WHAT IS OSINT?
Open Source Intelligence (OSINT) is data gathered from publicly available sources such as the internet.
A red team test will generally begin with an intelligence gathering phase, also known as reconnaissance. During this phase, the red team uses publicly available data such as social media, the company website, public databases and online search to identify all available information on the target organization, including their people, processes and technology. This can include employee information such as names, email addresses, job titles and locations as well as information on domains and software used by the organization.
The information gathered is then used to plan and deliver a multi-staged attack, identifying assets of interest such as key systems and critical data.
CONTEXT’S OSINT ASSESSMENTS HELP YOU:
- Gather information that would be useful to an external attacker
- Enumerate your systems and technologies
- Identify employee information that could be used in social engineering attacks
- Gather intelligence across third party sites, repositories and social media
- Plan a realistic targeted attack from an initial “no knowledge” perspective
Download our red teaming services flyer for more information: