Due to calling in sick, I had to shorten this weeks episode. Of course I already had some things lined up, so I'll share some information on how I've been diving a bit more into interesting Google searches and going over pieces of information that can be found in JSON responses. So this week is a slightly different 'Week in OSINT' than you are used to see, with the following topics:
This week I start with a Netflix tip, that has been making an impact on people around me, the documentary drama called 'The Social Dilemma'. This documentary, with some small dramatised clips, consists of interviews with people from the tech industry and mainly social media. It shows how much of an influence these platforms have and how they are able to steer you into getting more and more addicted to the platforms themselves. They try to raise awareness, battle the issues, and give examples on how it changes our current society.
Link: https://www.netflix.com/nl-en/title/81254224
Relive was an unknown app to me, until I saw it popup on my timeline some time ago. With the app you can create a 'trip', take images and record video, and then upload it to a public gallery where it will host an interactive trip with all GPS data of your movements. The following Google search returns close to 73k publicly available trips, that can be viewed by anyone:
site:relive.cc/viewAfter opening a track you should also click on 'View interactive map', or add /explore to the URL by hand. This will bring up an interactive page with more information. When you open the 'developer tools' (Ctrl+Shit+i or Cmd+Option+i) and select the 'Network' tab, pay attention to the following pages or responses:
| Page/file | Information |
|---|---|
| /data?key | Detailed information on the track, GPS used, time zone, first and last name and more |
| /camera?key | A CSV with all headings, coordinates, speed, temperature et cetera |
An example of the detailed track information looks like this:
{
"id": 376***228,
"slug": "vAO*****PyO",
"test_group_experiments": [
"20200401-privacy_1_everything_public",
"20200622-public_by_default_with_toggle"
],
"activity": {
"type": "ride",
"device_name": "skyhawk-tracker-app",
"start_date": "2020-05-22T09:02:56.000Z",
"start_date_local": "2020-05-22T11:02:56.000Z",
"timezone": "Europe/Bratislava",
"start_location": {
"lat": 48.***937,
"lon": 19.***472
},
"end_location": {
"lat": 48.***047,
"lon": 19.***536
},
"name": "Lupca - Kaliste - Balaze - Lupca",
"name_is_generated": false,
"distance": 32209.58,
"total_elevation_gain": 1439,
"moving_time": 10457,
"elapsed_time": 11092,
"average_speed": 3.08,
"point_count": 4059,
"gap_count": 0,
"media": [
{
"id": "IMG_2365_1590138513792.heic",
"source": "relive",
"type": "photo",
"variants": [
{
"width": 1000,
"height": 750,
"url": "https://ua.relive.cc/7001264/IMG_2365_1590138513792.heic",
"id": "1000",
"type": "image",
"mimeType": "image/jpeg"
}To stay with the theme, let's have a look at Garmin Connect which provides a service similar to Strava, where people can upload and share their track or exercise. A lot of profiles and tracks are private, but there are still quiet a few that are indexed by Google. To search for them, you can use one of the following Google searches:
Activities (most activities can be viewed anonymously):
site:connect.garmin.com inurl:"/modern/activity/"Profiles (you do need an account at Garmin to view these):
site:connect.garmin.com inurl:"/modern/profile/"There are about 35.5k tracks and activities indexed by Google at the time of writing. Details about each activity can be viewed within the 'developer tools' in the 'Network' tab, and filter on the page that starts with: details?, which will provide detailed information in JSON format, that looks something like this (The activityID and coordinates are all readable, but redacted by me in this example):
{
"activityId": *******572,
"measurementCount": 17,
"metricsCount": 1828,
"metricDescriptors": [
{
"metricsIndex": 0,
"key": "directRunCadence",
"unit": {
"id": 92,
"key": "stepsPerMinute",
"factor": 1
}
},
*** SNIP ***
],
"geoPolylineDTO": {
"startPoint": {
"lat": 43.****2153490484,
"lon": -79.****9282234907,
"altitude": null,
"time": 1599905245000,
"timerStart": false,
"timerStop": false,
"distanceFromPreviousPoint": null,
"distanceInMeters": null,
"speed": 0,
"cumulativeAscent": null,
"cumulativeDescent": null,
"extendedCoordinate": false,
"valid": true
},
"endPoint": {
"lat": 43.****0159766078,
"lon": -79.****6491450667,
"altitude": null,
"time": 1599933372000,
"timerStart": false,
"timerStop": false,
"distanceFromPreviousPoint": null,
"distanceInMeters": null,
"speed": 0,
"cumulativeAscent": null,
"cumulativeDescent": null,
"extendedCoordinate": false,
"valid": true
},
"minLat": 43.****0159766078,
"maxLat": 43.****3197286725,
"minLon": -79.****9282234907,
"maxLon": -79.****6257646084,
"polyline": [
{
"lat": 43.****2153490484,
"lon": -79.****9282234907,
"altitude": null,
"time": 1599905245000,
"timerStart": false,
"timerStop": false,
"distanceFromPreviousPoint": null,
"distanceInMeters": null,
"speed": 0,
"cumulativeAscent": null,
"cumulativeDescent": null,
"extendedCoordinate": false,
"valid": true
},
*** SNIP ***It also includes 17 metrics that are being described at the start of the JSON response and has values called: directAirTemperature, directTimestamp, directHeartRate and so on. Not all the metrics might be of interest, but it might be worth for you to go them to see what is there.
Talking about all those tracking apps, did you know that Strava has another feature that isn't well known? It's called the 'Flyby' and it shows you people you've encountered during your exercise. It's more of a privacy concern than a real OSINT thing, but I couldn't help but mentioning this tweet that was pointed out to me by Lisa Schwartz.
(1/2) Out running this morning on a new route and a lady runs past me.
— Andrew Seward (@MrAndrew) September 14, 2020
Despite only passing, when I get home @Strava automatically tags her in my run. If I click on her face it shows her full name, picture and a map of her running route (which effectively shows where she lives) pic.twitter.com/flnHpSvA79
Tweet: https://twitter.com/mrandrew/status/1305530276127428609
Have a good week and have a good search!