CANCELED:
URL=https://training.defcon.org/products...r-pentesters-1
URL=https://training.defcon.org/products...r-pentesters-1
Originally posted by URL
Name of Training:
OSINT for Pentesters
Description:
Learn and understand the best investigation Methodologies, Techniques and the latest tools that allow to collect the best and more accurate iintelligence.
Training description:
In this training we learn to discover the hidden information in plain sight; The student is going to learn and understand the best investigation Methodologies, Techniques and the latest tools that allow to collect the best and more accurate iintelligence about the target, in a fast and precise way.
Topics:
Sock Puppet Accounts
OpSec (Protect yourself)
OSINT Methodologies
Finding Effective data in Surface, Deep and Dark WEB
Metadata
OSINT for Infrastructure
OSINT for People
SOCMINT
Geolocation
Leaks Search
Fake News Detection
Past content:
Classrooms; the last one: October 2022 for a client to a group of 21 Students.
https://acis.org.co/portal/content/pos-jornada-seguridad-inform%C3%A1tica-202
https://twitter.com/davidpereiracib/...02179705417728
https://ne-np.facebook.com/alassegur...0607674875988/
https://www.youtube.com/watch?v=M3a0CQsRfhs
You can visit my youtube profile; there are tons of training videos. : https://www.youtube.com/c/DavidPereira
Trainer(s) bio:
David F. Pereira
Cybersecurity expert +25 Years Experience Founder and CEO of SecPro
Founder and CEO of SecPro, is a Published Author, Ethical Hacking instructor for DoD +8570, Secret Service, Homeland Security, USAF, Digital Researcher and Consultant with over 25 years of experience in the field of Cybersecurity and Computer Forensics, which has developed consultant activities in Ethical Hacking, Malware Analysis, Penetration Testing and Forensic Analysis for various national and international entities.
Experience in multiple areas such as finance, energy, military, diplomatic, mining, among others. Moreover, he has given many talks at various events security and technology, where we can mention conferences and trainings for DoD, FBI, US Air Force, Secret Service, US. Marines, Joint Operational Cyber Colombia, the National Police of Colombia, the Intelligence Department of the Air Force of Colombia, National Directorate of intelligence of Colombia, CSIRT of the National Police of Colombia, JINA - Chief of Naval intelligence, COLCERT (Colombian CERT), McAfee (Intel Security), Banco de la República (National Bank of Colombia), MINTIC (IT and Communications Ministery), Naval intelligence of Chile, University Andrés Bello in Chile, Federal Police of Brazil, Brazilian Cyber Defense Cybernetics group, Air Force Intelligence of Peru, Argentina Police Force, and American Association of Police - AMERIPOL. He teaches Advanced malware Analysis to the National Prosecutors Office, the Colombia CERT and the Anti-Narcotics Police. On the other hand, it has carried out projects of relevance as protection and mitigation Distributed Denial of Service and Cyber Attacks for elections in Colombia in 2011, 2014 and 2015,2016,2018 and 2019 where he was responsible for protecting the consultation of portals General Registrar's Office to all electoral processes, with excellent results. He is a member of HTCIA (High Technology Crime Investigation Association - Washington Chapter, responsible for investigating cybercrimes worldwide); belong to this organization most of the forces of law of the world, prestigious universities and companies world-renowned; Has been Professor / Trainer and has participated in numerous Academic events in many Latin American Universities, including the Andres Bello University in Chile and the National University of Colombia; Guest lecturer at the Military War Higher School to diverse audiences and Training; Speaker Bsides, OWASP Latam, Official Instructor for Colombian Government ICT project management and IT Information Security in 2014-2015-2016, Ec Council International Instructor, distinguished with the award for Instructor of the Year 2011 and Ec Council Circle of Excellence Award 2012, 2013, 2015 and 2018, and Instructor of the Year 2016 and 2017.
Trainer(s) social media links:
https://www.youtube.com/c/DavidPereira
https://twitter.com/davidpereiracib
https://www.linkedin.com/in/davidfpereira/?locale=en_US
https://speakerhub.com/speaker/david-pereira?b=s
Outline:
Day 1:
Hour 1: Introduction, Concepts, Recon, Tools, Methodology.
Hour 2: Physical vs. Virtual vs. Cloud Attack Platforms; (Select the best for you)
Hour 2-3: OpSec Preparation (Connectivity, Anonymity, Tunneling, APIs, Artificial Intelligence-AI Services)
Hour 4: Know your virtual machine Tools location and preinstalled software (We provide the Virtual Machine ready with all the tools preconfigured)
Hour 5 – 6: From Company Name to Infrastructure Detection
Hour 7: Artificial intelligence for OSINT and Attack Surface Detection
Hour 8: Putting all the information together (Mind maps and other effective tools)
Day 2:
Hour 1-2: Subdomain Enumeration
Hour 3-4 Web Technologies Detection and Attack Surface relations
Hour 4-5: API Attack Surface Detection
Hour 6-7: Users Attack Surface Detection
Hour 8: Leak Info Search
Technical difficulty:
Intermediate
Suggested Prerequisites:
Virtualization, Linux, TCP/IP, Networking.
Desirable: Python
What students should bring:
Laptops with 16 GB RAM
Minimum processor: Core i5 or equivalent.
Vmware Workstation/Player or Virtualbox (Virtual machine is provided)
WiFi or Ethernet capability is required to have internet access.
DATE: August 14th-15th 2023
TIME: 8am to 5pm PDT
VENUE: Caesars Forum, Las Vegas, NV
TRAINER: David F. Pereira
- 16 hours of training with a certificate of completion.
- 2 coffee breaks are provided per day
- Note: Food is not included
Registration terms and conditions:
Trainings are refundable before July 1st, the processing fee is $250.
Trainings are non-refundable after July 10th, 2023.
Training tickets may be transferred. Please email us for specifics.
Failure to attend the Training without prior written notification, will be considered a No-Show. No refund will be given.
By purchasing this ticket you agree to abide by the DCT Code of Conduct and the registration terms and conditions listed above.
OSINT for Pentesters
Description:
Learn and understand the best investigation Methodologies, Techniques and the latest tools that allow to collect the best and more accurate iintelligence.
Training description:
In this training we learn to discover the hidden information in plain sight; The student is going to learn and understand the best investigation Methodologies, Techniques and the latest tools that allow to collect the best and more accurate iintelligence about the target, in a fast and precise way.
Topics:
Sock Puppet Accounts
OpSec (Protect yourself)
OSINT Methodologies
Finding Effective data in Surface, Deep and Dark WEB
Metadata
OSINT for Infrastructure
OSINT for People
SOCMINT
Geolocation
Leaks Search
Fake News Detection
Past content:
Classrooms; the last one: October 2022 for a client to a group of 21 Students.
https://acis.org.co/portal/content/pos-jornada-seguridad-inform%C3%A1tica-202
https://twitter.com/davidpereiracib/...02179705417728
https://ne-np.facebook.com/alassegur...0607674875988/
https://www.youtube.com/watch?v=M3a0CQsRfhs
You can visit my youtube profile; there are tons of training videos. : https://www.youtube.com/c/DavidPereira
Trainer(s) bio:
David F. Pereira
Cybersecurity expert +25 Years Experience Founder and CEO of SecPro
Founder and CEO of SecPro, is a Published Author, Ethical Hacking instructor for DoD +8570, Secret Service, Homeland Security, USAF, Digital Researcher and Consultant with over 25 years of experience in the field of Cybersecurity and Computer Forensics, which has developed consultant activities in Ethical Hacking, Malware Analysis, Penetration Testing and Forensic Analysis for various national and international entities.
Experience in multiple areas such as finance, energy, military, diplomatic, mining, among others. Moreover, he has given many talks at various events security and technology, where we can mention conferences and trainings for DoD, FBI, US Air Force, Secret Service, US. Marines, Joint Operational Cyber Colombia, the National Police of Colombia, the Intelligence Department of the Air Force of Colombia, National Directorate of intelligence of Colombia, CSIRT of the National Police of Colombia, JINA - Chief of Naval intelligence, COLCERT (Colombian CERT), McAfee (Intel Security), Banco de la República (National Bank of Colombia), MINTIC (IT and Communications Ministery), Naval intelligence of Chile, University Andrés Bello in Chile, Federal Police of Brazil, Brazilian Cyber Defense Cybernetics group, Air Force Intelligence of Peru, Argentina Police Force, and American Association of Police - AMERIPOL. He teaches Advanced malware Analysis to the National Prosecutors Office, the Colombia CERT and the Anti-Narcotics Police. On the other hand, it has carried out projects of relevance as protection and mitigation Distributed Denial of Service and Cyber Attacks for elections in Colombia in 2011, 2014 and 2015,2016,2018 and 2019 where he was responsible for protecting the consultation of portals General Registrar's Office to all electoral processes, with excellent results. He is a member of HTCIA (High Technology Crime Investigation Association - Washington Chapter, responsible for investigating cybercrimes worldwide); belong to this organization most of the forces of law of the world, prestigious universities and companies world-renowned; Has been Professor / Trainer and has participated in numerous Academic events in many Latin American Universities, including the Andres Bello University in Chile and the National University of Colombia; Guest lecturer at the Military War Higher School to diverse audiences and Training; Speaker Bsides, OWASP Latam, Official Instructor for Colombian Government ICT project management and IT Information Security in 2014-2015-2016, Ec Council International Instructor, distinguished with the award for Instructor of the Year 2011 and Ec Council Circle of Excellence Award 2012, 2013, 2015 and 2018, and Instructor of the Year 2016 and 2017.
Trainer(s) social media links:
https://www.youtube.com/c/DavidPereira
https://twitter.com/davidpereiracib
https://www.linkedin.com/in/davidfpereira/?locale=en_US
https://speakerhub.com/speaker/david-pereira?b=s
Outline:
Day 1:
Hour 1: Introduction, Concepts, Recon, Tools, Methodology.
Hour 2: Physical vs. Virtual vs. Cloud Attack Platforms; (Select the best for you)
Hour 2-3: OpSec Preparation (Connectivity, Anonymity, Tunneling, APIs, Artificial Intelligence-AI Services)
Hour 4: Know your virtual machine Tools location and preinstalled software (We provide the Virtual Machine ready with all the tools preconfigured)
Hour 5 – 6: From Company Name to Infrastructure Detection
- Ip Ranges Detection
- Infrastructure Providers Detection
- Infrastructure Search Engines
- Automating Host Detection
- Infrastructure Decloaking
- Locating “Temporary” Infrastructure
- Locating “Old” Infrastructure
- Infrastructure Detection Advanced techniques
- Allies Detection
Hour 7: Artificial intelligence for OSINT and Attack Surface Detection
- Intro and Artificial Intelligence Tools
- Using ChatGPT for Attack Surface Detection
- Prompt Engineering for Attack Surface Detection and OSINT - (List of Prompts ready to use are going to be provided)
Hour 8: Putting all the information together (Mind maps and other effective tools)
Day 2:
Hour 1-2: Subdomain Enumeration
- Subdomain Enumeration Techniques
- Advanced Enumeration Techniques
- Automating Subdomain Enumeration
Hour 3-4 Web Technologies Detection and Attack Surface relations
Hour 4-5: API Attack Surface Detection
Hour 6-7: Users Attack Surface Detection
- Usernames Detection
- Email Search
- User Info Search
- Reverse Search
- Metadata
- Automating the process
Hour 8: Leak Info Search
Technical difficulty:
Intermediate
Suggested Prerequisites:
Virtualization, Linux, TCP/IP, Networking.
Desirable: Python
What students should bring:
Laptops with 16 GB RAM
Minimum processor: Core i5 or equivalent.
Vmware Workstation/Player or Virtualbox (Virtual machine is provided)
WiFi or Ethernet capability is required to have internet access.
DATE: August 14th-15th 2023
TIME: 8am to 5pm PDT
VENUE: Caesars Forum, Las Vegas, NV
TRAINER: David F. Pereira
- 16 hours of training with a certificate of completion.
- 2 coffee breaks are provided per day
- Note: Food is not included
Registration terms and conditions:
Trainings are refundable before July 1st, the processing fee is $250.
Trainings are non-refundable after July 10th, 2023.
Training tickets may be transferred. Please email us for specifics.
Failure to attend the Training without prior written notification, will be considered a No-Show. No refund will be given.
By purchasing this ticket you agree to abide by the DCT Code of Conduct and the registration terms and conditions listed above.