![Cody Bernardy](/img/default-banner.jpg)
- 180
- 1 080 689
Cody Bernardy
United States
Registrace 18. 10. 2011
Vulnerability Management Engineer by day, Internet investigator by night.
twuttersupport
0x4rk0
twuttersupport
0x4rk0
My experience being a Trace Labs Coach (Judge)
In this video I go over my most recent experience being a Trace Labs coach, and what I look for in a good OSINT submission.
Trace Labs: tracelabs.org
Camera Setup:
Camera:
Sony ZV1: amzn.to/3Os45eC
Rode Wireless GO II: amzn.to/3s6qCGm
Mics:
Blue Snowball: amzn.to/3sxE6qy
Blue Yeti: amzn.to/3nSrrKV
Mic Arm: amzn.to/35J2Lyz
Wardriving Setup:
Raspberry Pi 4: amzn.to/38NOa6F
USB GPS Dongle: amzn.to/2XGv1NI
Wireless NIC: amzn.to/3iiyOKP
Books:
Social Engineering: The Science of Human Hacking: amzn.to/3qqDzoo
Countdown to Zero Day: amzn.to/35HMpGs
Sandworm: amzn.to/35LWGBf
Open Source Intelligence Techniques: Resources for Searching and Analyzing Online Information: amzn.to/2NcJnnf
Trace Labs: tracelabs.org
Camera Setup:
Camera:
Sony ZV1: amzn.to/3Os45eC
Rode Wireless GO II: amzn.to/3s6qCGm
Mics:
Blue Snowball: amzn.to/3sxE6qy
Blue Yeti: amzn.to/3nSrrKV
Mic Arm: amzn.to/35J2Lyz
Wardriving Setup:
Raspberry Pi 4: amzn.to/38NOa6F
USB GPS Dongle: amzn.to/2XGv1NI
Wireless NIC: amzn.to/3iiyOKP
Books:
Social Engineering: The Science of Human Hacking: amzn.to/3qqDzoo
Countdown to Zero Day: amzn.to/35HMpGs
Sandworm: amzn.to/35LWGBf
Open Source Intelligence Techniques: Resources for Searching and Analyzing Online Information: amzn.to/2NcJnnf
zhlédnutí: 303
Video
Offensive OSINT: You need this tool
zhlédnutí 14KPřed 21 dnem
In this video, I go over the tool created by @the_wojciech (on Twitter/X). This tool is great for quick aggregation of multiple data sources, allows you to export, etc. Also, I was able to find their pricing on their main site os-surveillance.io/ Offensive OSINT: os-surveillance.io/ Offensive OSINT Discord: discord.gg/TbNUdvxeEW My Discord: discord.gg/gQ2BESXkU9 Camera Setup: Camera: Sony ZV1: ...
Deploying a Greynoise Sensor at Home
zhlédnutí 1,2KPřed měsícem
Howdy y'all, In this video I show how to deploy a Greynoise Sensor, thoughts of it after using it for 1 week. For Vulnerability Management teams, I can see this enriching current threat based prioritization by having honeypots spread across your network and seeing what's being targeted (and by who), and what is oppurtunistic. 1) Easy to deploy: Took a sacrificial raspberry pi, ran a 1-liner scr...
Anti-OSINT Tools
zhlédnutí 3,6KPřed 2 měsíci
In this video, I go over how to make yourself almost unfindable in less than 1 hour of work. Spokeo: www.spokeo.com/optout MyLife: www.mylife.com/ccpa/index.pubview Radaris: radaris.com/control/privacy Intelius: www.intelius.com/opt-out/submit/ BeenVerified: www.beenverified.com/faq/opt-out/ Infotracer: infotracer.com/optout TruePeopleSearch: www.truepeoplesearch.com/removal Lexis Nexis: optout...
Hello Feds
zhlédnutí 588Před 3 měsíci
Join my Discord: discord.gg/gQ2BESXkU9 Camera Setup: Camera: Sony ZV1: amzn.to/3Os45eC Rode Wireless GO II: amzn.to/3s6qCGm Mics: Blue Snowball: amzn.to/3sxE6qy Blue Yeti: amzn.to/3nSrrKV Mic Arm: amzn.to/35J2Lyz Wardriving Setup: Raspberry Pi 4: amzn.to/38NOa6F USB GPS Dongle: amzn.to/2XGv1NI Wireless NIC: amzn.to/3iiyOKP Books: Social Engineering: The Science of Human Hacking: amzn.to/3qqDzoo...
Making your Own OSINT: Maps
zhlédnutí 1,7KPřed 5 měsíci
I've taught many people how to consume OSINT, but never about creating OSINT. OSINT is information that is publicly available, and flying a drone in the US, with a some exceptions (restricted/controlled airspaces/open air assemblies) can be done without authorization/permission. In this video, I create an orthomosaic of a burnt down motel in my local area. The tools I used: DJI Mini Drone: amzn...
Using Open Street Maps To Find Anything (And creating OSINT!)
zhlédnutí 3,4KPřed 6 měsíci
Using Open Street Maps To Find Anything (And creating OSINT!)
Using a speed square to make puck light holes
zhlédnutí 2,1KPřed 7 měsíci
Using a speed square to make puck light holes
CVSS 10.0 in Cisco IOS Networking Gear
zhlédnutí 712Před 8 měsíci
CVSS 10.0 in Cisco IOS Networking Gear
How to geolocate and timestamp Youtube Videos using the Google APi
zhlédnutí 867Před 8 měsíci
How to geolocate and timestamp CZcams Videos using the Google APi
Finding Missing People using OSINT (Tracelabs Recap)
zhlédnutí 3,9KPřed 10 měsíci
Finding Missing People using OSINT (Tracelabs Recap)
Intro to Overpass Turbo GUI and Google Earth for OSINT
zhlédnutí 2KPřed 10 měsíci
Intro to Overpass Turbo GUI and Google Earth for OSINT
Create your own OSINT Tooling using ChatGPT (Long video)
zhlédnutí 6KPřed rokem
Create your own OSINT Tooling using ChatGPT (Long video)
Trace Labs Recap (OSINT To Find Missing People)
zhlédnutí 4KPřed rokem
Trace Labs Recap (OSINT To Find Missing People)
Advanced Filters on ADS-B Exchange (ElonJet)
zhlédnutí 848Před rokem
Advanced Filters on ADS-B Exchange (ElonJet)
Using OSINT to find Mr. Beast video locations
zhlédnutí 2,4KPřed rokem
Using OSINT to find Mr. Beast video locations
How to do Vulnerability Management Right
zhlédnutí 2,1KPřed rokem
How to do Vulnerability Management Right
DEFCON, here I come! What I’m bringing with me
zhlédnutí 2KPřed rokem
DEFCON, here I come! What I’m bringing with me
Every OSINT Investigator NEEDS to Use This Site
zhlédnutí 30KPřed rokem
Every OSINT Investigator NEEDS to Use This Site
Did anyone ever crack this one?
I wonder if it works in Türkiye?
Appreciate your continual discussion of this
This is not good for finding person jn Kazakhstan? Its mlre tailored to western countries?
27:43 the database contains all your previously performed searches results, analysis, etc. there is a free software of the same developer with similar functionality, it is called KamerKa. I suppose it served a prototype for this product.
Geo image stuff doesn't look that useful.
Thanks for the warning 😂😂😂😂
Thanks
Seems amazing. I'll need to give it a try
$89 a month.. 😆 think of all the tools, software, devices we use, and how much they cost us per month. and then imagine paying $89 a month for this. i guess this is geared towards companies or something
Definitely tailored towards law enforcement imo. I personally don’t pay for tools for my investigations, but it is nice to see what under $100 can get you, at least for the month. If I was getting paid to do an investigation, and this tool fits the mission, I’d bake it into the cost
@@0x4rk0 yeh i guess if you had a specific project, or you were a licensed private investigator or hired by someone it could make your life easier. i just think its a big ask when you consider the vast amount of open source projects and tools people give for free/very cheap. The API calls to shodan and their other integrations probably do have a backend cost, so i dont think it doesnt have value... but it seems like something that would have an entry level tier for $5-$20 a month for limited calls,. and then more expensive tiers for companies/law enforcement
I’d pay for the convenience and time bought back
Their site wont load for me?
Good follow-on video! Thanks for making these!
Good vid. I've known about Shodan for quite some time, but only now taking the time to learn how to use it as a tool. Thanks for making these videos!
Instant subscription!
3:04 Lol, Ha ha ha ha, I was 86'd form That airport back in 2018, 2019 time frame. But it did look like a cool airport though.
Section: 230 Row: i seat: 4 Is my best guess
"I don't pay for excel, so I can't open csv files". One word: Libreoffice. Great content, live it
Enjoyed your breakdown on this.
How are they using Google maps instead of OSM smh
First
Noice ad
Typically ads have kickbacks or payment. I was given neither, other than account access 🤷🏻♂️
@@0x4rk0 it's all good bro I was just messing with you. I don't even know how I got here lol. Maybe you and Lex freeman have a lot in common.
Really incredible tool. Thanks for sharing!
Hmmmm. Will try it on our investigation into America Contingency militia and it's religious affiliation Asatru Folk Assembly.
Are you referring to American Contingency ran by Mike Glover a militia? I promise you they don't organize like that. They'd be the world's most ineffective militia. They're more of an information sharing platform.
OSINT should not have "PRICING"
Then do the compiling yourself 😂 it takes time and effort to make the program and they’re not stopping you from accessing anything
The information this tool provides is 100% free, you will just have to fetch it
You misunderstand the meaning of 'Open Source'. You're welcome to go and find all that information in the wild 🤷🏿♂️
@@0x4rk0 100%. thats the first thing i thought when i saw it was using shodan and social media info. its a cool interface and aggregation of data but 89$ a month for a frontend of free information is obscene EDIT: and no disrespect, but this does seem like an ad. they gave you free access to something no sane hobbyist would pay for. so it does make you wonder who you expect your audience to be with a title like "Offensive OSINT: You need this tool". again, i mean no disrespect but step back and ask yourself how many hobbyist hackers and security researchers would pay 89$ a month for something like this. not not even close to reasonable for a frontend of "open source" information. the only other answer is you expect your audience to be companies that need this? $5 a month maybe with a tier geared towards professionals for more..
As far as a "free version," you can run their tool, Kamerka with paid or subscription access to some other APIs (namely shodan for scraping cameras and IOT devices, Google for the Maps API, etc.) You can get it up and running in ~30 minutes. The amount of open medical systems is terrifying. HIPPA violations everywhere.
I am not the best at the tech side, but is that 30 minutes simple? 😂
@@victorygarden556 Depends, I will take a look at it
Thanks! I will check it out
@@0x4rk0 thanks, I’ll be sure to watch the vid
@@victorygarden556 that 30 minutes honestly assumes you have some experience in connecting APIs and self-hosting. For someone with zero experience, I could probably make a walkthrough that would take a total newbie about 2 hours or less, but Kamerka isn't a tool I'd want to start teaching everyone, as ...like I said...it's scary what's out there and I don't want to see people's medical records start getting ransomwared. I used to be a lot more nefarious, but I'm on the security and defense side of things at this point.
he said "nifty"
Nice video
👀
Just watched your post.. And here it is 😂😂🙇🙇🫂🫂
liked the video
2 years ago? I'm into Ai stuff and never heard of this until today, i literally used a screenshot of some random omegle person and god damn, despite the face being cropped it found him no problem!
Cant hear anything... whatsup with the low volume .. .
Reported
Needs more slides; Should be easier to read and not text pasted into a slide. Hand waving is distracting and doesn’t help convey the message Sorry, you know the tech stuff but the delivery has room to improve to make it relevant or useful.
Okay
could you PLEASE get to the freaking discussion about Facebook OSINT. This is basically clickbait!!!!! You are not Sherlock Holmes, dude!
Wetlands in Texas, between Newcastle and Graham
Mowing the grass and all this might not seem like a lot, but it actually keeps animals from fully taking over and eventually into the house. Without that they’d definitely get mice, then cats, birds, and other animals. That’s a valuable service for free so should it come up if they decide to sell before 17 years?
Mainly doing it to not attract actual squatters and pest control
Very interesting. PI here in Oregon.
It didn't show a source because it's more common to tag the Changeset with a source, rather than the Object.
Is it safe?