Cyber Skills Training at SANS Seattle Fall 2018. Save $400 thru 8/22!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

OSINT for Pentesters: Finding Targets and Enumerating Systems

  • Friday, March 2nd, 2018 at 3:30 PM EST (20:30:00 UTC)
  • Micah Hoffman and David Mashburn
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!

Overview

You look at your watch as the time edges closer to the start of your security assessment. Your customer contracted with you to perform a black box penetration test of their internet-facing systems. With no information about their networks and systems to start with, you have to find targets to attack. Where do you begin? In this webcast, you will learn some well-known and some more-obscure methods of finding targets that may be in scope for your internet assessments using Open Source Intelligence (OSINT) tools and techniques.

 

Join Micah Hoffman, author of the new SEC487: Open-Source Intelligence Gathering and Analysis (https://www.sans.org/course/open-source-intelligence-gathering) course in the second installment of a three part series of webcasts on the practical applications of using Open Source Intelligence (OSINT) in our daily lives.

Speaker Bios

Micah Hoffman

Micah Hoffman has been working in the information technology field since 1998 supporting federal government, commercial, and internal customers in their searches to discover and quantify information security weaknesses within their organizations. He leverages years of hands-on, real-world penetration testing and incident response experience to provide unique solutions to his customers. Micah holds GIAC's GAWN, GWAPT, and GPEN certifications as well as the CISSP. Micah is an active member in the NoVAHackers group, has written Recon-ng and Nmap testing tool modules and enjoys tackling issues with the Python scripting language. When not working, teaching, or learning, Micah can be found hiking or backpacking on Appalachian Trail or the many park trails in Maryland. Catch him on Twitter @WebBreacher.


David Mashburn

David Mashburn is currently the IT Security Manager for a global non-profit organization in the Washington, D.C. area. He also has experience working as an IT security professional for several civilian federal agencies, and over 15 years of experience in IT. He holds a masters degree in computer science from John Hopkins University, and a B.S. from the University of Maryland at College Park. David holds multiple security-related certifications, including CISSP, GPEN, GCIH, GCIA, and CEH. He is also a member of the SANS / GIAC Advisory Board, and has previously taught courses in the Cybersecurity curriculum at the University of Maryland - University College.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.