Mining Sensitive Information From Images Using Command-Line OCR

DerbyCon 1 - 2011

Presented by: Dennis Kuntz
Date: Saturday October 01, 2011
Time: 09:00 - 09:50
Location: Track 1

I will discuss the potential for using command-line OCR tools to mine documents that might otherwise be overlooked, especially in large numbers – such as scans and faxes. These documents are often overlooked because there are no searchable strings (i.e. the content is actually an image). This is a work in progress in its early stages, but I will cover some tools and some practical use of those tools within offensive scenarios (using a real world example). I will also discuss possible uses from a defensive position as well as what avenues of this approach I’d like to explore next.

Dennis Kuntz

Dennis Kuntz, CEH OSCP, currently works in Greensboro, NC as a senior director in security and architecture. He likes long walks on the beach, sunsets, and breaking things wide open to see what’s inside.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats