Reducing Risk with Third-Party Attack Surface Monitoring
How can organizations monitor the cybersecurity risks that come from third parties and their suppliers? Monitoring the attack surface of partners can illuminate risks. Here's how to do it.
Intel 471 Acquires SpiderFoot
WILMINGTON, Del. – November 2, 2022 – Intel 471, the premier provider of cyber threat intelligence for leading intelligence, security, and fraud teams across the globe, today announced the acquisition of SpiderFoot,
Uncovering a Fake Recruiter Scam
This write-up comes from a long time SpiderFoot user, Osint_Matter, a senior threat intelligence professional who uses SpiderFoot
How OSINT Can Be Used to Elevate DFIR
My name is Jude, I’m a Security Analyst working with a Security Operations Center (SOC) team based in Australia. Outside of the usual SOC tasks (alert management, detection use cases), I work on specialist engagements
Discovering the Infrastructure of an iCloud Phishing Scam
In a lot of major cities in the world, pickpocketing and phone-snatch robberies are very common. Modern smartphones are expensive and easy to sell, and it makes them better targets than wallets that often contain no cash. The...
Using SpiderFoot for Offensive Reconnaissance: Part 2 – Validation
My name is Jude, I’m a Security Analyst working with a Security Operations Center (SOC) team based in Australia. Outside of the usual SOC tasks (alert management, detection use cases), I work on specialist engagements around ...
Using SpiderFoot for Offensive Reconnaissance: Part 1 – Discovery
My name is Jude, I’m a Security Analyst working with a Security Operations Center (SOC) team based in Australia. Outside of the usual SOC tasks (alert management, detection use cases), I work on specialist engagements around ...
Using SpiderFoot to Investigate Phishing Domains Targeting Ukrainian Soldiers
My name is Luke, but you might know me as @hakluke! I’m a cybersecurity professional, primarily focusing on application security and red teaming. Occasionally in my spare time I get to test my OSINT skills for something inter...
Using SpiderFoot to Investigate a Public Bug Bounty Program
My name is Jude, I’m a Security Analyst working with a Security Operations Center (SOC) team based in Australia. Outside of the usual SOC tasks (alert management, detection use cases), I work on specialist engagements around ...
All the OSINT You Can Get From a Single Webpage Request
Before busting out your arsenal of tools to rip a website apart, it can be really useful to just go back to basics and start by simply making a request to the website and analyzing its response. This applies to beginners as w...