I was wondering what would be the top 3 or top 5 themes for this event in my community. So far, thinking of:
1. password management
2. email security (spam/phishing/viruses)
3. web browsers and adblockers (cookies, trackers, ...)
I was also planing on talking only about #opensource solutions.
What do you think?
I've switched from Signal to Molly on my phone. Molly is a drop-in fork that offers database protection with a passphrase, automatic locking and secure RAM shredding: https://github.com/mollyim/mollyim-android
It fits decent in my workflow, especially in combination with signal-cli on my desktop
Objavljena prezentacija na: https://cryptpad.fr/slide/#/2/slide/view/q7O3Ww5kSyUpg+M06MgQ-FVDNmwh5wwLT0skA1a33R8/ ili ktatak url: https://cutt.ly/UpWXvpB
PrivacyFocusedLinux: An Ubuntu-Minimal script which keeps privacy and security in mind.
I ove nedelje od 18h nastavak prezentacija o Mrežnoj zaštiti sa temom sada o Virusima i žaštiti od istih.
If you use Windows, Hardentools by Security Without Borders is worth a look. A new version was recently released.
“Hardentools is a simple utility designed to disable a number of "features" exposed by Microsoft Windows, and primary consumer applications.”
Security w/o Borders is “a collective of hackers and security professionals working towards a stronger and more secure civil society.”
The Privacy Analyzer from Privacy.net is a good, comprehensive way to check what kind of data your browser is leaking to the ad-tech industry:
It steps through five separate tests:
I. Basic info (IP address, OS, etc)
II. Autofill leaks (does your browser allow malicious scripts to capture sensitive info with "autofill" capture?)
We’re over 1,000-strong and the privacy guides are now federated on PeerTube https://peertube.sunknudsen.com/videos/watch/9391fff2-8659-4cea-8363-9b27a0108769
PrivacyTools’s PeerTube instance is online! Create an account, kick back, and enjoy some @techlore content 😆 https://tube.privacytools.io/videos/watch/playlist/f35eaa03-867d-4062-996e-1c812be87f74?videoId=cc0871d9-4e46-42d7-bce1-d13a24b077c9
Introducing dns-tor-proxy tool, a simple local #DNS server for you to do all DNS calls over encrypted connections via @torproject https://kushaldas.in/posts/introducing-dns-tor-proxy-a-new-way-to-do-all-of-your-dns-calls-over-tor.html #privacy #security
Wow, global #foss #hosting provider https://fosshost.org/
Support them if you can.
~Open Source Security Tool of the Day~
Sifter is a osint, recon & vulnerability scanner. It combines a plethara of tools within different module sets in order to quickly perform recon tasks, check network firewalling, enumerate remote and local hosts, and scan for the 'blue' vulnerabilities within microsft and if unpatched, exploit them. It uses tools like blackwidow and konan for webdir enumeration and attack surface mapping rapidly using ASM.
– Afterward, the data is exfiltrated as an image via GET/POST to another server.
– As a server admin, frequently update the server software, and monitor file integrity + network traffic. Moreover, set a strict Content Security Policy.
New blog post: How to use the Zoom malware safely on Linux if you absolutely have to
“When I agreed to speak at Creative Mornings Istanbul tomorrow, I didn’t know they were holding the event over Zoom. I guess it’s fitting that the series I’m speaking at is called Insecure.“
🕑 1.12.0 Changelog
Server run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!