Episode 31: Jeff Lomas of BleuBloodHound, MWOsint demos the MSFT video indexer and more...

People in this Episode: Micah Hoffman (WebBreacher)  Dutch_Osintguy  Matthias Wilson (MwOsint)  Nixintel  Sector035  Special Guest: Jeff Lomas (@BleuBloodHound)   Links to what we discussed: Jeff Lomas talked about his blog on cell tower info, DFIR and OSINT https://osintcurio.us/2019/08/19/making-sense-of-osint-cell-tower-data-for-dfir/  People being monitored by the geotagged social media trough Echosec https://twitter.com/KarlSwannie/status/1233092121822978048  An semi automated website for lookups on a domain, ip or email. Covers dns, location, whois and more. Opsec! don’t know if requests are tracked https://synapsint.com/  OSINT CTF that gives people a chance to practice their skills. It covers a wide range of areas like government databases, social media, archived websites as well as some basic digital forensic and cyber security knowledge. https://ctf.cybersoc.wales/  Vis graphing tool for win, linux and osx in beta. Sort of Maltego alternative made with help of occrp.vis.com https://docs.alephdata.org/guide/vis-desktop  Guideline by US DoJ : Legal Considerations when Gathering Online Cyber Threat Intelligence and Purchasing Data from Illicit Sources https://www.justice.gov/criminal-ccips/page/file/1252341/download  Useful to manually create charts in your OSINT investigations https://www.draw.io/  Bram (Aware Online) has been on fire this week, posting lots of quick OSINT tips. Might be worth a shout-out https://twitter.com/aware_online  Great detailed blog on how to build your own web scraper using Python https://hackernoon.com/how-to-build-a-web-scraper-with-python-step-by-step-guide-jxkp3yum  TikTok OSINT thread https://twitter.com/summer__heidi/status/1234308465662627840  The Cyber Intelligence Analyst Cookbook has some good information about CTI and OSINT process and analysis. https://github.com/open-source-rs/The-Cyber-Intelligence-Analyst-Cookbook/  Scrapy: An open source and collaborative framework for extracting the data you need from websites. https://scrapy.org/  Skills Demo:  Matthias a.k.a MWOsint – https://keyfindings.blog/2020/03/08/using-the-microsoft-video-indexer-for-osint/ demo  Self Promotion: Dutch_OsintGuy added new events to his website for several trainings and workshops https://dutchosintguy.com/events-and-blogs/  Dutch_Osintguy : Workshop understanding Google’s search results and advanced searching techniques workshop (Dutch language only) together with Aware Online. March 20th in Amsterdam. https://www.aware-online.com/workshop-google-voor-gevorderden/  Micah (WebBreacher) has multiple SANS SEC487 live classes (https://sans.org/sec487) coming up in the coming months and is looking forward to the GIAC GOSI OSINT certification (https://giac.org/gosi) moving into beta testing in April. --- Support this podcast: https://podcasters.spotify.com/pod/show/osintcurious/support