Introduction to OSINT Video

Micah was very lucky to meet and get to work with the talented Ritu Gill, (@OSINTTechniques). At the recent Trace Labs (@TraceLabs) and SANS (@SANSDefense) Missing Persons CTF in Washington DC, we both noticed that many people wanted to participate but had no idea how to get started. After a few discussions, we decided to make an Introduction to OSINT video. Continue reading Introduction to OSINT Video

The new Facebook Graph Search – part 2

This blogpost is inspired by @djnemec‘s Github gist, which you can find here https://gist.github.com/nemec/2ba8afa589032f20e2d6509512381114. The next step In this part, we’re talking about combining searches. Just like in part 1, we will be translating JSON to Base64. And of course we’ll take you through it step by step 🙂 What to combine? Well, you can only combine when you stay in the same category. In … Continue reading The new Facebook Graph Search – part 2

Making Sense of OSINT Cell Tower Data for DFIR

For OSINT and digital forensic practitioners, we can grab cell phone tower information from the mobile devices we image and cross-reference those towers with the tower’s physical location. When we combine this data with the date and time of the device owner’s activities, we can better understand where the device (and the owner) were at given times. Continue reading Making Sense of OSINT Cell Tower Data for DFIR