While many organizations are focusing their resources on implementing internal security controls, few turn their attention to the open source intelligence (OSINT) that attackers exploit in an effort to circumvent those controls. In this course, Performing OSINT Gathering on Corporate Targets, you'll learn foundational knowledge of gathering various forms of corporate OSINT as part of a penetration test. First, you'll explore tools and techniques for collecting OSINT. Next, you'll discover how to analyze that OSINT, separating the useful information from the noise. Finally, you'll learn how to organize your findings and prepare the subsequent phases of the penetration test. When you're finished with this course, you'll have the skills and knowledge of corporate OSINT gathering needed to conduct an effective, worthwhile penetration test.
Preparing to Perform Corporate OSINT
Gathering Physical OSINT
Gathering Logical OSINT
Constructing an Org Chart
Gathering Electronic OSINT
Identifying Infrastructure Assets
Gathering Financial OSINT
The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.