SANS 2021 features 30+ Interactive Courses, Three NetWars Tournaments, Trivia Night, and Bonus Talks. Save $150 thru Tomorrow!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Out in the Wild: How OSINT Supports Proactive Defense

  • Thursday, February 11th | 12:45 - 1:30 PM ESTThursday, February 11, 2021 at 12:45 PM EST (2021-02-11 17:45:00 UTC)
  • Jackie Abrams


  • DomainTools

You can now attend the webcast using your mobile device!




You will earn 1 CPE credits for attending this virtual bonus session

Presentation Format: Virtual - US Eastern

Session Overview

In the SOC, defenders are often true to their name-playing defense to manage detections, assess risk, and protect the network from an ever-evolving barrage of threats. However, attacks don't start with alerts-they start with the infrastructure that attackers set up to deliver the attack. Proactive open-source investigations and external hunting practices can help shift your security posture from reactive to proactive.

Learn how you can use real-world attacks and open-source data to:

  • Identify high-risk infrastructure associated with threat actor activity
  • Rapidly investigate infrastructure associations to identify patterns and TTPs, and
  • Create profiles that you can use to hunt externally for threats relevant to your organization-moving left in attack detection by finding threats before they find you


OSINT Summit & Training

Summit: February 11-12 | Training: February 8-10 & 15-20

The Open-Source Intelligence (OSINT) Summit will bring together leading security practitioners and investigators to share proven techniques and tools that can be applied to OSINT gathering and analysis. As an attendee, you will learn current, real-world methods from law enforcement officers, private investigators, pen testers, and cyber defenders who collect information across the Internet, analyze the results, and utilize key data to reach their objectives.

The OSINT Summit will explore the following topics:

  •    Capturing, recording, and harvesting data
  •    Creating a tailored OSINT process
  •    Performing searches for people and researching businesses
  •    Accessing social media data
  •    Examining geolocated social media
  •    Leveraging government-provided data
  •    Collecting data from the Dark Web


View Summit Agenda & Register


Speaker Bio

Jackie Abrams

Jackie Abrams focuses on solving big-picture threat intelligence challenges through industry collaboration and innovative solution design. Responsible for the product vision at DomainTools, she leads the team to deliver data, intelligence, and tools to help our users make the Internet a safer place.

Before joining DomainTools, she leveraged her OSINT research and digital investigations experience to develop products and services in support of mobile threat assessment for text messages and message senders. Jackie is a graduate of Cornell University and is an active supporter of the Messaging Malware Mobile Anti-Abuse Working Group (M3AAWG), where she collaborates with threat intelligence and abuse mitigation practitioners on solving industry-wide problems in the digital services and ISP space.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.