The Privacy, Security, & OSINT Show – Episode 103
Posted on December 14th, 2018
EPISODE 103: Intermediate Disinformation, Reputation Management, & Usenet Archives
This week I continue the conversation about disinformation tactics, introduce the idea of future reputation management, and discuss a recent OSINT project collecting Usenet archive data.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
SPONSORS:
Silent Pocket: https://silent-pocket.com/discount/totalprivacy
Authentic8: https://info.authentic8.com/
INTRO:
Locked account issues
Taylor Swift’s facial recognition system
Spam messages from email searches
INTERMEDIATE DISINFORMATION & REPUTATION MANAGEMENT:
Proactive vs Reactive
Domains
Social Networks
Family Trees
Business Listings:
https://advertising.superpages.com/contact/
https://www.merchantcircle.com/signup#step=stepOne
https://getstarted.thryv.com/free-listing-yp/
https://smallbusiness.yahoo.com/local
https://www.bingplaces.com/
Paste Sites
Classifieds
Address
Telephone
OSINT: USENET ARCHIVES:
https://internetarchive.readthedocs.io/en/latest/
https://archive.org/details/usenethistorical
https://archive.org/details/giganews
LISTENER QUESTIONS:
Q: Have you had success with getting auto insurance for a car titled in a trust?
Q: I will soon be joining the InfraGard and one of their requirement is they will run the background check. Does it mean I will fail their check since I have credit freeze on my account? Should I remove the freeze prior to asking them to run the background check?
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Please submit your listener questions at https://inteltechniques.com/podcast.html
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 103
The Privacy, Security, & OSINT Show – Episode 102
Posted on December 9th, 2018
EPISODE 102: A Bad Week for Hotels and Their Customers
This week I discuss the Marriott breach, more hotel sextortion, and some Facebook search tips involving locations.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
SPONSORS:
Pay with Privacy: https://privacy.com/inteltechniques
Authentic8: https://info.authentic8.com/
INTRO:
Dennis Regan:
https://www.youtube.com/channel/UCEP-9V9nXovVAHqN3RlEdhg
https://twitter.com/DennisRegan333
Dry Bar Comedy:
https://www.youtube.com/watch?v=u3CCo3X5yVA
MARRIOTT BREACH / HOTEL SEXTORTION:
https://krebsonsecurity.com/2018/11/marriott-data-on-500-million-guests-stolen-in-4-year-breach/
https://www.cnn.com/2018/12/05/us/hilton-worldwide-hotel-hidden-camera-lawsuit/index.html
FACEBOOK LOCATION SEARCH:
https://inteltechniques.com/menu.html
site:facebook.com/places/Things-to-do-in-CITY-STATE/NUMBER
LISTENER QUESTIONS:
Q: I recently discovered I was in a data breach thanks to spycloud.com. Name, address and DOB. Email and password and phone number all leaked. All have been changed in regard to email and passwords, But how do you clean up your address and DOB etc when it is leaked. I won’t be moving house and I’m not getting any younger.
Q: I took your advice and purchased an iPod Touch in order to use communications and Sudo from my home without being on a cellular tower. When I went to set it up, Apple demanded a cell number, and I can’t get past that screen. What should I do?
Free Webinar December 14, 2018:
https://cc.readytalk.com/registration/#/?meeting=xa4ctwkusl6i&campaign=1zw9cf6efkbh
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Please submit your listener questions at https://inteltechniques.com/podcast.html
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 102
The Privacy, Security, & OSINT Show – Episode 101
Posted on November 30th, 2018
EPISODE 101: Basic Disinformation & Covert OSINT Accounts
This week I talk about basic disinformation techniques in order to achieve greater privacy and better ways to create and maintain covert online OSINT accounts.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
SPONSORS:
Silent Pocket: https://silent-pocket.com/discount/totalprivacy (code: totalprivacy)
Authentic8: https://info.authentic8.com/
INTRO:
None
BASIC DISINFORMATION (PART I):
https://www.whitepages.com/blog/edit-control-your-listing/
https://www.amazingregistry.com/create-registry
https://www.theknot.com/gs/wedding-websites
https://www.bedbathandbeyond.com/store/giftregistry/simpleReg_creation_form.jsp?regType=BRD
https://www.pennysaverusa.com/item/new
https://www.classifiedads.com/post.php
http://www.freeclassifieds.com/
https://carnival.honeymoonwishes.com/
https://wordpress.com/
COVERT ACCOUNT CREATION:
Mint Sim: https://amzn.to/2QnTrcX
LISTENER QUESTIONS:
Q: I stayed in Germany, and stayed in several hotels. All of which asked for my passport. I told them all that I lost my passport and had an appointment with the consulate to get another. I was never challenged, every hotel just requested another ID. I presented my gym ID, and was accepted without additional challenge each time.
Q: Bad password strategy?
Free Webinar December 14, 2018:
https://cc.readytalk.com/registration/#/?meeting=xa4ctwkusl6i&campaign=1zw9cf6efkbh
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Please submit your listener questions at https://inteltechniques.com/podcast.html
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 101
The Privacy, Security, & OSINT Show – Episode 100
Posted on November 23rd, 2018
EPISODE 100: Alex Goldman, Frank Ahearn, & Justin Seitz
This week my guests are Reply All co-host Alex Goldman, best selling privacy author Frank Ahearn, and OSINT guru Justin Seitz.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
SPONSORS:
Dehashed: https://dehashed.com/
Pay with Privacy: https://privacy.com/inteltechniques
Authentic8: https://info.authentic8.com/
INTRO:
Ron Swanson
ALEX GOLDMAN:
https://www.gimletmedia.com/reply-all/
FRANK AHEARN:
JUSTIN SEITZ:
https://twitter.com/jms_dot_py
site:youtube.com inurl:bpctr
https://instagram.fyxe1-1.fna.fbcdn.net/vp/38efa72f63bf0a98b346dc07eaa39699/5CABBB39/t51.2885-15/sh0.08/e35/s640x640/44887062_319535245548059_8604094516137381161_n.jpg
https://scontent-dfw5-1.cdninstagram.com/vp/38efa72f63bf0a98b346dc07eaa39699/5CABBB39/t51.2885-15/sh0.08/e35/s640x640/44887062_319535245548059_8604094516137381161_n.jpg
LISTENER QUESTIONS:
Q: We started using a PO box several months ago and also had our mail forwarded to it. Now we only receive mail in our name at the PO box, which is what we want. We started putting disinformation out there by ordering catalogs, a magazine, baby registry, signed up for cruise information, etc in a fake name to our actual home address. The problem is we have not received one piece of mail (not even junk mail) at our home since we forwarded our real mail to the PO box. I thought this was strange, so I sent a postcard to our home address in the fake name, but it was not delivered either.
Q: What do you have in store for future episodes?
Free Webinar December 14, 2018:
https://cc.readytalk.com/registration/#/?meeting=xa4ctwkusl6i&campaign=1zw9cf6efkbh
Please submit your listener questions at https://inteltechniques.com/podcast.html
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 100
Free OSINT Webinar on December 14th
Posted on November 16th, 2018
I have always considered jumping into the live webinar game, but never really tried. I always focused my efforts on the pre-recorded online video training. I have decided to attempt a live session. On December 14, 2018, I will be hosting a live OSINT webinar. The event is sponsored by Pipl.com, and they are handling all of the technical logistics to make it happen. Attendees will be able to ask questions as we go, and there will be a large emphasis on breach data within OSINT investigations. Attendance is limited, register early. Here are the details:
https://cc.readytalk.com/registration/#/?meeting=xa4ctwkusl6i&campaign=1zw9cf6efkbh
From that link:
Connecting the dots: Turning online and offline people information into actionable intelligence
Dig deeper into the internet for personal information about any target. Drive your online investigations with new search techniques for intelligence gathering and uncovering the true identity behind any piece of people information.
Join Pipl and Michael Bazzell from @IntelTechniques for this informative and interactive webinar which will include a live demonstration and plenty of time for Q&A. Bring your questions!
Michael Bazzell spent 18 years as a government computer crime investigator. During the majority of that time, he was assigned to the FBI’s Cyber Crimes Task Force where he focused on open-source intelligence, and cyber-crime cases. He has been involved in numerous high-tech criminal investigations including online child solicitation, child abduction, kidnapping, cold-case homicide, terrorist threats, and high-level computer intrusions. He has trained thousands of individuals employed by state and federal agencies, as well as the private sector, in the use of his investigative techniques.
Filed under OSINT | Comments Off on Free OSINT Webinar on December 14th
The Complete Privacy & Security Podcast – Episode 099
Posted on November 16th, 2018
EPISODE 099: Some Show Housekeeping
This week, I clean up after the last two shows, answering numerous questions and providing clarification on the topics. An important new Offense/Defense discusses testing our OSINT on ourselves before a target, and two questions about anonymous vehicle registration as a response to increased license plate readers.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
SPONSORS:
None
INTRO:
Upcoming Free OSINT Webinar:
https://cc.readytalk.com/registration/#/?meeting=xa4ctwkusl6i&campaign=1zw9cf6efkbh
ReplyAll Episode:
https://www.gimletmedia.com/reply-all/130-lizard#episode-player
HOUSEKEEPING:
Questions from the ReplyAll Episode
Questions from Episode 098
Amazon Echo Ruling:
https://arstechnica.com/tech-policy/2018/11/amazon-must-give-up-echo-recordings-in-double-murder-case-judge-rules/
OFFENSE & DEFENSE:
O: Email Tools: https://inteltechniques.com/menu.html
D: Email Tools: https://inteltechniques.com/menu.html
LISTENER QUESTIONS:
Vehicle Tracking:
https://www.wired.com/story/drive-los-angeles-police-track-every-move/
Q: I was wondering how you handled privacy with car rentals, since they will have your real name (from your driver’s license). Other than having an opayq email and privacy.com card, is there much else you can do?
Q: how does car insurance change once you title as an LLC or trust? I assume I need business insurance if I get it in an LLC.
Please submit your listener questions at https://inteltechniques.com/podcast.html
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Complete Privacy & Security Podcast – Episode 099
The Complete Privacy & Security Podcast – Episode 097
Posted on November 2nd, 2018
EPISODE 097: A Discussion on Cloud Storage with SpiderOak
This week I present new privacy threats, talk about secure cloud storage with SpiderOak, throw out a new Offense/Defense to consider, and make a couple of phone calls to tackle listener questions.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher
SHOW NOTES:
INTRO:
https://www.cato.org/publications/policy-analysis/new-national-id-systems
https://www.bleepingcomputer.com/news/security/signal-desktop-leaves-message-decryption-key-in-plain-sight/
https://www.loricarangelo.com/DonorOffspring/viewregistry.cgi
A DISCUSSION ON CLOUD STORAGE WITH SPIDEROAK:
Matthew Erickson-Director of Client Services and Technologies, SpiderOak
https://spideroak.com/
OFFENSE & DEFENSE:
O: Findera.com
D: team@findera.com
LISTENER QUESTIONS:
Q: keep receiving these “Hacker for Hire” emails, which are obviously scams. Who are they and what is the motive? How did they get my contact info?
Q: I bought a new iphone with cash and now have a prepaid plan in an alias name. I guess the only weak spot is that Apple has my face on camera. Do they use facial recognition? Do they keep it forever? Will my face be in some future system they create?
Please submit your listener questions at https://inteltechniques.com/podcast.html
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Complete Privacy & Security Podcast – Episode 097
New Internet Search Resources (OSINT)
Posted on October 29th, 2018
The following new-ish resources have been beneficial to my online investigations this month, and have been added to the new IntelTechniques Online Search Portal:
World Imagery Wayback – https://livingatlas.arcgis.com/wayback/
This satellite mapping tool, powered by ESRI, offers multiple historic views of practically any position on earth. I highly recommend checking the “Only updates with local changes” box, as it will remove useless options without any visual changes. Last week, I used this to identify a unique vehicle in a driveway of a suspect residence. I could not find this evidence on any other mapping options.
Social Searcher – https://www.social-searcher.com
This tool is not new, but there have been some updates that are worth mentioning. The search option allows query of any data including names, usernames, or keywords. The export option on the right is useful to create a csv of results. Recently, this located a social network profile that had been deleted, but was still being picked up. There was enough data to extract details for another search through archives.
Profilr – https://www.profilr.social
Another service that has been around a while, but only recently have I found it to be useful. It only searches six main networks, and queries can be made from the search field or through a direct URL as follows:
https://www.profilr.social/search/mikeb
Findera – https://findera.com/
This site is obviously scraping LinkedIn data, which is nothing new. The difference here is that you can search for keywords within fields that are not searchable by LinkedIn. In one example, I searched my own name to make sure there were no undesired profiles. One of the results was a LinkedIn profile that mentioned my training at one time. This could be a great tool to search deleted profiles or accounts that have since removed specific details.
Intelligence X – https://intelx.io
This is another service scanning and collecting paste dumps, which often include email lists and password breaches. A search will display a few results and redact the rest unless you are logged into a free registered account. I have found many relevant details here. This is a mandatory stop for an email search.
Grey Hat Warfare – https://buckets.grayhatwarfare.com
I have yet to experience a benefit to my investigations with this tool, but I can see where it could be valid. This tool scrapes public Amazon buckets, even those that should be made private. I currently only visit this tool when searching businesses. Many of the links do not provide any actual content, but some reveal data unavailable anywhere else, such as test web pages and documents.
Telegago – https://cse.google.com/cse?&cx=006368593537057042503:efxu7xprihg
This Google CSE searches for information relevant to Telegram/Telegraph data. Results can be filtered by Private, Stickers, Contacts, Public, and other general areas of the popular online service.
Google Storage API – https://www.google.com/search?q=site:storage.googleapis.com
This Google Dork provides some surprising results. If your target uses the Google Storage API (similar to Google Drive), you may find exposed content. These often include PDF files not publicly linked on official websites.
DeepL Translator – https://www.deepl.com/translator
Whether you are frustrated with garbled translations from Google or simply want a second opinion, DeepL is a fantastic language translator. It also allows translation of uploaded foreign documents. This feature recently helped me quickly translate a large Word document that would have otherwise taken many hours to break apart.
YouTube Channel Crawler – http://channelcrawler.com
Searching videos and users on Youtube is fairly straight-forward. Searching YouTube channels using wildcard queries has always been frustrating. Channel Crawler attempts to fix this by scraping channels and providing a search option for the collected data. I find that providing the most minimal search query possible works best.
Whoodle – https://www.whoodle.com
This is another U.S. people search engine with a freemium model. The free results are usually enough to give me direction for additional searches on more reliable sites. Clicking View Report will only present you with payment options.
Yellow Pages Goes Green – https://www.yellowpagesgoesgreen.org
The overall design and function of this website is awful. The data behind it is mediocre. Why is it here? Many people are removing their white pages listings from the main people finder sites, but miss smaller option such as this one. Searching on the main page will fail almost every time. Instead, I suggest using Google as follows:
site:yellowpagesgoesgreen.org “debbie bazzell”
Filed under OSINT, Search | Comments Off on New Internet Search Resources (OSINT)
New OSINT Search Portal
Posted on October 17th, 2018
I have always provided a collection of online search tools and links on my website. This landing area has changed drastically since 2010, and was due for another makeover. I have completely re-worked the entire collection of online search resources, which is available at https://inteltechniques.com/menu.html (you may need to refresh the page). The following explains a bit about the function, changes, and reasons for modification.
Function: This new collection of tools focuses on TARGET DATA. Choose the type of information you have about your investigation (email address, Facebook profile, name, IP address, etc), and click the corresponding category to the left. This will present a drop-down menu with two options. The first will launch the custom automated search tools for that type of data. This should be the first attack. If you are still seeking more information after the searches, the second option in the menu will take you to numerous online resources related to the search type.
Changes: Overall, almost all of the automated tools were updated to reflect new technique changes. I removed over 60 dead links, and added over 35 new resources.
Reasoning: I decided to change to the format of TARGET DATA searching for several reasons. First, most users of the tool do not want to poke around hundreds of links in order to identify which work best for their investigation. This new format allows you to only display resources that apply to the data you have and want to search. Second, I am seeing a ton of OSINT link collections that pop up, many of which seem to be competing for the “Most OSINT Links” award. It is great to see so many people sharing their OSINT resources, but the pages get overwhelming. I saw one today that had over 4,000 links, without any clear guide to where a person should start. Two that I found recently possessed a handful of useful resources that I was not aware of. I believe these serve a GREAT purpose for dedicated OSINT practitioners. OSINT instructors should stay aware of these huge collections and scrutinize them for the next big resource. I will continue to scour these for tools that are not already covered within another service. For most users, they present too many mediocre search options that are already covered within better services. Additionally, most of these collections are hosted on Start.Me sites, which include mandatory tracking scripts from Google, NewRelic, and others. I believe that investigators should avoid tracking behavior when searching sensitive information.
I chose the “Most Bang for Your Buck” scenario. I believe that less is more. Thousands of resources do no good if you do not have the time to devote toward learning all of them. With my new collection, I present only the most beneficial tools and links that seem to assist with my own investigations. I also do this without any tracking or third-party scripts. I hope that more online investigators will embrace the idea of avoiding web-monitoring and tracking behaviors from commercial sites, and will consider self-hosting without trackers.
There was a lot of discussion within the OSINT community about creating a standard for online link collections. I don’t think it ever progressed into anything official, but I offer this new format for consideration. I think OSINT resources should be categorized by what data is being SEARCHED (email, telephone number, domain, etc) versus the alphabetical NAME of each site or the TYPES of services (marketing, political, social media, etc.). I think this tool provides a faster, more direct approach to online investigations. For those that hate the new design, the previous version can be accessed by the”Classic Version” link in the upper right. There will be much more frequent updates with the new set.
Filed under OSINT, Search | Comments Off on New OSINT Search Portal
The Complete Privacy & Security Podcast – Episode 093
Posted on October 5th, 2018
EPISODE 093: Social Engineering Revisited with Chris Hadnagy
This week Chris Hadnagy joins me to discuss the impacts of Social Engineering on Privacy.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher
SPONSOR:
None
SHOW NOTES:
Chris Hadnagy:
https://www.social-engineer.org/
https://www.innocentlivesfoundation.org/
Book:
Social Engineering: The Science of Human Hacking:
https://amzn.to/2RtTcKX
OFFENSE & DEFENSE:
O: https://gotcha.pw/
D: Discussion
LISTENER QUESTIONS:
Q: How do you balance your Geek urge to jump onto new social media platforms, Google type services, etc and taking a step back and not signing up because that service is going to make you the product? What are your boundaries?
Q: My workplace wants all employees to upload a photo into an internal application. Are there ways to make a photo of you look bad full size but decent as an icon? Any other ideas for masking?
Please submit your listener questions at https://inteltechniques.com/podcast.html
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Complete Privacy & Security Podcast – Episode 093