Skip to content

Latest commit

 

History

History

2

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
writeup
writeup
 
 
OSINT.pdf
OSINT.pdf
 
 
README.md
README.md
 
 
stub.py
stub.py
 
 

README.md

OSINT (Open Source Intelligence)

Assignment details

This assignment has two parts. It is due by Friday, September 13 at 11:59 PM.

To submit your homework, please follow the guidelines posted under the grading section of the syllabus.

There will be a late penalty of 5% off per day late! Submissions received more than 3 days late will receive a 0!

Part 1

In class you were given an online usertag: ejnorman84

NOTE: "briefly describe" = 2-3 sentences (and/or include screenshot(s))

Use OSINT techniques to learn as much as you can about ejnorman84 and answer the following questions:

  1. What is ejnorman84's real name?

  2. Where does ejnorman84 work? What is the URL to their website?

  3. List all personal information (including social media accounts, contacts, etc) you can find about ejnorman84. For each, briefly detail how you discovered them.

  4. List any ( >= 1 ) IP addresses associated with the website. For each, detail the location of the server, any history in DNS, and how you discovered this information.

  5. List any hidden files or directories you found on this website.

  6. What ports are open on the website? What services are running behind these ports? How did you discover this?

  7. Which operating system is running on the server that is hosting the website? How did you discover this?

  8. BONUS: Did you find any other flags on your OSINT mission? Note: the standard flag format for bonus flags is *CMSC389R-{}. (Up to 9 pts!)

Part 2

Use the provided python stub code ('stub.py') or write your own program in another language to gain access to ejnorman84's server via an open port that you should have found in Part 1.

Once you have gained access to ejnorman84's account with the correct login credentials, you will have access to a system shell.

Use your knowledge of Linux and OSINT techniques to locate the flag file and submit its contents for points.

Your response here should briefly document how you approached and solved this part of the assignment. You should also push your bruteforce program to the "week/2/writeup" folder of your GitHub repository.

Note: If you choose to write your own program in another language, please include instructions on how to execute your program, including what version of the language you are using. You will NOT receive credit if the TAs cannot run your program.

If you are stuck on this part of the assignment, let us know! The facilitator staff is here to help and teach, and we are open to releasing hints as time goes on!

Format

In the "week/2/writeup" directory of our repository there is a README.md file for you to edit and submit your homework in. Use this as a template and directly edit it with your answers. Complete your bruteforce program in this directory as well. When you've finished the assignment, push it up to your personal GitHub for us to grade.

Your responses to every prompt in this assignment should include answers to any specific questions along with a brief explanation of your thought process and how you obtained the answer.

Scoring

Part 1 is worth 45 points, and part 2 is worth 55 points.

Tips

Reference the slides from lecture 2 to help you effectively utilize available OSINT techniques.