OSINT Workshop

Agenda

Task 2: ICS / OT Passive Geolocation Reconnaissance By Sector

Industrial control environments have large footprints. These facilities can be large. Google Maps provides satellite views of public areas. These views provide information about ingress and egress from industrial sites. Understanding the address of a site allows the area to be searched using a top-down view. It also may provide a street view of the location which can show parking areas, guard shacks, cameras, and other details about the site. While this information can be dated it is often current enough make basic assumptions about physical security.

The complexity of critical infrastructure and the societies dependency on the delivery of many services means that information needs to be shared across organizations. There are public and private services that can provide details about different types of infrastructures. Information about private industries is often publicized through media, business research, and governmental oversight. If it is on the internet, it is available to everyone. Some of these sites require accounts and may require approval to access the information. Other sites are maintained as open project that may not require accounts. These services vary but the can provide interesting details about the size, scope, and deployment of technologies in different sectors. While this information may be dated, it is a starting point.

Self-paced Questions

Review the following resources in the maps and data section to understand some of the internet accessible geolocation resources for each sector. Consider for some of these questions during your analysis. If these are too basic, come up with your own questions.

• Hunt for resources in your state or country?
  • What is the closest substation to your home?
  • What is the closest refinery to your home?
  • Where is the closest farm to your home? - besides your home :wink:
• Are we missing sectors?
• Can you find other mapping resources for these and other sectors?

AI Analysis Query

Using an AI tool of your choice, such as ChatGPT or Gemini, run the following query to help identify areas of focus. These results should be used to help organize your thoughts and also remind you of some of the online resources you may have forgotten or did not know about. Modify this statement by changing chicken ranches to a different area of focus and Texas to the geolocation of your choice.

Provide me recommendations for online mapping resources to understand the distribution of large chicken ranches in Texas.

NOTE: Why is this important to understand? Be sure to listen to the Bytes and Bites Podcast S2E28: Agroterrorism & Cyber Threats: How Farms Are Under Attack after the workshop.

Google Maps

Google Maps offers three different layer views: map view, satellite view, and street view. The satellite view may show features in and around a specific site in an overhead view. Check the site for dumpsters, guard shacks, fence lines, trees, creeks, and other areas that are good for access or monitoring. When in street view, the tool may provide additional (older) versions of the site. Reviewing the street view on different dates may illustrate what has changed with the building over time. It could help you understand when equipment, such as cameras and badge readers, were added or removed.

HINT: Do not forget to angle the street view up to see cameras on fence and pole tops.

Industrial Resource Maps and Data Sites

Electrical

• ARCGIS.com - interactive maps
  • U.S. Electric Power Transmission Lines
• State Public Utility Resources
  • Texas Electricity Supply Chain Map
• Open Infrastructure Map - a view of the world’s infrastructure mapped in the OpenStreet Database
  • Infrastructure in Corpus Christi, Texas
• U.S. Energy Atlas - “a comprehensive reference for data and interactive maps of energy infrastructure and resources in the United States.”
  • Electricity
  • Renewable Electricity Infrastructure and Resources Dashboard

Pipelines

• Pipeline101.org - “Nearly the entire mainline pipe is buried. Other pipeline components such as pump stations are above ground. Some lines are as short as a mile, while others may extend 1,000 miles or more.”
• ARCGIS.com - interactive maps
  • Texas Natural Gas Pipelines
• National Pipeline Mapping System - “ a dataset containing locations of and information about gas transmission and hazardous liquid pipelines, Liquefied Natural Gas (LNG) plants, and breakout tanks which are under the jurisdiction of the Pipeline and Hazardous Materials Safety Administration (PHMSA)”
  • National Pipeline Mapping System (NPMS) Public Viewer - select state then county
• U.S. Energy Atlas - “a comprehensive reference for data and interactive maps of energy infrastructure and resources in the United States.”
  • Crude Oil Pipelines
  • Natural Gas

Roadways

• Bureau of Transportation Statistics:
  • Transportation Geography of the United States
  • Major roadways and border crossings PDF

Airport Maps

• Wikipedia List of airports in the United States
• ARCGIS.com - interactive maps
  • Airports Map View
• Leonard’s Guide to Airport Codes - List of three-letter airport codes covering the United States

Chemical Manufacturing

• Dun&Dradstreet U.S. Chemical Manufacturing Companies List
• IndustrySelect Top 10 Chemical Manufacturing Plants in US
• EPA
  • Chemicals, Pesticides and Toxic Topics
  • EPA TRI Explorer Release Reports
  • Nueces County, Texas

Food Supply

• Cold Storage
  • Top 10 Cold Change Logistics Companies in USA
  • Global Cold Chain Alliance
• Texas Farm Finder
• Texas Department of Agriculture: Farm Fresh Network
• Factory Farm Nation: 2024 Edition

Oil and Gas

• National Energy and Petrochemical Map
• Wells in Texas
• Comprehensive List of Refineries in Texas
  • Arnold and Itkin LLP
  • The White Law Firm
• Texas Railroad Commission of Texas Maps Data

Water

• Water / Waste Water Maps
• EPA
  • Water Topics
  • My Waterway
    • Nueces County, Texas Drinking Water
• Facility Reports
  • Corpus Christi Facility Reports
• AWWA Water Map
• Texas Public Utility Commission - Water and Sewer CNN Viewer
• Texas Wastewater Outfalls

Next Step

When you are done, move onto Task 3: Student Target Identification.