OSINT mindset to protect your organization - Null monthly meet version

•Transferir como PPTX, PDF•

2 gostaram•380 visualizações

This presentation covers different sources of information about organization, some breach case studies and how we could have prevented it using OSINT and other techniques.

Tecnologia

Offensive OSINT mindset to
defend your Organization
Chandrapal Badshah

About Me
Chandrapal Badshah
Security Researcher
Open Source Enthusiast
Twitter : @bnchandrapal
Website : badshah.io

What is OSINT ?
“An art of collecting publicly available data and deriving
useful information from it”

The OSINT Mindset
Consists of 3 phases in general:
Data
aggregation
Deriving
intelligence
Storing the data
& intel

Three questions to ask yourself ?
What do you know about the organization ?
What do you technically know about the organization ?
Did you checkout the employees of the organization ?

What do you know about the organization ?

What do you know about the organization ?
● What does it sell - a product / service / something else ?
● How does the company make profit ?
● Board of Directors & Investors
● Acquisitions and Partnerships
● Job openings
● Supply chain / vendors

Sources
● Company website
● Blogs
● LinkedIn
● Newspapers
● Third party review blogs
● Crunchbase

Impact : Breaches on Acquisitions might affect you
https://www.infosecurity-magazine.com/news/paypal-acquired-company-suffered/

What do you technically know about the
organization ?

Domains and subdomains
Virustotal
SecurityTrails

Domains and subdomains
Virustotal
SecurityTrails
Rapid7’s FDNS

Domains and subdomains
Virustotal
SecurityTrails
Rapid7’s FDNS
Google Certificate Transparency
Logs

Digital Assets
Subdomain takeovers
Exposed databases
Software with default and weak passwords

IP addresses & open ports
● Shodan
● Software running on non standard ports

Did you checkout the employees of the
organization ?

Email addresses
hunter.io - allows to get email address patterns

Email addresses
hunter.io - allows to get email address patterns
HaveIBeenPwned

Online coding platforms
Online code platforms:
● GitHub
● Gitlab
● Bitbucket
Online code compiling platforms:
● Repl.it

Online content sharing
● Pastebin & other pastie sites
● Public GitHub gists / Gitlab snippets
● Google docs / sheets with public shareable link
● Trello boards

How can we protect organization using OSINT ?

Understand what’s in your control and what’s not
Digital assets
What the organization posts online
Security & Organizational policies

Understand what’s in your control and what’s not
Digital assets
What the organization posts online
Security & Organizational policies
Employees’ personal online accounts

How to tackle (un)intentional data leaks ?

Continuous Monitoring
Monitor for keywords on about your organization on online platforms
● Google alerts
● Tools like Real Time Scrapper & DataSploit
● Third party monitoring services

How to proactively defend your organization ?

Never Reuse Passwords
Evangelize the use of password managers

Never Reuse Passwords
This breach
could have
never happened

Vulnerability Management
● Allows you to know your network
○ Network
○ DNS records
○ Open Ports
○ Software / Technology stack used
● Vulnerable software
○ Dependency Check

Vulnerability Management
This could have
been prevented

Mais conteúdo relacionado

Mais procurados

Osint ashish mistry

n|u - The Open Security Community

From OSINT to Phishing presentation

Jesse Ratcliffe, OSCP

OSINT - Open Source Intelligence

c0c0n - International Cyber Security and Policing Conference

Open-Source Intelligence (OSINT) is intelligence collected from public available sources “Open” refers overt, public available sources (as opposed to covert sources) Its not related to open-source software or public intelligence This information comes from a variety of sources, including the social media pages of your company and staff. These can be a goldmine of information, revealing information such as the design of ID badges, layout of the buildings and software used on internal systems.

Owasp osint presentation - by adam nurudini

Adam Nurudini

Open source intelligence

balakumaran779

Osint presentation nov 2019

Priyanka Aash

Presented at the Ohio Information Security Summit, October 30, 2009. What does the Internet say about your company? Do you know what is being posted by your employees, customers, or your competition? We all know information or intelligence gathering is one of the most important phases of a penetration test. However, gathering information and intelligence about your own company is even more valuable and can help an organization proactively determine the information that may damage your brand, reputation and help mitigate leakage of confidential information. This presentation will cover what the risks are to an organization regarding publicly available open source intelligence. How can your enterprise put an open source intelligence gathering program in place without additional resources or money. What free tools are available for gathering intelligence including how to find your company information on social networks and how metadata can expose potential vulnerabilities about your company and applications. Next, we will explore how to get information you may not want posted about your company removed and how sensitive metadata information you may not be aware of can be removed or limited. Finally, we will discuss how to build a Internet posting policy for your company and why this is more important then ever.

Enterprise Open Source Intelligence Gathering

Tom Eston

Getting started with using the Dark Web for OSINT investigations

Olakanmi Oluwole

Offensive OSINT

Christian Martorella

osint - open source Intelligence

Osama Ellahi

Open Source Intelligence is the art of collecting information which is scattered on publicly available sources. With evolution of social media and digital marketplaces a huge amount of information is constantly generated on the Internet (sometimes even without our conscious consent). This is of great concern for organizations and businesses as chances of confidential data floating in the public domain may seriously harm their business integrity. All recent hacks are related to internal source code disclosure, API keys leakage, known vulnerability in third party plugin, data dump leaks etc. Based on experience and robust research in this domain, for this talk the speakers have created a tool which will help all kind of organizations to monitor cyberspace effectively without much investment. This tool is simple but an effective solution which is capable of hearing digital whispers which are usually missed or ignored but shouldn’t be.

OSINT Black Magic: Listen who whispers your name in the dark!!!

Nutan Kumar Panda

Practical White Hat Hacker Training - Passive Information Gathering(OSINT)

PRISMA CSI

OSINT x UCCU Workshop on Open Source Intelligence

Philippe Lin

Osint

Kamal Rathaur

Maltego

penetration Tester

Datasploit - An Open Source Intelligence Tool

Shubham Mittal

Open Source Intelligence Gathering (OSINT) is growing in popularity among attackers and defenders alike. When an attacker comes knocking on your network's front door, the warning lights go off in multiple systems (IDS, IPS, SIEM, WAF). More sophisticated attackers, however, spend considerable time gathering information using tools and techniques that never touch any of your systems. As a result, these attackers are able to execute their attacks and make off with proprietary data before you even know they are there. This presentation provides an introduction to many OSINT tools and techniques, as well as methods you can use to minimize your exposure.

What you need to know about OSINT

Jerod Brennen

OSINT Social Media Techniques - Macau social mediat lc

Cyber Threat Intelligence Network

Open source intelligence information gathering (OSINT)

phexcom1

Nmapper theHarvester OSINT Tool explanation

Wangolo Joel

Mais procurados (20)

Osint ashish mistry

From OSINT to Phishing presentation

OSINT - Open Source Intelligence

Owasp osint presentation - by adam nurudini

Open source intelligence

Osint presentation nov 2019

Enterprise Open Source Intelligence Gathering

Getting started with using the Dark Web for OSINT investigations

Offensive OSINT

osint - open source Intelligence

OSINT Black Magic: Listen who whispers your name in the dark!!!

Practical White Hat Hacker Training - Passive Information Gathering(OSINT)

OSINT x UCCU Workshop on Open Source Intelligence

Osint

Maltego

Datasploit - An Open Source Intelligence Tool

What you need to know about OSINT

OSINT Social Media Techniques - Macau social mediat lc

Open source intelligence information gathering (OSINT)

Nmapper theHarvester OSINT Tool explanation

Semelhante a OSINT mindset to protect your organization - Null monthly meet version

OpenSourceIntelligence-OSINT.pptx

anonymousanonymous428352

Passive Intelligence Gathering and Analytics - It's All Just Metadata!

CTruncer

UKSG - Just Do IT Yourself

Tony Hirst

Open Source Information Gathering Brucon Edition

Chris Gates

Social Web 2014: Final Presentations (Part I)

Lora Aroyo

Blackmagic Open Source Intelligence OSINT

Sudhanshu Chauhan

Most user experience research takes place sitting behind a computer. And yet these days, most networked experiences are happening on mobile devices. Some common user experience research methods work well in a mobile environment — others don’t. In this talk, Juliette Melton will guide you through how to use some great existing research methods in a mobile context, how to incorporate some new (and fun!) methods into your arsenal, and propose next generation tools and services to make mobile user experience research even better. Juliette has ten years of experience building, managing, and researching digital environments and is a human factors researcher based at IDEO in San Francisco. She’s deeply interested in the intersections between digital culture, learning, and communication. Her work has spanned a broad range of industries including social media, casual gaming, education administration, electronic publishing, corporate banking, computer hardware, and public health. Community education — through workshops, lectures, and writing — is an important part of her work. Remote user experience methods, agile project management, and research program planning are frequent topics. Juliette holds an MEd from the Technology, Innovation, and Education program at the Harvard Graduate School of Education where she focused on developing models for innovative networked learning applications. She also has a BA in Comparative Literature from Haverford College. Follow Juliette on Twitter: @j

Juliette Melton - Mobile User Experience Research

Web Directions

Introduction To Predictive Modelling

Spotle.ai

Dissecting and Mitigating the Privacy Risk of Personal Cloud Apps (at PETS 2016)

Hamza Harkous

Facebook recently came under fire for the discreet international roll-out of its photo facial recognition feature. This feature automatically identifies and suggests tags for individuals appearing in photos posted on Facebook. At first glance, this seemingly innocuous feature appears to quietly augment online social lives. At second glance, the rollout of this feature as a defaulted-to-on setting with no explicit user consent raises many privacy concerns. As a site with extensive power driven by the quantity, quality, and kind of data it collects, Facebook’s decision to step into the world of visual recognition of its users without formal user consent is a big no-no—or is it? Join us for this month’s eBoost Consulting Brown Bag Lunch Webinar to explore this and other cases that raise internet privacy concerns. Learn the ins, outs, and nuances of internet privacy to determine where to draw the line on data collection and usage.

The Ins, Outs, and Nuances of Internet Privacy

eBoost Consulting

Building Effective Frameworks for Social Media Analysis

Open Analytics

OSINT: Open Source Intelligence - Rohan Braganza

NSConclave

OSINT for Attack and Defense

Andrew McNicol

Building Effective Frameworks for Social Media Analysis

ikanow

As a hacker and engineer I've been interested in identity and privacy since the dawn of the Internet and the online services it's enabled. For the past year I've been helping to build and open source The @ Platform, which inverts the usual model by giving everybody (and every thing) their own place to store data and control who (and what) has access to it. This talk will give an overview of the platform and its underlying protocol, and illustrate how it can be used to build privacy preserving apps and Internet connected things. It will also cover how the platform can be self hosted on devices like the Raspberry Pi, and how people can get involved in the open source community growing around it.

EMFcamp2022 - What if apps logged into you, instead of you logging into apps?

Chris Swan

Data is more defenseless than any time in recent memory and each mechanical development raises new security danger that requires new security arrangements. web kill tool is directed to assess the security of an IT framework by securely uncovering its weaknesses. The performance of an application is measured based on the number of false negatives and false positives. Testing technique that is highly automated, which covers several boundary cases by means of invalid data as the application input to make sure that exploitable vulnerabilities are absent. Deepesh Seth | Ms. N. Priya "Vulnerability Assessment and Penetration Testing using Webkill" Published in International Journal of Trend in Scientific Research and Development (ijtsrd), ISSN: 2456-6470, Volume-5 | Issue-1 , December 2020, URL: https://www.ijtsrd.com/papers/ijtsrd37919.pdf Paper URL : https://www.ijtsrd.com/computer-science/computer-security/37919/vulnerability-assessment-and-penetration-testing-using-webkill/deepesh-seth

Vulnerability Assessment and Penetration Testing using Webkill

ijtsrd

Advanced Research Investigations for SIU Investigators

Sloan Carne

Link to video: https://www.youtube.com/watch?v=IZ-kC6ut1Lg In a previous talk, we explained how we developed Imhotep, a distributed system for building decision trees for machine learning. We went on to describe how we build large scale interactive analytics tools using the same platform. This has kept our engineering and product organizations focused on key metrics by analyzing test results. It also gives our marketing organization timely and accurate insight into our data - allowing us to identify opportunities, spot trends, and learn about our job seekers. In this talk, Zak Cocos, who leads our Marketing Sciences team, and Product Manager Tom Bergman will discuss and provide examples of the valuable insights that can be gained by using Imhotep with almost any data set.

[@IndeedEng] Large scale interactive analytics with Imhotep

indeedeng

Data Science, Personalisation & Product management

Bhaskar Krishnan

OWASP_OSINT_Presentation.pdf

netisBin

Semelhante a OSINT mindset to protect your organization - Null monthly meet version (20)

OpenSourceIntelligence-OSINT.pptx

Passive Intelligence Gathering and Analytics - It's All Just Metadata!

UKSG - Just Do IT Yourself

Open Source Information Gathering Brucon Edition

Social Web 2014: Final Presentations (Part I)

Blackmagic Open Source Intelligence OSINT

Juliette Melton - Mobile User Experience Research

Introduction To Predictive Modelling

Dissecting and Mitigating the Privacy Risk of Personal Cloud Apps (at PETS 2016)

The Ins, Outs, and Nuances of Internet Privacy

Building Effective Frameworks for Social Media Analysis

OSINT: Open Source Intelligence - Rohan Braganza

OSINT for Attack and Defense

Building Effective Frameworks for Social Media Analysis

EMFcamp2022 - What if apps logged into you, instead of you logging into apps?

Vulnerability Assessment and Penetration Testing using Webkill

Advanced Research Investigations for SIU Investigators

[@IndeedEng] Large scale interactive analytics with Imhotep

Data Science, Personalisation & Product management

OWASP_OSINT_Presentation.pdf

Mais de Chandrapal Badshah

Dangling DNS records takeover at scale

Chandrapal Badshah

Detecting secrets in code committed to gitlab (in real time)

Chandrapal Badshah

OSINT Mindset to protect your Organization

Chandrapal Badshah

Solving OWASP MSTG CrackMe using Frida

Chandrapal Badshah

OWASP Serverless Top 10

Chandrapal Badshah

Pentesting Android Apps using Frida (Beginners)

Chandrapal Badshah

pwnd.sh

Chandrapal Badshah

Web Application Firewall

Chandrapal Badshah

Netcat - A Swiss Army Tool

Chandrapal Badshah

Mais de Chandrapal Badshah (9)

Dangling DNS records takeover at scale

Detecting secrets in code committed to gitlab (in real time)

OSINT Mindset to protect your Organization

Solving OWASP MSTG CrackMe using Frida

OWASP Serverless Top 10

Pentesting Android Apps using Frida (Beginners)

pwnd.sh

Web Application Firewall

Netcat - A Swiss Army Tool

Último

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

Partners Life - Insurer Innovation Award 2024

The Digital Insurer

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

Manulife - Insurer Innovation Award 2024

The Digital Insurer

Discord is a free app offering voice, video, and text chat functionalities, primarily catering to the gaming community. It serves as a hub for users to create and join servers tailored to their interests. Discord’s ecosystem comprises servers, each functioning as a distinct online community with its own channels dedicated to specific topics or activities. Users can engage in text-based discussions, voice calls, or video chats within these channels. Understanding Discord Servers Discord servers are virtual spaces where users congregate to interact, share content, and build communities. Servers may revolve around gaming, hobbies, interests, or fandoms, providing a platform for like-minded individuals to connect. Communication Features Discord offers a range of communication tools, including text channels for messaging, voice channels for real-time audio conversations, and video channels for face-to-face interactions. These features facilitate seamless communication and collaboration. What Does NSFW Mean? The acronym NSFW stands for “Not Safe For Work,” indicating content that may be inappropriate for professional or public settings. NSFW Content NSFW content encompasses material that is sexually explicit, violent, or otherwise graphic in nature. It often includes nudity, profanity, or depictions of sensitive topics.

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

UK Journal

A Principled Technologies deployment guide Conclusion Deploying VMware Cloud Foundation 5.1 on next gen Dell PowerEdge servers brings together critical virtualization capabilities and high-performing hardware infrastructure. Relying on our hands-on experience, this deployment guide offers a comprehensive roadmap that can guide your organization through the seamless integration of advanced VMware cloud solutions with the performance and reliability of Dell PowerEdge servers. In addition to the deployment efficiency, the Cloud Foundation 5.1 and PowerEdge solution delivered strong performance while running a MySQL database workload. By leveraging VMware Cloud Foundation 5.1 and PowerEdge servers, you could help your organization embrace cloud computing with confidence, potentially unlocking a new level of agility, scalability, and efficiency in your data center operations.

Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...

Principled Technologies

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

MINDCTI Revenue Release Quarter One 2024

MIND CTI

Real Time Object Detection Using Open CV

Khem

This presentations targets students or working professionals. You may know Google for search, YouTube, Android, Chrome, and Gmail, but did you know Google has many developer tools, platforms & APIs? This comprehensive yet still high-level overview outlines the most impactful tools for where to run your code, store & analyze your data. It will also inspire you as to what's possible. This talk is 50 minutes in length.

Powerful Google developer tools for immediate impact! (2023-24 C)

wesley chun

Top 10 Most Downloaded Games on Play Store in 2024

SynarionITSolutions

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

Automating Google Workspace (GWS) & more with Apps Script

wesley chun

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

OSINT mindset to protect your organization - Null monthly meet version

1. Offensive OSINT mindset to defend your Organization Chandrapal Badshah

2. About Me Chandrapal Badshah Security Researcher Open Source Enthusiast Twitter : @bnchandrapal Website : badshah.io

3. Story time ...

10. Fiction ?

11. https://hackerone.com/reports/397527

12. What is Open Source Intelligence ?

13. What is OSINT ? “An art of collecting publicly available data and deriving useful information from it”

14. The OSINT Mindset

15. The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel

16. The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel

17. The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel

18. The OSINT Mindset Consists of 3 phases in general: Data aggregation Deriving intelligence Storing the data & intel

19. Three questions to ask yourself ? What do you know about the organization ? What do you technically know about the organization ? Did you checkout the employees of the organization ?

20. What do you know about the organization ?

21. What do you know about the organization ? ● What does it sell - a product / service / something else ? ● How does the company make profit ? ● Board of Directors & Investors ● Acquisitions and Partnerships ● Job openings ● Supply chain / vendors

22. Sources ● Company website ● Blogs ● LinkedIn ● Newspapers ● Third party review blogs ● Crunchbase

23. Example : Job openings

24. Impact : Breaches on Acquisitions might affect you https://www.infosecurity-magazine.com/news/paypal-acquired-company-suffered/

25. Impact : Supply Chain Attacks

26. What do you technically know about the organization ?

27. Domains and subdomains Virustotal

28. Domains and subdomains Virustotal SecurityTrails

29. Domains and subdomains Virustotal SecurityTrails Rapid7’s FDNS

30. Domains and subdomains Virustotal SecurityTrails Rapid7’s FDNS Google Certificate Transparency Logs

31. Digital Assets Subdomain takeovers Exposed databases Software with default and weak passwords

32. Impact : Digital Assets

33. IP addresses & open ports ● Shodan

34. IP addresses & open ports ● Shodan ● Software running on non standard ports

35. Did you checkout the employees of the organization ?

36. Email addresses hunter.io - allows to get email address patterns

37. Email addresses hunter.io - allows to get email address patterns HaveIBeenPwned

38. Online coding platforms Online code platforms: ● GitHub ● Gitlab ● Bitbucket Online code compiling platforms: ● Repl.it

39. Online content sharing ● Pastebin & other pastie sites ● Public GitHub gists / Gitlab snippets ● Google docs / sheets with public shareable link ● Trello boards

40. Password Reuse

41. How can we protect organization using OSINT ?

42. Understand what’s in your control and what’s not Digital assets What the organization posts online Security & Organizational policies

43. Understand what’s in your control and what’s not Digital assets What the organization posts online Security & Organizational policies Employees’ personal online accounts

44. How to tackle (un)intentional data leaks ?

45. Continuous Monitoring Monitor for keywords on about your organization on online platforms ● Google alerts ● Tools like Real Time Scrapper & DataSploit ● Third party monitoring services

46. Continuous Monitoring Monitor for keywords on about your organization on online platforms ● Google alerts ● Tools like Real Time Scrapper & DataSploit ● Third party monitoring services Monitor if employee’s email is found in a data breach ● HaveIBeenPwned FREE notification service

47. How to proactively defend your organization ?

48. Never Reuse Passwords Evangelize the use of password managers

49. Never Reuse Passwords This breach could have never happened

50. Vulnerability Management ● Allows you to know your network ○ Network ○ DNS records ○ Open Ports ○ Software / Technology stack used ● Vulnerable software ○ Dependency Check

51. Vulnerability Management This could have been prevented

52. Thank You Any Questions ?

Notas do Editor

It was getting dark and our hacker hero was tired of looking at multiple online code repositories. Before he closes his 30 tabbed browser, he stumbled upon an unusual repository. What intrigued him was that the code repo had less code, but lots of releases. After downloading, decompiling and hours of debugging, he found the slack token of the target organization. Using the slack token, he was able to get messages from most of the Slack channels of the target organization.
This has happened even to one of the best companies among us
Data could be scattered on multiple places or could get it in a single place Is not confined to a bunch of tools which call them the best OSINT tool
Let us forget the organizations we work with for some time
http://www.mca.gov.in/mcafoportal/checkCompanyName.do
https://www.tripwire.com/state-of-security/featured/operation-shadowhammer-hackers-planted-malware-code-video-games/
Exactis
Shodan - allows to monitor upto 16 IPs
Shodan - allows to monitor upto 16 IPs
hunter.io - get the email format. Is it {firstname}.{lastname}@company.com or {firstname}@company.com. If you find the pattern, with the help of LinkedIn you could actually get all emails of employees HIBP - was this email leaked in some previous breach ? If yes, can we get the credentials from the breach ?
hunter.io - get the email format. Is it {firstname}.{lastname}@company.com or {firstname}@company.com. If you find the pattern, with the help of LinkedIn you could actually get all emails of employees HIBP - was this email leaked in some previous breach ? If yes, can we get the credentials from the breach ?
If you find the info, contact the website to take down the info
https://github.com/NaveenRudra/RTS https://github.com/DataSploit/datasploit
https://github.com/NaveenRudra/RTS https://github.com/DataSploit/datasploit
Know yourself Since you can look into your digital assets, make sure it is configured properly Remove DNS records when no longer used Think like an attacker Always think how the public information could be used against your company Proper compartmentation Without proper compartmentation, attackers are able to leverage information from one compromised account to access another related account. Vulnerability Management A good vuln mgmt covers all assets. Vuln mgmt tools will find easily exploitable vulns Employee awareness You cannot control the employees’ personal online accounts All you can do is give provide general awareness of how posting company data online / reusing passwords could be tragic ---- Have different accounts for different env HaveIBeenPwned - free updates --- Devils advocate (policies, Data Loss Prevention)

OSINT mindset to protect your organization - Null monthly meet version

Recomendados

Recomendados

Mais conteúdo relacionado

Mais procurados

Mais procurados (20)

Semelhante a OSINT mindset to protect your organization - Null monthly meet version

Semelhante a OSINT mindset to protect your organization - Null monthly meet version (20)

Mais de Chandrapal Badshah

Mais de Chandrapal Badshah (9)

Último

Último (20)

OSINT mindset to protect your organization - Null monthly meet version

Notas do Editor