SlideShare ist ein Scribd-Unternehmen logo

OSINT using Twitter & Python

3
37point2
1 von 44
Downloaden Sie, um offline zu lesen
OSINT Footprinting Using Twitter and Python
Who am I?  Raymond Lilly  @37point2  Analyst at a Social Media/Customer Relations Management company  Senior, Eastern Michigan University  Information Assurance/Network Security
What are we talking about?  OSINT gathering methods  Research with implications in  Intelligence  Social Engineering  Marketing
Intelligence  What are people talking about?  Intel vs Counter Intel  Targeting concerns Individuals/Groups Geographic regions Time Topics
Social Engineering Leaking information  What do your co-workers/employees talk about during/after work?  IT talking about new tech deployments?  Any employees venting about internal issues?  C levels discussing personal hobbies/travel plans?
Marketing  Can you identify your customers?  What are they talking about?/What other interests do they have?  Can you profile them and use that to reach new potential customers?  Find new markets?  Reduce your customer assistance cost or increase customer satisfaction?
Fun Stuff  New Job info  What’s the corporate culture like?  Does the company embrace new tech/ideas or shun them?  Amplify the reach of your messages  Find organizations/groups that are interested in the same things you are
Key Twitter Concepts  Tweets – 140 characters  Following  Friends  Followers  Did you pick the user?
Followers A -> B
Friends B -> C
A -> B -> C
Twitter’s API  https://dev.twitter.com/docs/api  Authenticated vs. Unauthenticated  How hard is it to get OAuth Tokens?  REST  Streaming
Tweepy!  Python module for Twitter’s API  https://github.com/tweepy/tweepy/  Joshthecoder
GET status/user_timeline  Takes a user_id or screen_name  since_id  count  exclude_replies  include_rts  Tweepy.api.get_status(‘37point2’)
GET users/show  user_id/screen_name  include_entities  ^-- Awesome!  Tweepy.api.get_user(‘37point2’)
 "id": 286868576,  "id_str": "286868576",  "name": "37point2",  "screen_name": "37point2",  "location": "",  "description": "Information Assurance student at Eastern Michigan University. rnIntel Analysis, Data Viz, Incident Response",  "url": "http://www.linkedin.com/in/raymondlilly",  "protected": false,  "followers_count": 244,  "friends_count": 992,  "listed_count": 6,  "created_at": "Sat Apr 23 21:25:44 +0000 2011",  "utc_offset": -18000,  "time_zone": "Eastern Time (US & Canada)",
"description": "Information Assurance student at Eastern Michigan University. rnIntel Analysis, Data Viz, Incident Response",
Method to the Madness  Information Needed/Gathered  Tools used  Visualization  Analysis
Echo Chamber  Last 1000 Tweets of everyone followed  Basic Word Count  Wordle.net
Tweets per Day  Individual  Last 3200 Tweets  Community  Last 1000 Tweets (#infosec – May 18-21)  Plot Tweets over weekdays
Hashtags/Topics  Last 3200 Tweets  include_entities! #lazyhacker  include_rts  Google Visualization API  Hashtags & HashtagsWithRetweets
Retweets/Replies  Last 3200 Tweets  include_entities  include_rts!!!  Retweets  Replies  Best time for a response?
Interactions w/ Influence and Topics  Klout  BOO!!!  Changes algorithm daily  What is the algorithm? /shrug  Weights social media sites differently  Useful  Topics!!  Score used as guideline
Model  Last 3200 Tweets  Include all the things!  Add Klout score and topics
Formula for Influence  Klout^2 * interactions  50 vs 60  2500 vs 3600
Time to get interactive!
Clients  Last 3200 Tweets  Total Counts  Client usage over time
More moving stuff!
Interactions & Topics  Last 3200 Tweets  include_entities  Maltego CaseFile  Community Edition
Interesting Tools  Tweetstats.com  Twopcharts  Klout  Kred  Socialmention  NetworkX
Contact Info  Raymond Lilly  @37point2  rlilly@emich.edu

Empfohlen

Open Source Intelligence (OSINT)
Open Source Intelligence (OSINT)Open Source Intelligence (OSINT)
Open Source Intelligence (OSINT)festival ICT 2016
 
OSINT for Attack and Defense
OSINT for Attack and DefenseOSINT for Attack and Defense
OSINT for Attack and DefenseAndrew McNicol
 
Red teaming probably isn't for you
Red teaming probably isn't for youRed teaming probably isn't for you
Red teaming probably isn't for youToby Kohlenberg
 
OSINT- Leveraging data into intelligence
OSINT- Leveraging data into intelligenceOSINT- Leveraging data into intelligence
OSINT- Leveraging data into intelligenceDeep Shankar Yadav
 
OSINT: Open Source Intelligence gathering
OSINT: Open Source Intelligence gatheringOSINT: Open Source Intelligence gathering
OSINT: Open Source Intelligence gatheringJeremiah Tillman
 
Open source intelligence information gathering (OSINT)
Open source intelligence information gathering (OSINT)Open source intelligence information gathering (OSINT)
Open source intelligence information gathering (OSINT)phexcom1
 
Red team Engagement
Red team EngagementRed team Engagement
Red team EngagementIndranil Banerjee
 
Building an InfoSec RedTeam
Building an InfoSec RedTeamBuilding an InfoSec RedTeam
Building an InfoSec RedTeamDan Vasile
 

Weitere ähnliche Inhalte

Was ist angesagt?

Tools for Open Source Intelligence (OSINT)
Tools for Open Source Intelligence (OSINT)Tools for Open Source Intelligence (OSINT)
Tools for Open Source Intelligence (OSINT)Sudhanshu Chauhan
 
Osint presentation nov 2019
Osint presentation nov 2019Osint presentation nov 2019
Osint presentation nov 2019Priyanka Aash
 
osint - open source Intelligence
osint - open source Intelligenceosint - open source Intelligence
osint - open source IntelligenceOsama Ellahi
 
OSINT 2.0 - Past, present and future
OSINT 2.0 - Past, present and futureOSINT 2.0 - Past, present and future
OSINT 2.0 - Past, present and futureChristian Martorella
 
Getting started with using the Dark Web for OSINT investigations
Getting started with using the Dark Web for OSINT investigationsGetting started with using the Dark Web for OSINT investigations
Getting started with using the Dark Web for OSINT investigationsOlakanmi Oluwole
 
My darkweb-presentation
My darkweb-presentationMy darkweb-presentation
My darkweb-presentationPaul Wilson
 
Adversary Emulation and Red Team Exercises - EDUCAUSE
Adversary Emulation and Red Team Exercises - EDUCAUSEAdversary Emulation and Red Team Exercises - EDUCAUSE
Adversary Emulation and Red Team Exercises - EDUCAUSEJorge Orchilles
 
What is Open Source Intelligence (OSINT)
What is Open Source Intelligence (OSINT)What is Open Source Intelligence (OSINT)
What is Open Source Intelligence (OSINT)Molfar
 
ATTACKers Think in Graphs: Building Graphs for Threat Intelligence
ATTACKers Think in Graphs: Building Graphs for Threat IntelligenceATTACKers Think in Graphs: Building Graphs for Threat Intelligence
ATTACKers Think in Graphs: Building Graphs for Threat IntelligenceMITRE - ATT&CKcon
 
Open source intelligence
Open source intelligenceOpen source intelligence
Open source intelligencebalakumaran779
 
ATTACK-Onomics: Attacking the Economics Behind Techniques Used by Adversaries
ATTACK-Onomics: Attacking the Economics Behind Techniques Used by AdversariesATTACK-Onomics: Attacking the Economics Behind Techniques Used by Adversaries
ATTACK-Onomics: Attacking the Economics Behind Techniques Used by AdversariesMITRE - ATT&CKcon
 
Deepweb and darkweb vinodkumar ancha
Deepweb and darkweb vinodkumar anchaDeepweb and darkweb vinodkumar ancha
Deepweb and darkweb vinodkumar anchavinod kumar
 
The top 10 windows logs event id's used v1.0
The top 10 windows logs event id's used v1.0The top 10 windows logs event id's used v1.0
The top 10 windows logs event id's used v1.0Michael Gough
 
Cyber threat intelligence ppt
Cyber threat intelligence pptCyber threat intelligence ppt
Cyber threat intelligence pptKumar Gaurav
 
OSINT with Practical: Real Life Examples
OSINT with Practical: Real Life ExamplesOSINT with Practical: Real Life Examples
OSINT with Practical: Real Life ExamplesSyedAmoz
 
EDR vs SIEM - The fight is on
EDR vs SIEM - The fight is onEDR vs SIEM - The fight is on
EDR vs SIEM - The fight is onJustin Henderson
 
Threat Modelling - It's not just for developers
Threat Modelling - It's not just for developersThreat Modelling - It's not just for developers
Threat Modelling - It's not just for developersMITRE ATT&CK
 
OSINT: analisi dei metadati ed acquisizione da fonti aperte con FOCA e Shodan
OSINT: analisi dei metadati ed acquisizione da fonti aperte con FOCA e ShodanOSINT: analisi dei metadati ed acquisizione da fonti aperte con FOCA e Shodan
OSINT: analisi dei metadati ed acquisizione da fonti aperte con FOCA e ShodanDanilo De Rogatis
 

Was ist angesagt? (20)

Tools for Open Source Intelligence (OSINT)
Tools for Open Source Intelligence (OSINT)Tools for Open Source Intelligence (OSINT)
Tools for Open Source Intelligence (OSINT)
 
Osint presentation nov 2019
Osint presentation nov 2019Osint presentation nov 2019
Osint presentation nov 2019
 
osint - open source Intelligence
osint - open source Intelligenceosint - open source Intelligence
osint - open source Intelligence
 
OSINT 2.0 - Past, present and future
OSINT 2.0 - Past, present and futureOSINT 2.0 - Past, present and future
OSINT 2.0 - Past, present and future
 
Getting started with using the Dark Web for OSINT investigations
Getting started with using the Dark Web for OSINT investigationsGetting started with using the Dark Web for OSINT investigations
Getting started with using the Dark Web for OSINT investigations
 
My darkweb-presentation
My darkweb-presentationMy darkweb-presentation
My darkweb-presentation
 
Adversary Emulation and Red Team Exercises - EDUCAUSE
Adversary Emulation and Red Team Exercises - EDUCAUSEAdversary Emulation and Red Team Exercises - EDUCAUSE
Adversary Emulation and Red Team Exercises - EDUCAUSE
 
What is Open Source Intelligence (OSINT)
What is Open Source Intelligence (OSINT)What is Open Source Intelligence (OSINT)
What is Open Source Intelligence (OSINT)
 
ATTACKers Think in Graphs: Building Graphs for Threat Intelligence
ATTACKers Think in Graphs: Building Graphs for Threat IntelligenceATTACKers Think in Graphs: Building Graphs for Threat Intelligence
ATTACKers Think in Graphs: Building Graphs for Threat Intelligence
 
Open source intelligence
Open source intelligenceOpen source intelligence
Open source intelligence
 
OSINT
OSINTOSINT
OSINT
 
ATTACK-Onomics: Attacking the Economics Behind Techniques Used by Adversaries
ATTACK-Onomics: Attacking the Economics Behind Techniques Used by AdversariesATTACK-Onomics: Attacking the Economics Behind Techniques Used by Adversaries
ATTACK-Onomics: Attacking the Economics Behind Techniques Used by Adversaries
 
Osint
OsintOsint
Osint
 
Deepweb and darkweb vinodkumar ancha
Deepweb and darkweb vinodkumar anchaDeepweb and darkweb vinodkumar ancha
Deepweb and darkweb vinodkumar ancha
 
The top 10 windows logs event id's used v1.0
The top 10 windows logs event id's used v1.0The top 10 windows logs event id's used v1.0
The top 10 windows logs event id's used v1.0
 
Cyber threat intelligence ppt
Cyber threat intelligence pptCyber threat intelligence ppt
Cyber threat intelligence ppt
 
OSINT with Practical: Real Life Examples
OSINT with Practical: Real Life ExamplesOSINT with Practical: Real Life Examples
OSINT with Practical: Real Life Examples
 
EDR vs SIEM - The fight is on
EDR vs SIEM - The fight is onEDR vs SIEM - The fight is on
EDR vs SIEM - The fight is on
 
Threat Modelling - It's not just for developers
Threat Modelling - It's not just for developersThreat Modelling - It's not just for developers
Threat Modelling - It's not just for developers
 
OSINT: analisi dei metadati ed acquisizione da fonti aperte con FOCA e Shodan
OSINT: analisi dei metadati ed acquisizione da fonti aperte con FOCA e ShodanOSINT: analisi dei metadati ed acquisizione da fonti aperte con FOCA e Shodan
OSINT: analisi dei metadati ed acquisizione da fonti aperte con FOCA e Shodan
 

Andere mochten auch

How to Use Open Source Intelligence (OSINT) in Investigations
How to Use Open Source Intelligence (OSINT) in InvestigationsHow to Use Open Source Intelligence (OSINT) in Investigations
How to Use Open Source Intelligence (OSINT) in InvestigationsCase IQ
 
Blackmagic Open Source Intelligence OSINT
Blackmagic Open Source Intelligence OSINTBlackmagic Open Source Intelligence OSINT
Blackmagic Open Source Intelligence OSINTSudhanshu Chauhan
 
Jupyter Ascending: a practical hand guide to galactic scale, reproducible dat...
Jupyter Ascending: a practical hand guide to galactic scale, reproducible dat...Jupyter Ascending: a practical hand guide to galactic scale, reproducible dat...
Jupyter Ascending: a practical hand guide to galactic scale, reproducible dat...John Fonner
 
JupyterHub for Interactive Data Science Collaboration
JupyterHub for Interactive Data Science CollaborationJupyterHub for Interactive Data Science Collaboration
JupyterHub for Interactive Data Science CollaborationCarol Willing
 
Jupyter, A Platform for Data Science at Scale
Jupyter, A Platform for Data Science at ScaleJupyter, A Platform for Data Science at Scale
Jupyter, A Platform for Data Science at ScaleMatthias Bussonnier
 
Osint overview 26 mar 2015
Osint overview 26 mar 2015Osint overview 26 mar 2015
Osint overview 26 mar 2015Mats Björe
 
D3 in Jupyter : PyData NYC 2015
D3 in Jupyter : PyData NYC 2015D3 in Jupyter : PyData NYC 2015
D3 in Jupyter : PyData NYC 2015Brian Coffey
 
OSINT y hacking con buscadores #Palabradehacker
OSINT y hacking con buscadores #PalabradehackerOSINT y hacking con buscadores #Palabradehacker
OSINT y hacking con buscadores #PalabradehackerYolanda Corral
 
Your first TensorFlow programming with Jupyter
Your first TensorFlow programming with JupyterYour first TensorFlow programming with Jupyter
Your first TensorFlow programming with JupyterEtsuji Nakai
 
What you need to know about OSINT
What you need to know about OSINTWhat you need to know about OSINT
What you need to know about OSINTJerod Brennen
 
Osint 2ool-kit-on the-go-bag-o-tradecraft
Osint 2ool-kit-on the-go-bag-o-tradecraftOsint 2ool-kit-on the-go-bag-o-tradecraft
Osint 2ool-kit-on the-go-bag-o-tradecraftSteph Cliche
 
Jupyter Kernel: How to Speak in Another Language
Jupyter Kernel: How to Speak in Another LanguageJupyter Kernel: How to Speak in Another Language
Jupyter Kernel: How to Speak in Another LanguageWey-Han Liaw
 

Andere mochten auch (13)

How to Use Open Source Intelligence (OSINT) in Investigations
How to Use Open Source Intelligence (OSINT) in InvestigationsHow to Use Open Source Intelligence (OSINT) in Investigations
How to Use Open Source Intelligence (OSINT) in Investigations
 
Blackmagic Open Source Intelligence OSINT
Blackmagic Open Source Intelligence OSINTBlackmagic Open Source Intelligence OSINT
Blackmagic Open Source Intelligence OSINT
 
Jupyter Ascending: a practical hand guide to galactic scale, reproducible dat...
Jupyter Ascending: a practical hand guide to galactic scale, reproducible dat...Jupyter Ascending: a practical hand guide to galactic scale, reproducible dat...
Jupyter Ascending: a practical hand guide to galactic scale, reproducible dat...
 
JupyterHub for Interactive Data Science Collaboration
JupyterHub for Interactive Data Science CollaborationJupyterHub for Interactive Data Science Collaboration
JupyterHub for Interactive Data Science Collaboration
 
Jupyter, A Platform for Data Science at Scale
Jupyter, A Platform for Data Science at ScaleJupyter, A Platform for Data Science at Scale
Jupyter, A Platform for Data Science at Scale
 
Osint overview 26 mar 2015
Osint overview 26 mar 2015Osint overview 26 mar 2015
Osint overview 26 mar 2015
 
D3 in Jupyter : PyData NYC 2015
D3 in Jupyter : PyData NYC 2015D3 in Jupyter : PyData NYC 2015
D3 in Jupyter : PyData NYC 2015
 
OSINT y hacking con buscadores #Palabradehacker
OSINT y hacking con buscadores #PalabradehackerOSINT y hacking con buscadores #Palabradehacker
OSINT y hacking con buscadores #Palabradehacker
 
Your first TensorFlow programming with Jupyter
Your first TensorFlow programming with JupyterYour first TensorFlow programming with Jupyter
Your first TensorFlow programming with Jupyter
 
What you need to know about OSINT
What you need to know about OSINTWhat you need to know about OSINT
What you need to know about OSINT
 
Osint 2ool-kit-on the-go-bag-o-tradecraft
Osint 2ool-kit-on the-go-bag-o-tradecraftOsint 2ool-kit-on the-go-bag-o-tradecraft
Osint 2ool-kit-on the-go-bag-o-tradecraft
 
Offensive OSINT
Offensive OSINTOffensive OSINT
Offensive OSINT
 
Jupyter Kernel: How to Speak in Another Language
Jupyter Kernel: How to Speak in Another LanguageJupyter Kernel: How to Speak in Another Language
Jupyter Kernel: How to Speak in Another Language
 

Ähnlich wie OSINT using Twitter & Python

Sentimental Emotion Analysis using Python and Machine Learning
Sentimental Emotion Analysis using Python and Machine LearningSentimental Emotion Analysis using Python and Machine Learning
Sentimental Emotion Analysis using Python and Machine LearningYogeshIJTSRD
 
Twitter Sentiment Analysis
Twitter Sentiment AnalysisTwitter Sentiment Analysis
Twitter Sentiment Analysisijtsrd
 
Intranet 2.0 by Toby Ward, Prescient Digital Media
Intranet 2.0 by Toby Ward, Prescient Digital MediaIntranet 2.0 by Toby Ward, Prescient Digital Media
Intranet 2.0 by Toby Ward, Prescient Digital MediaPrescient Digital Media
 
Knowledge Extraction from Social Media
Knowledge Extraction from Social MediaKnowledge Extraction from Social Media
Knowledge Extraction from Social MediaSeth Grimes
 
Improve Customer Experience Management with Text Analytics - MeaningCloud web...
Improve Customer Experience Management with Text Analytics - MeaningCloud web...Improve Customer Experience Management with Text Analytics - MeaningCloud web...
Improve Customer Experience Management with Text Analytics - MeaningCloud web...MeaningCloud
 
IRJET - Implementation of Twitter Sentimental Analysis According to Hash Tag
IRJET - Implementation of Twitter Sentimental Analysis According to Hash Tag IRJET - Implementation of Twitter Sentimental Analysis According to Hash Tag
IRJET - Implementation of Twitter Sentimental Analysis According to Hash TagIRJET Journal
 
Optimizing Organizational Knowledge With Project Cortex & The Microsoft Digit...
Optimizing Organizational Knowledge With Project Cortex & The Microsoft Digit...Optimizing Organizational Knowledge With Project Cortex & The Microsoft Digit...
Optimizing Organizational Knowledge With Project Cortex & The Microsoft Digit...Richard Harbridge
 
Diy research trends webinar(2) revised(2)
Diy research trends webinar(2) revised(2)Diy research trends webinar(2) revised(2)
Diy research trends webinar(2) revised(2)QuestionPro
 
Leveraging Twitter for Business
Leveraging Twitter for BusinessLeveraging Twitter for Business
Leveraging Twitter for BusinessRichard Brasser
 
Let's Talk: fundamentals of conversational design
Let's Talk: fundamentals of conversational designLet's Talk: fundamentals of conversational design
Let's Talk: fundamentals of conversational designNikita Lukianets
 
IRJET- Review Analyser with Bot
IRJET- Review Analyser with BotIRJET- Review Analyser with Bot
IRJET- Review Analyser with BotIRJET Journal
 
From Rocket Science to Data Science
From Rocket Science to Data ScienceFrom Rocket Science to Data Science
From Rocket Science to Data ScienceSanghamitra Deb
 
Bg Concordia Socnet Identity Final
Bg Concordia Socnet Identity FinalBg Concordia Socnet Identity Final
Bg Concordia Socnet Identity FinalMike Gotta
 
DETECTION OF MALICIOUS SOCIAL BOTS USING ML TECHNIQUE IN TWITTER NETWORK
DETECTION OF MALICIOUS SOCIAL BOTS USING ML TECHNIQUE IN TWITTER NETWORKDETECTION OF MALICIOUS SOCIAL BOTS USING ML TECHNIQUE IN TWITTER NETWORK
DETECTION OF MALICIOUS SOCIAL BOTS USING ML TECHNIQUE IN TWITTER NETWORKIRJET Journal
 
Lightning Talk Session - Connecting Altmetric (K. Capretta)
Lightning Talk Session - Connecting Altmetric (K. Capretta)Lightning Talk Session - Connecting Altmetric (K. Capretta)
Lightning Talk Session - Connecting Altmetric (K. Capretta)ORCID, Inc
 
Talentbin Sales Deck
Talentbin Sales DeckTalentbin Sales Deck
Talentbin Sales DeckVishal Kumar
 
Talent Bin
Talent BinTalent Bin
Talent BinRyan Gum
 
HCL's Coolest Interview Ever Season 2 Idea
HCL's Coolest Interview Ever Season 2 IdeaHCL's Coolest Interview Ever Season 2 Idea
HCL's Coolest Interview Ever Season 2 IdeaSoumitra Roy
 
Thinkful DC - Intro to Data Science
Thinkful DC - Intro to Data Science Thinkful DC - Intro to Data Science
Thinkful DC - Intro to Data Science TJ Stalcup
 

Ähnlich wie OSINT using Twitter & Python (20)

Sentimental Emotion Analysis using Python and Machine Learning
Sentimental Emotion Analysis using Python and Machine LearningSentimental Emotion Analysis using Python and Machine Learning
Sentimental Emotion Analysis using Python and Machine Learning
 
Twitter Sentiment Analysis
Twitter Sentiment AnalysisTwitter Sentiment Analysis
Twitter Sentiment Analysis
 
Intranet 2.0 by Toby Ward, Prescient Digital Media
Intranet 2.0 by Toby Ward, Prescient Digital MediaIntranet 2.0 by Toby Ward, Prescient Digital Media
Intranet 2.0 by Toby Ward, Prescient Digital Media
 
Knowledge Extraction from Social Media
Knowledge Extraction from Social MediaKnowledge Extraction from Social Media
Knowledge Extraction from Social Media
 
Improve Customer Experience Management with Text Analytics - MeaningCloud web...
Improve Customer Experience Management with Text Analytics - MeaningCloud web...Improve Customer Experience Management with Text Analytics - MeaningCloud web...
Improve Customer Experience Management with Text Analytics - MeaningCloud web...
 
IRJET - Implementation of Twitter Sentimental Analysis According to Hash Tag
IRJET - Implementation of Twitter Sentimental Analysis According to Hash Tag IRJET - Implementation of Twitter Sentimental Analysis According to Hash Tag
IRJET - Implementation of Twitter Sentimental Analysis According to Hash Tag
 
Optimizing Organizational Knowledge With Project Cortex & The Microsoft Digit...
Optimizing Organizational Knowledge With Project Cortex & The Microsoft Digit...Optimizing Organizational Knowledge With Project Cortex & The Microsoft Digit...
Optimizing Organizational Knowledge With Project Cortex & The Microsoft Digit...
 
Diy research trends webinar(2) revised(2)
Diy research trends webinar(2) revised(2)Diy research trends webinar(2) revised(2)
Diy research trends webinar(2) revised(2)
 
Leveraging Twitter for Business
Leveraging Twitter for BusinessLeveraging Twitter for Business
Leveraging Twitter for Business
 
Let's Talk: fundamentals of conversational design
Let's Talk: fundamentals of conversational designLet's Talk: fundamentals of conversational design
Let's Talk: fundamentals of conversational design
 
IRJET- Review Analyser with Bot
IRJET- Review Analyser with BotIRJET- Review Analyser with Bot
IRJET- Review Analyser with Bot
 
Big data. Opportunità e rischi
Big data. Opportunità e rischiBig data. Opportunità e rischi
Big data. Opportunità e rischi
 
From Rocket Science to Data Science
From Rocket Science to Data ScienceFrom Rocket Science to Data Science
From Rocket Science to Data Science
 
Bg Concordia Socnet Identity Final
Bg Concordia Socnet Identity FinalBg Concordia Socnet Identity Final
Bg Concordia Socnet Identity Final
 
DETECTION OF MALICIOUS SOCIAL BOTS USING ML TECHNIQUE IN TWITTER NETWORK
DETECTION OF MALICIOUS SOCIAL BOTS USING ML TECHNIQUE IN TWITTER NETWORKDETECTION OF MALICIOUS SOCIAL BOTS USING ML TECHNIQUE IN TWITTER NETWORK
DETECTION OF MALICIOUS SOCIAL BOTS USING ML TECHNIQUE IN TWITTER NETWORK
 
Lightning Talk Session - Connecting Altmetric (K. Capretta)
Lightning Talk Session - Connecting Altmetric (K. Capretta)Lightning Talk Session - Connecting Altmetric (K. Capretta)
Lightning Talk Session - Connecting Altmetric (K. Capretta)
 
Talentbin Sales Deck
Talentbin Sales DeckTalentbin Sales Deck
Talentbin Sales Deck
 
Talent Bin
Talent BinTalent Bin
Talent Bin
 
HCL's Coolest Interview Ever Season 2 Idea
HCL's Coolest Interview Ever Season 2 IdeaHCL's Coolest Interview Ever Season 2 Idea
HCL's Coolest Interview Ever Season 2 Idea
 
Thinkful DC - Intro to Data Science
Thinkful DC - Intro to Data Science Thinkful DC - Intro to Data Science
Thinkful DC - Intro to Data Science
 

OSINT using Twitter & Python

  • 2. Who am I?  Raymond Lilly  @37point2  Analyst at a Social Media/Customer Relations Management company  Senior, Eastern Michigan University  Information Assurance/Network Security
  • 3. What are we talking about?  OSINT gathering methods  Research with implications in  Intelligence  Social Engineering  Marketing
  • 4. Intelligence  What are people talking about?  Intel vs Counter Intel  Targeting concerns Individuals/Groups Geographic regions Time Topics
  • 5. Social Engineering Leaking information  What do your co-workers/employees talk about during/after work?  IT talking about new tech deployments?  Any employees venting about internal issues?  C levels discussing personal hobbies/travel plans?
  • 6. Marketing  Can you identify your customers?  What are they talking about?/What other interests do they have?  Can you profile them and use that to reach new potential customers?  Find new markets?  Reduce your customer assistance cost or increase customer satisfaction?
  • 7. Fun Stuff  New Job info  What’s the corporate culture like?  Does the company embrace new tech/ideas or shun them?  Amplify the reach of your messages  Find organizations/groups that are interested in the same things you are
  • 8. Key Twitter Concepts  Tweets – 140 characters  Following  Friends  Followers  Did you pick the user?
  • 9. Followers A -> B
  • 10. Friends B -> C
  • 11. A -> B -> C
  • 12. Twitter’s API  https://dev.twitter.com/docs/api  Authenticated vs. Unauthenticated  How hard is it to get OAuth Tokens?  REST  Streaming
  • 13. Tweepy!  Python module for Twitter’s API  https://github.com/tweepy/tweepy/  Joshthecoder
  • 14. GET status/user_timeline  Takes a user_id or screen_name  since_id  count  exclude_replies  include_rts  Tweepy.api.get_status(‘37point2’)
  • 15. GET users/show  user_id/screen_name  include_entities  ^-- Awesome!  Tweepy.api.get_user(‘37point2’)
  • 16. "id": 286868576,  "id_str": "286868576",  "name": "37point2",  "screen_name": "37point2",  "location": "",  "description": "Information Assurance student at Eastern Michigan University. rnIntel Analysis, Data Viz, Incident Response",  "url": "http://www.linkedin.com/in/raymondlilly",  "protected": false,  "followers_count": 244,  "friends_count": 992,  "listed_count": 6,  "created_at": "Sat Apr 23 21:25:44 +0000 2011",  "utc_offset": -18000,  "time_zone": "Eastern Time (US & Canada)",
  • 17. "description": "Information Assurance student at Eastern Michigan University. rnIntel Analysis, Data Viz, Incident Response",
  • 18.
  • 19. Method to the Madness  Information Needed/Gathered  Tools used  Visualization  Analysis
  • 20. Echo Chamber  Last 1000 Tweets of everyone followed  Basic Word Count  Wordle.net
  • 21.
  • 22. Tweets per Day  Individual  Last 3200 Tweets  Community  Last 1000 Tweets (#infosec – May 18-21)  Plot Tweets over weekdays
  • 23.
  • 24.
  • 25. Hashtags/Topics  Last 3200 Tweets  include_entities! #lazyhacker  include_rts  Google Visualization API  Hashtags & HashtagsWithRetweets
  • 26.
  • 27.
  • 28. Retweets/Replies  Last 3200 Tweets  include_entities  include_rts!!!  Retweets  Replies  Best time for a response?
  • 29.
  • 30.
  • 31.
  • 32. Interactions w/ Influence and Topics  Klout  BOO!!!  Changes algorithm daily  What is the algorithm? /shrug  Weights social media sites differently  Useful  Topics!!  Score used as guideline
  • 33. Model  Last 3200 Tweets  Include all the things!  Add Klout score and topics
  • 34. Formula for Influence  Klout^2 * interactions  50 vs 60  2500 vs 3600
  • 35. Time to get interactive!
  • 36. Clients  Last 3200 Tweets  Total Counts  Client usage over time
  • 37.
  • 39. Interactions & Topics  Last 3200 Tweets  include_entities  Maltego CaseFile  Community Edition
  • 40.
  • 41.
  • 42.
  • 43. Interesting Tools  Tweetstats.com  Twopcharts  Klout  Kred  Socialmention  NetworkX
  • 44. Contact Info  Raymond Lilly  @37point2  rlilly@emich.edu