Lessons Learned from Ten Years of OSINT Automation

Channel:
United States SANS Cyber Defense
Subscribers:
23,600
Published on ● Video Link: https://www.youtube.com/watch?v=SMGEhFXURzY


Duration: 31:21
1,310 views
27

When you discover the vastness of OSINT it's typical to want to build some automation to speed up collection and correlation, giving you more time to focus on what human brains are good for: analysis. But often that tooling can take on a life of its own, requiring maintenance, updates as data sources emerge and disappear, work-arounds for data quality issues, handling false positives, and the list goes on.

Now in its 10th year, automating OSINT has been SpiderFoot's mission from day one as a free, open source tool used by tens of thousands of people. In this talk, we'll walk through many of the lessons learned over the years so that you can overcome them in your OSINT automation adventures.

While this is a more technical talk, it should also be useful to less technical audiences who may wish to understand limitations of automation, manual work-arounds needed in some cases and generally why the human element will always be an essential part of working with OSINT.

About the Speaker
Steve Micallef has been working in InfoSec for over 20 years across multiple industries. Through much of this time he has developed SpiderFoot as an open source OSINT automation tool.

View upcoming Summits: http://www.sans.org/u/DuS
Download the presentation slides (SANS account required) at https://www.sans.org/u/1iaE
#OSINTSummit #OSINT



Other Videos By SANS Cyber Defense


2022-05-28What Value Does OSINT Bring to the Web 3.0 Space?
2022-05-26Lifting the Fog: OSINT, analytical processes, & analytical bias
2022-05-26How to Investigate Phishing Campaigns
2022-05-25What are the key takeaways & benefits of taking SEC586?
2022-05-23Blockchain Investigations 101: An Intro to Ethereum
2022-05-22Glass Bottom OSINT
2022-05-21What is SEC586 author Josh Johnson's favorite part of the course to teach
2022-05-20Protecting High-Value Individuals: An OSINT Workflow
2022-05-18Advanced Open-Source Intelligence (OSINT) Gathering and Analysis: A SEC587 Demo
2022-05-17What to expect from the SEC586 labs
2022-05-15Lessons Learned from Ten Years of OSINT Automation
2022-05-14An In-Depth Overview of Resources, Tactics, and Tools for Gathering Intelligence Outside the US
2022-05-13How SEC586 can help you and your organization's security posture
2022-05-12Finding Fraudsters Who Hide Behind Cloudflare
2022-05-11Dark Web: The Other Side
2022-05-10I Know You: Contact Exploitation in SOCMINT Investigations
2022-05-09What skills do SEC586 students walk away with
2022-05-05Who should take SEC586 Blue Team Operations: Defensive PowerShell?
2022-05-01Why use PowerShell to automate?
2022-04-28Lifting the Fog: Investigating Cryptocurrency with OSINT
2022-04-27What problems does SEC586 solve for students?


Tags:
steve micallef
ssteve micallef osint
osint automation
osint gathering
automating osint gathering
automating osint
open source intelligence gathering
osint data
osint data gathering
automating osint data gathering
osint data automation