Publications
The use of Internet of Things (IoT) devices has been growing over the last few years making these appliances available in every household and organization. This significant rise of usability led to misuse, especially by non-technical people, making it an easy target for attackers to intrude on these networks. Therefore, the conventional thinking of protecting the information technology devices needs to embrace these frequent changes. Open-Source Intelligence (OSINT) is one of the modern techniques that can be used to keep track of these new systems by harvesting publicly available information. Collecting the needed information can be challenging for the IoT devices manufacturing companies and clients. This paper proposes an Open-Source Intelligence tool for IoT devices detection called Eagle-Eye which is integrated with Shodan search engine to perform OSINT queries and display it in userfriendly format. With the use of this tool companies, clients and researchers can automate their task of identifying and searching for different IoT devices statics that can be utilized and analyzed to harden these devices.
With the uprising advancement in technology each day the attack surface increase accordingly making it extremely hard to maintain and mitigate each new threat. One of the hard to deal with attack is zero-day attack. Threat hunting is used among other techniques to detect zero-day attacks. This paper presents extensive survey that addresses the main approaches, challenges, and benefits of threat hunting intelligence, in addition to reviewing state-of-the-art solutions that can be used to mitigate zero-day attacks such as Security Information and Event Management (SIEM) tools, machine learning solutions and honeypot-based solutions.