webbreacher

@webbreacher@infosec.exchange

Always #OSINTCurious. #OSINT lover. (Primary Mastodon profile)

This profile is from a federated server and may be incomplete. Browse more on the original instance.

sector035, to OSINT

Will you look at that! Week in is back! This week, I want to thank:

@IntelScott
@dutch_osintguy
@craigsilverman
@Wondersmith_rae
@webbreacher
@hatless1der for sharing their wisdom!

https://sector035.nl/articles/2024-03

webbreacher,

Always an honor to be noted in your Week In OSINT @sector035 !

webbreacher, to OSINT

It's been a while since I updated my impactful videos page (https://webbreacher.com/videos/) on my personal blog. I took a little time to get some great , , , and videos that can help to change peoples' actions.

If you know of some videos that you like sharing to work colleagues, friends, and family to help them understand and the topics above, please reply with links and I'll check them out.

webbreacher, to random

I'm truly grateful to all of my friends, colleagues, family, and followers for making 2023 an AMAZING year! Very much looking forward to 2024! Wishing you peace and joy.

webbreacher, to OSINT

I love when people ask "Micah, what is your 3 or 5 year plan" because I have no idea where life will take me.

If you asked me this 5 years ago, when I was flying around the world teaching cyber and OSINT, I probably would have extrapolated that....well...I'd continue to teach and travel the globe.

I have ALWAYS been one to grab opportunities that will change the course of my life. I did it when I moved from psychology to medicine, medicine to sales, sales to IT, IT to cyber, and cyber to OSINT. And I have loved every turn in my career.

You see...I could never have imagined 5 years ago that I would be begging the forgiveness from my family for leaving them on a Saturday night to join my colleagues and the AMAZING The National Child Protection Task Force volunteers and work on helping to identify a missing girl using . But here we are. And we did it. And we move on to the next case. Just incredible.

I am in constant awe at the caliber of volunteers and staff at NCPTF and am proud to work with them on every case.

infopunk, to OSINT

One of the things that I really don't like about the community is that it is fairly closed to people on the outside who want to get it.

For example, there are all of these great courses, conferences, etc. that tailor to people already in the industry. However, if you don't already have a company behind you paying for these things, they can really break the bank.

How do you break into the field from the outside? I think that's one of the hardest questions to answer.

webbreacher,

@infopunk hi and welcome to the OSINT community.

There are an incredible amount of videos, blogs, and OSINT tools that are free with no barriers to entry at all. There are even some free courses like @hatless1der and my https://www.myosint.training/courses/introduction-to-osint and https://www.myosint.training/courses/careers-using-osint-skills.

What you are probably seeing are all the paid products and courses and tools that are being advertized and promoted. That is the OSINT business.

webbreacher,

@infopunk also unlike in cyber the osint work field is not yet focused on certifications to get that next job. Go to a jobs site and look for the certs that are required for jobs you might like.

webbreacher,

@infopunk @hatless1der ahh ok. So you want to join a discord or something. Go myosint.link/hatless and scroll to the groups or discussion forums

myosinttraining, to OSINT

📢 We are excited to announce that we are launching a newsletter: My OSINT News! Sign up here (https://myosint.link/newsletter) and you will get empowering emails with:

📰 news articles and links to keep you ahead of your peers!

🔨Links to OSINT tools that might help solve your OSINT cases.

👨🏼‍🏫MOT news (Instead of us doing these email blasts, we will be using our newsletter to communicate changes, improvements, new and upcoming courses and live teaches!)

😉Exclusive offerings (Can't say more about this now but trust us!)

✏ Sign up for My OSINT News at https://myosint.link/newsletter and get news, tools, and MOT announcements delivered directly to your email. My OSINT News' first edition comes out on Monday, 13 November so sign up now!

@webbreacher @hatless1der

webbreacher,

@myosinttraining This is going to be a great way for us to keep you at the top of your skill!

webbreacher, to OSINT

My journey, from psychology and medicine to IT, cyber security, and OSINT is less defined by the tech I've learned and more by the people I've met and helped. Yet, the most profound work I've ever done has been with The National Child Protection Task Force (NCPTF).

We strive to find missing or exploited individuals, working hand in hand with law enforcement to bring predators to justice. It's a challenge that's both rewarding and terrifying.

NCPTF is a nonprofit organization, and its impact is immeasurable. We need funds to continue training law enforcement and to keep looking for those who may have lost hope. This season, I urge you to financially support NCPTF.

Together, we can make a meaningful difference.

https://ncptf.org/donate/giving-tuesday/

webbreacher, to random

VPN comparison. https://innovation.consumerreports.org/wp-content/uploads/2021/12/VPN-White-Paper.pdf thanks @bashinho for pointing me to it.

webbreacher, to OSINT

I know that many of you have already listened to MJ Banias's interview of @hatless1der on the Cloak and Dagger podcast (https://open.spotify.com/episode/5ivU1X75OAoImoceDrzEQZ). For those that haven't....whatcha waiting for??

Sharing this far and wide

cyb_detective, to OSINT

In the Neltas Cookbook, you can find a section about using Netlas for different tasks. Examples of queries can be used in other IP search engines as well.

https://github.com/netlas-io/netlas-cookbook#using-netlasio-for-osint-open-source-intelligence

webbreacher,

@cyb_detective Great resources. Thanks @cyb_detective for constantly broadening my knowledge!

webbreacher, to privacy

OK. Real question here about and I guess .

Most of us know that the use of apps to do MFA (multifactor authentication) is a useful thing to protect someone from guessing/using our passwords on sites.

Many of the password managers now include a helpful MFA feature where you can store your password AND do MFA in their app.

My question is, doesn't this defeat the purpose of MFA if they are stored in the same app/location?

webbreacher,

@bashinho True

webbreacher,

@bongoknight OK. I can understand that. In my scenario though, if the password manager is compromised, the attackers have everything they need to log into your accounts though. Right? I'm thinking about breaches like the one LastPass had and how putting all our security "eggs" in a single "basket" is probably a bad thing.

webbreacher,

@jonquass Understood....I should have clarified that I was really thinking about the company that houses the data becoming compromised (ala LastPass). Then the attacker could have everything they need to take over my accounts.

webbreacher,

@m4iler Good points and my setup is similar to yours.

webbreacher,

@vger I agree that using SOME MFA and password manager is better than using nothing. I was thinking of a LastPass type of scenario where an attacker could get all the things needed to log into an account.

webbreacher,

@myndbreaker Agree. It is defense in depth according to your risk model. ANY MFA + password is better than just password.

whatsmyname, to random

📣For those https://whatsmyname.app users that received a warning about the site having a malicious link, we've fixed it. One of our workers (used to request data) was flagged and has been changed. Should be all good now! Please let us know if you have problem. ✔

webbreacher,

@whatsmyname

cyb_detective, to OSINT

HTML <meta> tags may contain a lot of useful information for the . For ex, the name of the author of the document (or company name).

You can search for keywords in meta tags using IP search engines and the http.meta filter.

Read more:
https://github.com/netlas-io/netlas-cookbook#search-author-name-in-meta-tags

webbreacher,

@cyb_detective In search.censys.io you can use the following search query to find hosts that have responded via HTTP and provided HTML META tags: services.http.response.html_tags: "meta"

bashinho, to FF German
@bashinho@social.tchncs.de avatar

Follow Friday
wer lernen will, sollte folgenden Accounts einen Follow hinterlassen. Sie alle haben in der letzten Woche wertvolle Beiträge auf zum Thema verfasst.
@ChristinaLekati
@cyb_detective
@twone2
@sector035
@denbib
@hatless1der
@webbreacher

webbreacher,

Vielen Dank für die Erwähnung. Und danke für die täglichen "OSINT"-Herausforderungen, während ich meine Übersetzer-Apps benutze, um dein Deutsch ins Englische zu übersetzen 😉 .

Ich genieße es, alle Beiträge zu lesen, die Sie erstellen.

webbreacher, to OSINT

I'm doing some research for a new course on computer infrastructure and came across the Censys GPT search query builder page (https://gpt.censys.io/). Wanted to share how simple it is to now use plain text to craft advanced Censys queries.

For instance, say that you need to find some servers for a domain that are not in a certain country. Check out the images attached to this post for my query. What Censys queries do you find useful in your work?

reswob, to random

@webbreacher check out today's google doodle. All about the AT
(better link)
https://www.google.com/doodles/celebrating-the-appalachian-trail

webbreacher,

@reswob very cool! Thanks for tagging me.

webbreacher, to random

Had some fun hiking in the trees this weekend.

image/jpeg

  • All
  • Subscribed
  • Moderated
  • Favorites
  • anitta
  • everett
  • magazineikmin
  • Durango
  • thenastyranch
  • Youngstown
  • slotface
  • hgfsjryuu7
  • osvaldo12
  • rosin
  • kavyap
  • mdbf
  • PowerRangers
  • DreamBathrooms
  • modclub
  • khanakhh
  • InstantRegret
  • tacticalgear
  • vwfavf
  • ethstaker
  • ngwrru68w68
  • normalnudes
  • tester
  • GTA5RPClips
  • cubers
  • cisconetworking
  • Leos
  • provamag3
  • All magazines
    •