BY JOHN R. CRAWFORD NO DUTY TO DEFEND WHEN INSURED FAILS TO GIVE TIMELY NOTICE Food Market Merchandising vs. Scottsdale Indemnity , 857 F.3d 783 (8 th Cir. 2017) Facts of Food Market January 13, 2014: former employer Robert

908 views • 19 slides
My User-experience and Understanding of OSINT and Private Intelligence Agency as

My User-experience and Understanding of OSINT and Private Intelligence Agency as

My User-experience and Understanding of OSINT and Private Intelligence Agency as Fresh Intelligence Analyst Presented by Animus CHOW Chun Pong REVLUN 19 Before I joined the Industry Brief Outlook of My Background, My Skills,

429 views • 27 slides
Think Like a Hacker Assaf Harel, Chief Scientist and Co-Founder What Does it Mean? 2 |

Think Like a Hacker Assaf Harel, Chief Scientist and Co-Founder What Does it Mean? 2 |

Think Like a Hacker Assaf Harel, Chief Scientist and Co-Founder What Does it Mean? 2 | Confidential Provided for Workshop use only Why Would a Hacker Want to Hack a Car? Cryptocurrency Personal Information Ransomware Mining

517 views • 17 slides
Cyber Crime & OSINT Will your business be victorious or a victim? Dr Stephen Hill

Cyber Crime & OSINT Will your business be victorious or a victim? Dr Stephen Hill

Cyber Crime & OSINT Will your business be victorious or a victim? Dr Stephen Hill drshill@gmx.co.uk We believe that data is the phenomenon of our time. It is the worlds new natural resource. It is the new basis of competitive advantage,

676 views • 51 slides
OSINT is the next Internet goldmine: Spain as an unexplored territory Javier Pastor Galindo

OSINT is the next Internet goldmine: Spain as an unexplored territory Javier Pastor Galindo

OSINT is the next Internet goldmine: Spain as an unexplored territory Javier Pastor Galindo Pantaleone Nespoli Flix Gmez Mrmol Gregorio Martnez Prez V Jornadas Nacionales de Investigacin en Ciberseguridad Contents Open Source

912 views • 13 slides
Learn Blackboard Learn Learn with others Learn in your own time, pace, space Learn through

Learn Blackboard Learn Learn with others Learn in your own time, pace, space Learn through

Learn Blackboard Learn Learn with others Learn in your own time, pace, space Learn through designing for teaching Learn with others 1. Black Swan Conferences Hear The bigger picture Higher Education Blackboard UWA Experience

478 views • 16 slides
I insurer agrees to defend its In pleading a negligence claim, seeking the same damages, the

I insurer agrees to defend its In pleading a negligence claim, seeking the same damages, the

C L A I M D E N I E D January 2005 A publication of the Lowenstein Sandler Insurance Law Practice Group NEW DECISION CLARIFIES NEW JERSEY LAW ON INSURERS DUTY TO DEFEND By Robert D. Chesler, Esq. n 1992, the New Jersey Supreme Most

723 views • 8 slides
Lazy-Mode RF OSINT and Reverse Engineering Marc Newlin | @marcnewlin | TROOPERS18 $(whoami)

Lazy-Mode RF OSINT and Reverse Engineering Marc Newlin | @marcnewlin | TROOPERS18 $(whoami)

Lazy-Mode RF OSINT and Reverse Engineering Marc Newlin | @marcnewlin | TROOPERS18 $(whoami) Red Team @ Snap Former Wireless Security Researcher @ Bastille Networks Wireless CVEs in products from 21 vendors Radios

755 views • 64 slides
Hackers vs Testers: A Comparison of Software Vulnerability Discovery Processes Daniel Votipka ,

Hackers vs Testers: A Comparison of Software Vulnerability Discovery Processes Daniel Votipka ,

Hackers vs Testers: A Comparison of Software Vulnerability Discovery Processes Daniel Votipka , Rock A. Stevens, Elissa M. Redmiles, Jeremy Hu, and Michelle L. Mazurek 22 May 2018 VULNERABILITY DISCOVERY 2 VULNERABILITY DISCOVERY

375 views • 26 slides
USB HID Hacker Interface Design Jason Pisani Paul Caruga6 Richard Rushing Motorola, Inc.

USB HID Hacker Interface Design Jason Pisani Paul Caruga6 Richard Rushing Motorola, Inc.

USB HID Hacker Interface Design Jason Pisani Paul Caruga6 Richard Rushing Motorola, Inc. USBHID USB device class that describes human interface devices such as keyboards, mice, game controllers ,alphanumeric display devices, and

321 views • 8 slides
02 October 2020 Association for Computing Machinery 02 October 2020 Miami Hacks | October

02 October 2020 Association for Computing Machinery 02 October 2020 Miami Hacks | October

Association for Creepy Mansions 02 October 2020 Association for Computing Machinery 02 October 2020 Miami Hacks | October 2nd-4th Florida International University 36 Hour Hackathon Online! October 2nd-4th Register at

640 views • 31 slides
Testing Dr. Patrick McDaniel Meghan Riegel Fall 2015 What is Penetration Testing? Attacking

Testing Dr. Patrick McDaniel Meghan Riegel Fall 2015 What is Penetration Testing? Attacking

Introduction to Penetration Testing Dr. Patrick McDaniel Meghan Riegel Fall 2015 What is Penetration Testing? Attacking a system to find security vulnerabilities in order to fix them before a malicious party attacks the system Legal if

455 views • 9 slides
The Future Of Hacking possible Bernd Fix, Wau Holland Stiftung And if criminals are the price

The Future Of Hacking possible Bernd Fix, Wau Holland Stiftung And if criminals are the price

The Future Of Hacking possible Bernd Fix, Wau Holland Stiftung And if criminals are the price we must pay for rebels, heretics, and geniuses, I'm willing to pay it. I demand the price to be paid. Are criminals the only possible payment?

418 views • 14 slides
Database Security Threats and Vulnerabilities John Bissonette Aaron McClure Introduction

Database Security Threats and Vulnerabilities John Bissonette Aaron McClure Introduction

Database Security Threats and Vulnerabilities John Bissonette Aaron McClure Introduction Databases are the crown jewels of a business or organization Security is paramount Vulnerabilities grant attackers keys to the

600 views • 14 slides
Introduction CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen, Apoorva Dornadula,

Introduction CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen, Apoorva Dornadula,

Introduction CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen, Apoorva Dornadula, David Fifield, Mia Gil Epner, David Hahn, Warren He, Grant Ho, Frank Li, Nathan Malkin, Mitar Milutinovic, Rishabh Poddar, Rebecca Portnoff, Nate Wang

787 views • 44 slides
CAN ORGANIZATIONS SURVIVE A POLI-CYBER BREACH ? K e y n o t e b y K h a l e d F a t t a l MLi

CAN ORGANIZATIONS SURVIVE A POLI-CYBER BREACH ? K e y n o t e b y K h a l e d F a t t a l MLi

CAN ORGANIZATIONS SURVIVE A POLI-CYBER BREACH ? K e y n o t e b y K h a l e d F a t t a l MLi Group, C h a i r m a n ( @ ) M L i G r p ( d o t ) c o m 1 WHAT IS A POLI-CYBER ? CYBER ATTACKS PERPETRATED OR INSPIRED BY EXTREMIST

520 views • 17 slides

More recommend