Active Directory Pentesting SOP (Authorized)
Master Active Directory penetration testing: enumeration, Kerberoasting, password spraying, privilege escalation, Golden Tickets & domain takeover.
13 docs tagged with "sop"
View all tagsDetection & Evasion Testing SOP (Purple Team)
Bypass security controls: evade AV, EDR, IDS/IPS, firewalls & SIEM detection. Obfuscation, encoding, polymorphism & anti-forensics techniques.
Digital Forensics Investigation SOP
Conduct digital forensics: disk imaging, memory analysis, artifact recovery, timeline creation & chain of custody. Tools: FTK, Autopsy, Volatility.
Financial Crime & AML OSINT
Financial intelligence techniques: cryptocurrency tracing, sanctions screening, AML investigation & blockchain analysis for financial crime detection.
Firmware Reverse Engineering
Extract & analyze firmware: binary extraction, filesystem analysis, vulnerability hunting in IoT devices. Tools: Binwalk, Ghidra, QEMU emulation.
Image & Video OSINT
Visual intelligence techniques: EXIF analysis, reverse image search, geolocation, video verification & deepfake detection for media investigations.
Legal, Ethics & Data Governance for OSINT
Essential legal & ethical boundaries for OSINT: GDPR compliance, authorization requirements, privacy laws & responsible disclosure protocols.
LinkedIn SOP
Professional LinkedIn OSINT: profile investigation, employment history tracking, connection mapping & corporate intelligence gathering techniques.
OPSEC Planning for OSINT Investigations
Protect yourself during investigations: VPN setup, burner accounts, browser isolation & operational security best practices for safe OSINT work.
OSINT Collection Log & Chain of Custody
Evidence documentation guide: SHA-256 hashing, chain of custody, metadata preservation & forensically sound collection for legal admissibility.
OSINT Investigation Techniques
Advanced OSINT methods: social media intelligence, domain reconnaissance, geolocation, people search & comprehensive open-source investigation tactics.
Reporting, Packaging & Disclosure
Professional OSINT reporting: executive summaries, evidence packaging, chain of custody, law enforcement disclosure & responsible reporting protocols.
Web, DNS & WHOIS OSINT
Domain intelligence techniques: WHOIS lookups, DNS records, SSL certificates, subdomain enumeration & infrastructure mapping for web investigations.