Social Media OSINT Without the Indigestion

Presented at BSidesDC 2019, Oct. 26, 2019, 2:30 p.m. (50 minutes).

By our count, there are 100,000+ security related Twitter accounts, 2000+ blogs, 1000+ conferences/events, 75+ podcasts, and countless other social media sources. The momentary euphoria of catching up on your Twitter feed hardly alleviates the more frequent anxiety of being behind on infosec “news” when work and life get busy. While there are many tools for aggregating and searching social media content, none of them are designed to identify and extract quality data for a particular topic. Our research shows that only 30% of Tweets by infosec-focused accounts are original content and only a fraction of those provide actionable information. Are you new to security and want to know where to find the most original and timely social media posts? Do you want data-driven answers to who the real influencers are in our field? What about those practitioners who are doing great work, but are flying under the radar? In this talk, we will demonstrate tools we have built to address these questions and derive contextually relevant value from more social media sources in less time. We will also be sharing details about soon to be available public access to the tools and plans for ongoing feature additions and refinements. With so many people doing and sharing amazing work, why miss out on content that would be impactful to you, because you weren’t following the right person, had a busy day, or didn’t have the budget or time to go a conference?


Presenters:

  • Mark Orlando - Founder at Bionic
    Mark started his security career in 2001 as a Security Analyst, and since then has been both fighting for blue team resources and trying to automate them out of a job. He has built, assessed, and managed security teams at the Pentagon, the White House, the Department of Energy, global Managed Security Service Providers, and numerous financial sector and Fortune 500 clients. Short on patience and attention, Mark is constantly working on new projects to improve defensive security through automation and other short cut-y things so defenders can be more agile and creative. In 2012, Mark designed and launched a Managed Detection and Response (MDR) service offering and helped to invent an automated cyber threat hunting technology, both of which were later acquired. He enjoys teaching and learning from others but spends far more time doing the latter.
  • Ryan Shaw - Founder at Bionic
    Data-driven security has been Ryan’s passion for 20 years. From IDS analysis using Network Flight Recorder (NFR) and being one of the first handful of certified SANS professionals in 2000 to construction of an enterprise-wide email analysis platform for the Transportation Security Administration and overseeing development of a patented threat intelligence hunting platform for an early Managed Detection and Response (MDR) provider, Ryan continually mines security insights using readily available data. Ryan enjoys building and leading teams to explore both new frontiers and to look for missed opportunities in well-traveled spaces. Ryan is currently co-founder of Bionic, a startup that brings advanced security operations to the 99%.

Links:

Similar Presentations: