Jul1
  • Who am I ?
  • Books
    • Geopolitics
      • πŸ“š History of European Security Since 1945: From the Cold War to the War in Ukraine
      • πŸ“š International Relations Since 1945
      • πŸ“š Osint, surveys and digital fields
    • Cyber
      • πŸ“š Visual Threat Intelligence
  • OSINT
    • Discovery of information about a phisher through OSINT
    • GEOINT: Identifying an Exact Location from Open Sources
  • Cyber threat intelligence
    • How to quickly find malware panels (C2)?
    • Hunting random spy(ware) using Censys
  • Malware analysis
    • Coinminer - Malware Analysis
  • Certications
    • SANS SEC587 – Advanced Open-Source Intelligence (OSINT) Gathering and Analysis
    • TryHackMe SOC Level 1
Powered by GitBook
On this page
  1. Certications

SANS SEC587 – Advanced Open-Source Intelligence (OSINT) Gathering and Analysis

PreviousCerticationsNextTryHackMe SOC Level 1

Last updated 20 days ago

After over five years of professional practice in open-source intelligence (OSINT), both in the private and public sectors, I recently decided to formalize and consolidate my skills through a recognized certification. That’s why I enrolled in the SANS SEC587: Advanced Open-Source Intelligence Gathering and Analysis course.

Why SEC587?

OSINT has been at the core of my professional journey:

  • Due diligence and ethics compliance at EDF

  • Risk analysis at the French Ministry of Armed Forces

  • Cyber Threat Intelligence at Sysdream

Given the growing complexity of cyber threats and the increasing number of available data sources, I felt it was essential to formalize my processes and deepen my techniques. The SEC587 stood out as the go-to training for taking my skills to the next level.

This course covers essential topics in great depth, including:

  • Detection of disinformation campaigns

  • Image and video verification

  • Dark web investigations and cryptocurrency transaction tracking

  • OSINT automation using Python

  • Investigations on maritime, aviation, and military assets

  • Operational security (OPSEC) for investigators

One aspect I really appreciated was the emphasis on legal and ethical considerations when conducting OSINT investigations β€” a topic that is often overlooked.

Key Takeaways

Over the course of six days, we alternated between theoretical lessons and hands-on labs with real-world scenarios. A special mention goes to Steven H, the instructor, who was incredibly knowledgeable, approachable, and always happy to answer questions β€” no matter how detailed.

The course culminated in a final CTF (Capture the Flag) challenge in teams, which I was lucky enough to win with my group. It was a fantastic, high-pressure moment full of fun and learning, providing a great opportunity to apply everything we’d learned.

A Minor Caveat

The only downside: the certification was not yet available at the time of writing (April 2024). However, it should be coming soon β€” and I can’t wait to sit for it!

Conclusion

The SANS SEC587 course is, in my opinion, a must-have for anyone looking to professionalize their OSINT practice and dive deeper into advanced, current techniques.

If you already have some experience in the field and want to take your skills to the next level, I highly recommend it. It’s challenging, fast-paced, but incredibly rewarding.

SANS SEC587 coin awarded after winning the final CTF