SEC497: SANS London June 2023

What You Will Learn

SEC497 is a comprehensive training course on Open-Source Intelligence (OSINT) written by an industry professional with over two decades of experience. The course is designed to teach you the most important skills, tools, and methods needed to launch or further refine your investigation skills. SEC497 will provide actionable information to students throughout the OSINT world, including intelligence analysts, law enforcement officials, cyber threat intelligence and cyber defenders, pen testers, investigators, and anyone else who wants to improve their OSINT skills. There is something for everyone, from newcomers to experienced practitioners.

SEC497 focuses on practical techniques that are useful day in and day out. This course is constructed to be accessible for those new to OSINT while providing experienced practitioners with tried-and-true tools that they can add to their arsenal to solve real-world problems. The course has a strong focus on understanding how systems work to facilitate informed decisions, and includes hands-on exercises based on actual scenarios from the government and private sectors. We will discuss cutting-edge research and outlier techniques and not only talk about what is possible, we will practice doing it! Dive into the course syllabus below for a detailed breakdown of the topics covered.

BUSINESS TAKEAWAYS:

This course will help your organization:

• Improve the effectiveness, efficiency, and success of OSINT investigations
• Build an OSINT team that can perform a variety of OSINT investigations while practicing good OPSEC
• Create accurate reporting of your organization's online infrastructure
• Understand how breach data can be used for offensive and defensive purposes

You will be able to:

• Perform a variety of OSINT investigations while practicing good OPSEC
• Create sock puppet accounts
• Locate information on the internet, including some hard-to-find and deleted information
• Locate individuals online and examine their online presence
• Understand and effectively search the dark web
• Create an accurate report of the online infrastructure for cyber defense, merger and acquisition analysis, pen testing, and other critical areas for an organization.
• Use methods that can often reveal who owns a website as well as the other websites that they own or operate
• Understand the different types of breach data available and how they can be used for offensive and defensive purposes
• Effectively gather and utilize social media data
• Understand and use facial recognition and facial comparison engines
• Quickly and easily triage large datasets to learn what they contain
• Identify malicious documents and documents designed to give away your location

Hands-On Labs

SEC497 has 29 hands-on exercises based on actual scenarios for the government and private sector.

You will receive with this course:

• A Linux virtual machine complete with electronic workbook