It’s an unfortunate reality that governments and nation-states around the world employ sophisticated methods to control and restrict their citizens' access to the Internet. I recently received ...
https://www.digitalforensicstips.com/2024/03/navigating-internet-censorship-in-depth.html
Favicons (short for favorite icons) are the cute little pixelated images that appear next to the site name in web browser tabs, bookmarks, etc. In the image below we can see the iconic GitHu...
https://www.digitalforensicstips.com/2023/12/introducing-faviconlocator-eazy-button.html
There’s a good chance that, at some point, you’ve received a spam email with a link that looked close to the name of a popular domain but was just a little off. Payapl.com instead of Pay...
https://www.digitalforensicstips.com/2023/08/automating-domain-squatting-detection.html
Today I’m presenting a SANS workshop on password cracking for OSINT and digital forensics. The workshop will require no previous knowledge and will progress from explaining how things work to h...
https://www.digitalforensicstips.com/2023/06/why-rainbow-tables-arent-pot-of-gold.html
In huge ChatGPT news this week, they rolled out web browsing capability and plugins for ChatGPT Pro subscribers. That will be what I blog about next week, but for now, I wanted to post part ...
https://www.digitalforensicstips.com/2023/05/expanding-boundaries-of-chatgpt-with_18.html
You have likely noticed a massive influx of applications that claim to use artificial intelligence. Many of these applications are built using a framework called LangChain. In this post, we�...
https://www.digitalforensicstips.com/2023/05/expanding-boundaries-of-chatgpt-with.html
Recently I had a former student reach out and ask me how they could utilize some of their favorite plugins from Chrome on the dark web. There are multiple ways to achieve this, but we’ll l...
https://www.digitalforensicstips.com/2023/05/beyond-tor-browser-proxying.html
Years ago, I wanted to learn digital forensics and started researching what trainings were available. The consensus seemed to be that SANS training courses were amazing, but not inexpensive....
https://www.digitalforensicstips.com/2023/04/lowering-cost-of-education-with-sans.html
Recently I presented a webinar on using ChatGPT for OSINT, where I used the entire one-hour window presenting. I encouraged attendees to ask questions in chat and said I would answer them on my b...
https://www.digitalforensicstips.com/2023/04/cutting-cord-harnessing-openais-whisper.html
Last night I received an email letting me know I had received access to Google’s answer to ChatGPT, Bard. I’ve heard mostly negative reviews about Bard so far, so I wanted to test it on ...
https://www.digitalforensicstips.com/2023/03/how-does-googles-bard-do-in-osint-tests.html
Earlier this week SANS hosted a one-hour Webinar "The New OSINT Cheat Code: ChatGPT". You can watch the webinar and view the slides here: https://www.sans.org/webcasts/new-osint-cheat-code-cha...
https://www.digitalforensicstips.com/2023/03/q-for-31623-chatgpt-for-osint-webinar.html
GitHub with ChatGPT prompts: https://github.com/f/awesome-chatgpt-prompts Matt’s Blog: https://www.digitalforensicstips.com/ Blog post on Hugging Face app “Face Swap”: https://w...
https://www.digitalforensicstips.com/2023/03/links-for-my-3162023-chatgpt-for-osint.html
Years ago, a co-worker mentioned that he used to see the band Offspring play in tiny venues in southern California. They were proud that they were fans long before the band was widely known. Chat...
https://www.digitalforensicstips.com/2023/03/let-hugging-face-give-you-happy-face.html
One question that I’ve been asked a few times in the past year is if I was aware of a good tool to transcribe text from a video or audio file. AWS has its transcribe API for this, but ther...
https://www.digitalforensicstips.com/2023/02/transcribing-like-boss-for-no-cost.html
Recently I wrote a blog post taking a quick look inside the files from some recent malware stealer logs. I got asked (by @Harisfromcyber on Twitter) about the safety precautions one should t...
https://www.digitalforensicstips.com/2023/02/ways-to-help-protect-your-system-when.html
Organizations adjust to changing tactics. This includes both legitimate businesses and criminal enterprises. One example is ransomware. Years ago, ransomware was about holding people’s dat...
https://www.digitalforensicstips.com/2023/02/a-quick-look-inside-data-stealer-logs.html
I have a few servers running on the dark web for my SANSSEC497 Practical OSINT course . The dark web is known for many things, but reliability isn’t necessarily one of them, which is why I have...
https://www.digitalforensicstips.com/2023/01/using-python-to-monitor-onion-dark-web.html
In a recent Discord chat, someone told me that they hated new year’s resolutions, and greatly preferred new year’s themes. I thought about it for a minute, and agreed that was a much better a...
https://www.digitalforensicstips.com/2023/01/themes-for-2023.html
You may have read that Twitter was hacked and hundreds of millions of user's data was stolen. In this post we'll talk about what happened, and what's in the data. This wasn't a breach in the way ...
https://www.digitalforensicstips.com/2023/01/a-quick-look-at-whats-inside-142023.html
Welcome to the second post in our series on getting started using AWS services for OSINT. Last post we covered setting up an AWS account, getting the command line interface installed and configur...
https://www.digitalforensicstips.com/2020/05/nation-state-quality-osint-on-taco-bell.html
I remember taking digital forensics classes years ago and at the very end of the class feeling like I had learned a ton, had a great time, but was also wondering “Ok, what’s next?” When I...
https://www.digitalforensicstips.com/2020/04/nation-state-quality-osint-on-taco-bell.html
Tomorrow I’ll be giving a talk on breach data including: Places where it’s located How to make large data sets searchable in a reasonable amount of time How some organizations are using breac...
https://www.digitalforensicstips.com/2020/02/filelocator-pro-tips-and-tricks-for.html
Early this week, Archive.org hosted a dump of a SQL databasehacked from a neo nazi forum online known as Iron March at https://archive.org/details/iron_march_201911 .While there were some .CSV fi...
https://www.digitalforensicstips.com/2019/11/using-bulk-extractor-for-quick-osint.html
Recently one of the SANS SEC504 labs updated and with the changes came a new set of hashes from the exercises. These hashes are a perfect opportunity to dive a bit deeper and try to determine wha...
https://www.digitalforensicstips.com/2019/10/a-quick-look-at-mdxfind.html
I’ve decided to write a few blog posts about tools that Ithink are really cool that not everyone knows about. First up on my list is Seatbeltwhich is part of the GhostPac suite recently release...
https://www.digitalforensicstips.com/2018/09/a-quick-look-at-seatbelt-for-system.html