Training

Offensive Recon - OSINT And Attack Methodologies

By RedHunt Labs (www.redhuntlabs.com)

This Offensive OSINT training program focuses on a wide range of tools and techniques for performing real-world reconnaissance in order to launch targeted attacks against modern infrastructures. This advanced training not only talks about using OSINT to extract data but also focuses on the significance of this data and how it could be directly enriched and used offensively for attacking and compromising Modern Digital Infrastructures. We will take a deep-dive into various methodologies for extracting useful information from the internet. Furthermore, we will cover how this extracted information can be used in multiple attack scenarios. This course takes a comprehensive hands-on approach to indulge the participants into real world scenarios, simulated lab environment and case studies in order to get proficient in techniques and methodologies. Each participant will also be provided LAB ACCESS during the training to our Private Lab mimicking the modern age infrastructure, as well as decoy accounts and organization’s social presence, where they can practise the skills learnt during the course.

The training program will cover the following topics

Course Outline

Target Scoping and Mapping the Attack Surface
Subdomain Enumeration
Organization’s Social Media Profiling
Identifying Organizations Associations (Acquisitions, Mergers, Vendors, etc.)
Hunting Code Repositories, Dark Web, Paste(s) Sites and Leaked Data
Employee(s) Profiling
Cloud Recon
Bucket/Blogs/Spaces Enumeration
Enriching OSINT Data
Tech Stack Profiling
Identifying SSO/Login/Admin/VPN Portal(s)
Explore Breached Password Databases
Metadata Extraction
Collecting and Leveraging Cloud Secrets
Attacking Network Services using collated data
Compromising Business Communication Infrastructure (BCI)
Targeted Credential Spraying
Compromising Cloud Server Instances

Who should take this course

Penetration Testersr
Social Engineers
Red-Teamers
Bug Bounty Hunters
OSINT Researchers
Risk Management Professionals

What Students Will Be Provided With

Student Pack which contains
Slide deck and OSINT CheatSheet
Tools and Custom Scripts
Detailed Answers to challenges

About Shubham Mittal

Shubham Mittal is Director and Co-Founder @RedHuntLabs and leads the research around Perimeter Security, Attack Surface Intelligence and Attack Automation for Enterprises. He is a Review Board Member for BlackHat Asia, INSEC World (HongKong), RootConf and PyCon India Security Track. He is also the co-founder of Recon Village, an OSINT focused mini-con at DEFCON and co-author of the OSINT Framework - DataSploit. He has trained and presented to various government organizations, security companies and security conferences like BlackHat, RootConf, DEFCON, HackMiami, NullCon, c0c0n etc. He has extensive experience in Offensive as well as Defensive security, Open Source Intelligence and Perimeter Security. He is also an active participant at Null - Open Security Community.

About Sudhanshu Chauhan

Sudhanshu Chauhan is Director and Co-Founder @RedHuntLabs, focusing on Open Source Intelligence (OSINT), Asset Discovery and Perimeter Security. Sudhanshu is a Review Board member at BlackHat Asia. He is the developer of RedHuntOS and one of the core contributors to DataSploit. He has co-authored 'Hacking Web Intelligence', a book on OSINT and web reconnaissance concepts and techniques. He has been a speaker at various conferences such as Ground Zero Summit, CyberHackathon Bar-Ilan University, BlackHat Arsenal, etc. He has been a trainer for 'Tactical OSINT' and 'Web Hacking - Black Belt Edition' at conferences such as BlackHat, AppSec, c0c0n, RootCon, etc. He is the co-founder of Recon Village which runs at DEFCON.