Developing OSINT skills - Sector035's 2020 OSINT quiz walkthrough 7-12
My methods for completing these may not be the most efficient and there are so many ways to find the answers that I'd love to hear how you did it differently, different thought process, and tools. If you are stuck on any of these, please message me on twitter before looking below and I will happily help guide you in the right direction. Let's get started. SPOILERS AHEAD!
7.
Similar to others we need to find a post, on Reddit this time, containing osintcurio.us during a specific date range. Reddit has various advanced search features and allows search for posts with domain names via "site:". Let's go to Reddit and search for the site osintcurio.us
Less than 10 results, down at the bottom is the post we're looking for.
8.
Going to the urlscan link, clicking and scanning through the information we can quickly find the header details in the http or api sections of the scan details.
9.
Once on the page I pull up dev tools, since we want to see the data that is getting updated, click on network. While here I notice a new AircraftList.json updated every few seconds. Viewing the preview or the full json shows the data being sent such as details on each aircraft in view. This took me a couple tries because I was focused on the number of airplanes in view, which were about 30 out of 3,700. When a couple variables associated with this (ACList, srcFeed) failed as answers, I reread the instructions. My "view" I guess now included the 3,700 or so aircraft and not just the 30 shown. I grabbed the variable for the total and sent it in.
10.
So let's see if there is any meta data for this photo. I download it and run exiftool on it which shows GPS coordinates. Then toss it into google maps to get the correct format.
11.
I started by going to the company site, grabbing the photo of Philipp and checking it with exiftool similar to #10. While it doesn't say exactly who took the photo, I find a file path listing with the first name of a user who probably took the photo.
12.
I didn't have to do anything special to grab the file, just right click and open image in new tab. Run it through exiftool and grab the data for the Legacy IPTC Digest field.
0 comments: