OSINT Tactics: What the Internet Knows About You
This workshop is designed to provide practical knowledge on Open Source Intelligence (OSINT), using only publicly available and legally accessible information found on the Internet. By the end, participants will be able to audit their online presence and understand the real scope of publicly accessible information.
We constantly generate seemingly irrelevant data that can be collected to build a detailed profile of a person or entity, exposing “private” information that any attacker could access.
Workshop Contents
- Introduction to Digital Footprint: Fundamental concepts about the information we expose and the tools used to collect it.
- Exploiting Public Sources: Advanced use of search engines (Google Dorks), social media, and public records to locate specific information.
- Investigation Methodology: Data acquisition processes, noise filtering, and source validation to ensure the accuracy of findings.
- Metadata Analysis: Extracting hidden data from images and digital documents (location, timestamps, devices) to gather additional context.
- Correlation and Pivoting: Techniques to connect scattered data points (an email address, a username) and expand the investigation surface.
- Using Specialized Tools: Practical setup and use of software and frameworks designed to automate data discovery, collection, and visualization.
- Digital Hygiene and Mitigation: How to reduce personal exposure and protect privacy against these information-gathering techniques.