 Hello, everyone. Welcome to my talk on social mapper. My name is Jacob Wilkin. My handle is Green Wolf. So, let's get into it. So, what is social mapper? According to the fake news media that's been around for the last couple of days, it has no value to mankind. It's worse than China for internet anonymity. There's been comparisons to Hitler, Stalin and someone called President Mao. And it's also been rejected on Reddit netsec because it's not technical. So, yeah. But what is it really? So, social mapper is a social media enumeration and correlation tool. It works on LinkedIn, Facebook, Twitter, Instagram, Google Plus, VK, which is a Russian social media site, and Weibo, Antiband, which are Chinese social media slash microblogging sites. So, what does it do? It takes you from names and images such as this, just a folder full of people's faces with a first name, space last name image. It starts correlating across sites to produce reports full of target profiles, you know, finishing off with things like this. So, you can see a person's presence across social media sites. So, why do you want it? The social media phishing. So, social media phishing is on the rise. It's now a preferred vector. I believe in 2017 it went up 500% and 100% again so far in 2018. So, that's a tenfold increase in the last two years, potentially more by the end of 2018. The reason why everyone's starting to fish on social media is because of the click rate. So, if your friend contacts you on social media, you're 33% likely to click on it, whereas only 11% if someone contacts you via your business email. So, the other reason is because with social media phishing that you can do two types of phishing. You can fish on the service so you can send people messages on Facebook or LinkedIn, or you can do pretext around the site, you know, sending Facebook code of conduct updates or something like that via email. So, how does it work? So, social mapper has three phases. The first phase is the setup phase. So, there's three ways you can run social mapper. You can feed in a CSV with names and links to images online. You can feed in a folder full of images, JPEGs or PNGs like the picture I showed you earlier. Or you can just feed in just the name of a company on LinkedIn, which I think is where the real power of it comes. You know, you just feed in a single name of a company. So, also with social mapper you can fully customise your enumeration. So, you can choose between accuracy or speed. So, if you like running fast mode, it runs quickly because it goes through the list. Once it's downloaded all the pictures of your targets after you've done a search, it basically comes back and it goes down the list and does, and that first match that it finds, it will just report that. But on accurate mode, which obviously takes longer, it will go down the list and it will keep going past and find the very best match out of all the people that it finds. You can set the facial recognition threshold. So, you can, if you set it high, you will get less results, but they will be more accurate. If you set it really low, you will get more results and you will potentially find people who don't look quite right in their Christmas photo or something. But you'll also get false positives along with them. So, it's really how you want to run it and what you want the results for. You can also obviously pick which sites you want to run. You don't have to run it on all of them. You pick whichever ones you want to run. So, phase two, this is where the real meat of social mapper is in the mapping phase. So, how it works is, basically, you start it off in the terminal with whatever your input type is and from the input types, it builds a list of people. And then with the name and with the image. And then what it does is it searches on the various social media sites. You can see it happening now in the browser. When you run it yourself, the browser doesn't run by default. It will just be all happening in the terminal. It will be running in headless mode, which really speeds this up. But obviously I'm just showing this for demo purposes. So, what it starts doing is it puts the name in. It's instrumenting the Firefox web browser using Selenium and searching on all these social media sites after it's logged in with your credentials that you give it. And then it searches for the name and then downloads all the profile pictures of the top 20 to 30 people with that name and then performs facial recognition on them to find the actual person for the match. So, you get your results. I like putting it in the both mode here. You get your results all on screen. Obviously because if you don't install a dependency and you wait 15 hours, it's a real pain when you don't get any results at the end. That's happened to me. So, stage three. This is a reporting phase. So, social mapper spits out a few different types of reports for you to feed into other things. So, first of the HTML report. It's just useful, quick enumeration, verification of your results. It's nice and easy to scan through and see the people you've got. It chucked out CSV reports. So, you've got all the different social media profiles for each person on each line. Just CSV reports for compatibility. You can take this CSV report and feed it into something like Maltego. Get some really nice graphs showing everyone and all your targets and their social media profiles. You can just see. So, it's just to show you. All I've put in here is my company's name. And then it's come back with 779 results because it's gone on LinkedIn. It's done a reverse search for all the employees. Pulled them all out and then found all their social media profiles for all the different sites. So, the last thing that Social Map does is if you provide it with a fuzzy email format so you can provide it with something like first initial last name at domain.com then it will take the people's names. This isn't new. Other tools do this, but it will take the person's name, generate an email address for them and then generate these CSV files for each individual social media site. So, one for Facebook, Google+, Instagram, LinkedIn and so on. And then the basic point of this is that you can take these CSV files and feed them into phishing tools such as Lucy or Go Fish. And then you have everything you need in there in each column for their Facebook sites to transfer them to after you've got their credentials. You've got the profile picture there to include in the phishing pretext to add a bit of realism to the phishing pretext. Only just you have everything there to feed into other tools. And that's it, guys. That's Social Mapper. It's available free on GitHub. Created by me, Jacob Wilkin. Thank you very much.