Be aware of the security issues of giving add-ons access to your computer. As usual there's potentially a big price to pay for a little bit of convenience. Better use command line tools which provide the same info only when you need/want it.
It's about time you got the recognition on RU-vid you deserve I have been watching you since well I cannot remember haha but I think it was about 50k and you replied to my message, really happy for you and all the subs and thank you as always love your approach and also thanks for teaching myself so many things
@@TheTubejunky Oh if they stole it and were stupid enough to leave the hdd inside.. I was telling someone earlier there is a game-show in the UK where they have you rob a bank and if you can spend all the money before your caught you get to keep it. They use real law enforcement , you can get detained and questioned even arrested. You lose if they get enough evidence to convict you. There are 7 other teams of two all doing the same, these people know who you are and also are a liability. They only see each other right after the robbery to split the money 8 ways, then everyone goes off on their own. They use real law enforcement and they work the case as if its real. The first thing they do when they detain or arrest a suspect is pull all of the metadata from every photo on their phone and social media. They identify associates , possible get away driver, they figure out the who what when and where all with the metadata and social media. I thought it was VERY interesting to get a glimpse into an investigation like that, digital forensics. 9 out of 10 times between social media and metadata maybe some light surveillance of the suspects they get them dead to rights. Someone up further in the comments said because of my thumb nail that I watched mr robot and I am paranoid, they've just never lost their freedom and have no idea how law enforcement conducts investigations. By using this 'website' if your caught and they get your history from your ISP , they can subpoena that website. Thats why I brought up the CLI utility 'mat' metadata-anonymization-toolkit, available from any distros default repos. Sometimes peoples ignorance is overwhelming. If you have to scrub your metadata chances are things are not on the up and up ,or , you have a cyber stalker or whatever the case. So I know exactly what you are saying. 🐑will be🐑, cant help that.
Nice job! I've been searching around various Exif tools & methods for OSINT investigations, but found your info very useful and easy to follow. Thanks!
Wow I never got in to investigation work I thought that the information was possible to get but wow the information that you pulled up confirmed my thoughts great videos very informative
AWESOME tool!!!! This is always good to have as one of your tools. Been building my tools kit in case I ever need it. For mac's they have the exif if you download it with brew. Keep up the great job!!!!
This is very interesting. I’m a commercial drone pilot and I take imagery for mapping and 3D modeling. Some of these maps take dozens or hundreds of photos. In order to establish accuracy I use ground control points (GCPs). The GCPs create fixed points of reference with lat/long or DSM or similar measurements to a specific location on the earth’s surface. The mapping or modeling application uses to the location information to affix the image taken from the air to a point in the ground. That’s an oversimplified explanation but I think you get the idea. So. Do you know of any application that can extract the exfil data from multiple images? Ideally the data would be extracted into an excel file or a text file. Thanks in advance for any information you could share. - EM
If you have a tool to get one photo at a time, pipe the output to a CSV. Then you can automate this as easily as installing python and typing Import os While True: Os.system(commands you want)
@@lordbelcheriv6115 Outside the box , i like it.. I mean not really but for most people.. Google is one of the best web hacking tools for recon there is when used properly.
Just wondering why when I download image from browser and try exif I get this error: Corrupt data The data provided does not follow the specification. ExifLoader: The data supplied does not seem to contain EXIF data.
Isn't it always better to do the exif stripping in the CLI instead of doing it via a website, that way you aren't unneceserely risking your metadata being potentially logged by a third party?
AGPS does *not* increase accuracy or precision. DGPS does that. AGPS can speed up time to first fix, and the way that works is your carrier sends Almanac and Ephemeris Data to your phone in a high speed buddy. Without AGPS, time to first fix could take as long as 12.5 minutes.
I want to comment on the OSINT tool...it seems it doesn't work in all countries but only in the U.S. Am in Nigeria i tried it but couldn't get any info on the target. Want to ask if there's any such tool for all countries aside U.S
@@NullByteWHT Very relieved to hear this. I've been being cyber stalked for 3 years now. I freaked out when I discovered metadata exists. I'm an artist so I have to use social media to promote my art so posting photos is unavoidable.
Null Byte You are obviously very talented when it comes to Computers and Intelligent to Learn & Remember so much Data & Code. But are you Wise ? I have three questions for you if you don't mind , a simple yes or No will do. (1) Do you believe we went to the Moon (2) Do you believe Satellites are Orbiting Earth over 200 miles high (3) Do you believe in demons , Jinns
when i try installing the exif thing this shows up (im a total begginer with coding so i have no idea whats that):apt : The term 'apt' is not recognized as the name of a cmdlet, function, script file, or operable program. Check the s pelling of the name, or if a path was included, verify that the path is correct and try again. At line:1 char:1 + apt install exif + ~~~ + CategoryInfo : ObjectNotFound: (apt:String) [], CommandNotFoundException + FullyQualifiedErrorId : CommandNotFoundException
Good Day Sir, Your videos is very helpful for me so I want to thank you for what you do and also need a help . Can you please suggest me a network adapter which can I use.
Making an assumption from the type of channel we're viewing I assume your looking for a wireless card capable of packet injection and promiscuous mode (monitor mode) ? What is your price range , tell me that and I can help you out .. If money is not an issue I would suggest one of the ALFA cards/adapters. When picking out an adapter for auditing wireless networks the most important things are the actual chipset and its compatibility with your operating system.
@@DaveVishwas21 No problem @ all, Dont buy a TP-Link TL-WN722N , you will see them very cheap everywhere dont be fooled. They falsely advertise the chipset because they realized no one wants that card unless its capable of packet injection and monitor mode and the V.2 and V.3 adapters chipset is not compatible with Kali. They might say in the description it is V.1 , an Atheros chipset, they're lying read the customer reviews. I will link the null-byte article for the best wifi adapters for 2019 . You should go to this youtube channels website. Go to www.wonderhowto.com and the click the Null-Byte tab and you find endless resources of information and a text write up with instructions for every video ever made on this channel + MORE. Null-byte has been around a while, this channel, not as long. So there are a lot of old tutorials on there that are great , and still relevant FYI. Here is the adapter article null-byte.wonderhowto.com/how-to/buy-best-wireless-network-adapter-for-wi-fi-hacking-2019-0178550/
Hmm... Not sure that site has the same capabilities as the command line or Google Photos for instance. I uploaded a pic to the site and it showed no valuable data from the same pic that showed GPS data on both Google Photos and in the command line.
Ideally you want to actually install kali to a fast drive. It really depends on what you want to do with kali. If you want to use cracking utilities or anything resource intensive it will be exponentially slower running from a flash drive. In all the videos with raspberry pi he uses his Mac and ssh, when you see this other laptop (lenovo) he is running kali from the internal drive. Its worth it to run it from an ssd , you can get a SATA3 120GB Kingston SSD from amazon for $19.00 right now.
@@NullByteWHT im new here and i was wahtching your video, but i dont understand , did you use cmd or what, because that terminal app i dont know what it is
hey this is great! but when i try to get data in exif from any photo, is always says: Corrupt data The data provided does not follow the specification. ExifLoader: The data supplied does not seem to contain EXIF data. any ideas???
Readily available freeware for viewing images on a variety of platforms, IrfanView, will dump the EXIF tags with no problem, and offers to copy them to the clipboard if desired. What you will find there is whatever the manufacturer of the camera decided to put there, if it hasn't been through some processing program that rewrote the file. If it has, it will be what the coder of the program decided to put there, which may or may not be bogus.
exif works to a degree but its preety limited. i found that PNG files don't work, anything uploaded to social media doesnt work and images over text message don't work as it shrinks the file and removes exif data. its preety much limited to jpg, JPEG images sent over email and stuff from a physical device
Uploads to verexiff .. verexiff logs IP forwards to ISP , ISP forwards to FBI , then you go bye bye. 'sudo apt install mat' The syntax 'mat somephoto' . mat stands for the, Metadata - anonymisation- toolkit , you can pass -c check the files metadata or -d display , a list of all the harmful metadata of a file with/without removing them. Just by running 'mat thisphoto' will completely Sanitize the file, all metadata gets scrubbed from the image , unrecoverable . I was just joking about the first part of this comment, but when we have a tool for it , that works so well then I dont have to go to the net and upload something. I happen to use it on a daily , so when you brought up how to stay safe I had to mention 'mat'.
What if we extract metadata of the photos of earth uploaded by nasa, what will be the geolocation and what device do they use to capture and also we'll know the pic is real or nasa is just messing around with us for years and years. This is interesting I'll try this and all of us reading this too
It's not working it keeps saying the data supplied does not seem to contain Exif data I tried other tools to like exiv2 I have a similar error can somone help?
Depends , what operating system , and whether its physical or virtual. If you running any gnu/linux distro it comes with UFW. You can buy bare-bones micro computers that only function as a firewall, most people use PFsense , I am not a fan. Another option is ipfire ipfire.org . Or you can go the route of modified firmware in your router if its compatible with openWRT or DD-WRT to setup a firewall and rules. That said even windows comes with its own firewall in 'Defender' thats what you see when you install an app and it asks you to make a firewall exception.
How do u find the website of an image ? For example if your friend took a screenshot of a picture and sent it to you . How would you find the website if you cant see it ? There must be a way .
If there is an image in the site, single it out with cropping, and then reverse search that image alone, then it may give a link. Not the best way, but it will work
This is not a bad thing, this mean your image is clean .. Some devices and services protect you from metadata extraction by default. Any photo from an Apple device should be loaded with metadata if your looking for a good example to study. Judging by your post your using adb or busybox/termux to navigate to your DCIM and use exif, exif doesn't always work with droid.
Well now you can check , just use wget and download a photo from facebook and then just run it through exiftool and see what it dumps. If there is no metadata present the utility will let you know its clean.
@@NullByteWHT so i actually made it work to move it but when i type the command and put the picture in it says it is not readable or does not contain EXIF data.
![Obtain Valuable Data from Images During Recon Using EXIF Extractors [Tutorial]](/img/logo.svg){kind=logo}
