当前位置:首页 > 报告详情

影子猎手——运用高级开源情报技能穿梭于数据泄露迷宫.pdf

上传人: 可*** 编号:991934 2025-12-07 20页 5.27MB

1、Constella IntelligenceSANS OSINT Summit 2025Arlington,VAAgendaCopilot/Surface of AttackAI for Advanced Data AnalysisInfostealer Data AnalysisAgenda1233Anticipate and defeat digital risk.2025 Constella Intelligence,Inc.All rights reserved.Constella Confidential and Proprietary Information.Exposures O

2、ver Time ToUncover Threat ActorsCopilot/Surface of Attack4Anticipate and defeat digital risk.2025 Constella Intelligence,Inc.All rights reserved.Constella Confidential and Proprietary Information.Uncovering Threat Actors Data by automating pivot-searching5Anticipate and defeat digital risk.2025 Cons

3、tella Intelligence,Inc.All rights reserved.Constella Confidential and Proprietary Information.Uncovering Relatives Data6Anticipate and defeat digital risk.2025 Constella Intelligence,Inc.All rights reserved.Constella Confidential and Proprietary Information.Uncovering Password Pivoting Correlation7A

4、nticipate and defeat digital risk.2025 Constella Intelligence,Inc.All rights reserved.Constella Confidential and Proprietary Information.Uncovering Data Source PivotingFound IN8Anticipate and defeat digital risk.2025 Constella Intelligence,Inc.All rights reserved.Constella Confidential and Proprieta

5、ry Information.Uncovering Infostealer Infections9Anticipate and defeat digital risk.2025 Constella Intelligence,Inc.All rights reserved.Constella Confidential and Proprietary Information.Criminal Attribution CommonalitiesInfostealer Data Analysis10Anticipate and defeat digital risk.2025 Constella In

6、telligence,Inc.All rights reserved.Constella Confidential and Proprietary Information.Infostealer-Finding Criminals Among Victims11Anticipate and defeat digital risk.2025 Constella Intelligence,Inc.All rights reserved.Constella Confidential and Proprietary Information.Infostealer-Time Zone&Geo Insig

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
1. **Infostealer 数据分析**:分析显示,Infostealer 感染者可能涉及软件开发、网络安全和游戏领域,使用多种技术工具和软件,表明其技术背景深厚。 2. **用户行为分析**:用户在地下黑客论坛、代理服务和加密文件存储网站上活跃,表明其可能参与网络犯罪活动。 3. **数据泄露分析**:AI 分析揭示了数据泄露中的密码重用、弱密码和哈希算法不一致等问题。 4. **攻击模式**:攻击者利用凭证填充、暴力攻击和组合列表等技术,针对特定地区和行业进行攻击。 5. **案例研究**:土耳其某感染者被 Infostealer 感染,泄露了包括电子邮件、电话号码和登录凭证在内的个人信息。
软件日志中的犯罪线索" 如何防范攻击?" 黑客如何追踪目标?"
客服
商务合作
小程序
服务号
折叠