Posts

Showing posts from June, 2020

Found my Second Missing Person

Image
Introduction I gave a tip for a missing minor in Toledo. The URL went down for them. Rough Explanation This person had a more common last name. I used a license plate to verify the social media was in Ohio. I then used a shirt to identify Toledo. I then found an Advertisement with a phone number. I found the company they worked at. So I forwarded the Ad + Company to the Toledo police email. Basically one thing led to another. I was following the trail. Things I learned 1. When dealing with someone with a common name, look for license plates in photos. This will narrow down if your on the right path or not. 2. Once I got to Ohio I thought, OK how do I narrow down this person is from Toledo? I found a photo with initials on a shirt and connected it to Toledo. 3. After I identified this was indeed the correct person, the next mission is to find a location. 4. Don't get dragged into details if it doesn't pertain to location. The circumstances were confusing an...

Creating Sock Puppet (Fake) Social Media Accounts

Image
Creating Sock Puppets - Introduction I signed up for the Trace Labs Global Missing Person CTF V. Here is my experience/tips with sock puppet accounts! Virtual Machine Don't use your usual browsers. If your logged into Gmail, that will track everything and reveal your sock puppet identities. I use an OSINT VM I made myself using Michael Bazzell's OSINT book. Burner Phone Remember "Wear Hat, Pay Cash". These days you can "Wear Hat, Use Mask, Pay Cash". I got my burner phone at Walmart. StraightTalk has cheap $30 dollar flip-phones that have a working mobile browser. You can use the browser to register for Facebook and Instagram. StraightTalk (when registering online) doesn't ask for personally identifiable information. The most they requested was for a Zip Code. You can lie. Gmail Surprisingly, Gmail let me register on a VPN without email or phone number verification. Twitter Twitter let me register with a VPN + ProtonMail. LinkedIn Y...

Found my First Missing Person

Image
I found my first missing person! Before I get into details let me go over some of my personal rules: 1. I will NEVER publish the name of a missing person I have found. Their runaway/bad situation doesn't need to be on the internet for everyone to see. 2. I do not contact the missing person, friends, or family members. 3. If a missing person is posted on a Government website asking for help from the public, I consider that a green-light go for it. How this all Started I found Tracelabs through a youtube video . They have a Trello board of 8 people that are missing and they rotate every month. Tracelabs hosts the Global Capture the Flag event for missing people. The next one will be in July. The issue is the Tracelabs people are faster and better than me. By the time I get to the Trello board, everything is found. I wanted to practice. I got the idea of why don't I just visit the Ohio Missing Person website and practice with that! I did not expect to find missin...

recon-ng Live Document

Image
recon-ng This will be my recipe document for recon-ng. I find it helpful to document things I learn, and also as a lookup for future use. Maybe you'll get something out of my notes. If these commands don't work, make sure to upgrade to version 5.0+. Topic: General Commands 1. Marketplace Commands $ marketplace install all $ marketplace info profiler $ marketplace refresh ------------------------------ 2. Workplace Commands $ workspaces ? (create|delete|list|select) $ workspaces select OSINT ------------------------------ 3. Database Commands $ db ? (delete|insert|query|schema) $ db insert domains (after it will prompt you for a domain ex: example.com) $ db delete domains 1 $ show domains ------------------------------ 4. Global Commands $ Make sure your not in a module, if so type back. $ options list $ options set TIMEOUT 20 Topic: Specific Modules 1. recon/contacts-credentials/hibp_breach This one requires an API key bought by Troy Hunt for $3.50 a...