back to workshop overview

Workshop

Exploring all the INT’s

Register

April 23rd & 24th, 2024

2 days training, by Jason Spencer & Ulrich Swart
This training will be given in ENGLISH

Normal price: CHF 2’000.–
Student price: CHF 1’500.- (limited availability)

Description

The world is full of data; people and organizations share, expose and divulge an immense amount of information on a daily basis. With the right skills, knowledge and mindset all this information can become useful for targeted attacks and compromise.

In this course we’ll expose you to the gathering of actionable intelligence across all realms of Open Source Intelligence including HUMINT (Human Intelligence) and SOCMINT (Social Media Intelligence) in order to facilitate and position attacks against individuals and organizations through various operations.
This course will expose you to the techniques to distinguish between valuable and invaluable information, points of gathering and the lifecycle of information intelligence.

About the trainer

Jason Spencer is a senior security analyst at SensePost. He found his passion in information security during his honours year at Rhodes university where he studied computer science and information systems. Over the years he has delivered public talks, provided various trainings internationally and have shared his hacking knowledge with 100s of organisations. When he is not busy hacking into the night, he often breaks company signs.

Ulrich Swart is the training manager at SensePost – Orange Cyberdefense. Given his years of experience as a penetration tester he naturally fell into the hacking training realm – wanting to share his knowledge with others. He’s given training all over the world and have delivered public talks. He has a passion for information security and business, but he usually approaches non infosec topics from a weird angle so try and not get lost in his philosophical ramblings.

SensePost Training is a division of Orange Cyberdefense South Africa focused on the creation and delivery of world-class ethical hacking trainings. Providing real-world trainings derived from the work performed for clients it is practical and lab driven. SensePost have trained 1000s of students over the last 2 decades.

Course outline

Introductions

Intelligence landscape

  • Defining Information
  • Different INTs (HUMINTSIGINTSOCMINT)
  • How it can be used in attacks (SOCENG & INTRUSION) – Actionable Information

Operational Security

  • Anonymity
  • Hiding Identity
  • Personas & Sock Puppets (How to create the ideal puppet)
  • Building Legitimacy / Repertoire (Using AI to create content/context)

Search Engine Operators and Sources Of Information

  • Valuable information
  • Where to find information online
  • OSINT Framework / Similar Tools
  • Search Engines

Intelligence Operations Fundamentals

  • Phases/Methodology of a INTOP
  • How it can go wrong
  • Planning for what you need in your op * Deep/Dark Web
  • Tor/Forums

Targeting Organisations

  • General Information
  • Physical Information
  • Digital Information
  • Social Information

Gathering Human Intelligence

  • General Information
  • Physical Information
  • Digital Information
  • Social Information

Geolocation and Tracking

  • Positioning, tracking and identification
  • Meta data and identifiable data points

Social Engineering Techniques

  • Types of SOCENG
  • What information will be required
  • AI in SOCENG

Discreet Information Dissemination

  • Comms Channels
  • Steganography
  • Newer techniques

Conclusion

  • Why this is all important

Course requirements

Pre-Requisites

  • Basic knowledge with linux command line
  • Basic information technology understanding

Software requirements

  • A working laptop with a modern browser (FireFox/Chrome Preferred)

Organized by

Sponsors

Technology partners

Partner events

Scroll to Top