Opsec Measures: Difference between revisions

From Enlace Hacktivista
Jump to navigation Jump to search
mNo edit summary
mNo edit summary
Tag: Manual revert
Line 3: Line 3:


Make sure that you use a separate and fully encrypted computer to work from. This can be a virtual machine, USB, external drive or a throw away laptop. All of your network traffic should be routed entirely over Tor (whonix is the best for this). See [https://enlacehacktivista.org/images/6/69/Hack_back1.txt Phineas Fishers operational security practices] for hackers OPSEC.
Make sure that you use a separate and fully encrypted computer to work from. This can be a virtual machine, USB, external drive or a throw away laptop. All of your network traffic should be routed entirely over Tor (whonix is the best for this). See [https://enlacehacktivista.org/images/6/69/Hack_back1.txt Phineas Fishers operational security practices] for hackers OPSEC.
Residential [https://github.com/rofl0r/proxychains-ng proxies] over [https://support.torproject.org/glossary/torsocks Tor] ([https://linux.die.net/man/1/torsocks Tor] -> Proxy). Though not applicable for most OPSEC concerns and '''shouldn't''' be used as an operational security measure to stay safe, if you're going to be hacking then using Tor directly won't be very effective. Tor is great for our OPSEC foundations but for using different tools on your VPS and logging into different services on your target using residential proxies in areas close to your target (City, State, etc) won't raise as many red flags on the defensive side and if your IP gets blocked you can just rotate to another residential proxy. Proxies coming from residential areas will look less suspicious as opposed to data center hosted proxies. Using Tor going into the proxy will ensure any subpoenas or investigations won't de-anonymize you.


== OPSEC Tools ==
== OPSEC Tools ==

Revision as of 04:04, 5 August 2023

Recommended Measures

Here you will find resources that will help you from a technological operational security perspective. OPSEC is much more than simply what networks and technology you use.

Make sure that you use a separate and fully encrypted computer to work from. This can be a virtual machine, USB, external drive or a throw away laptop. All of your network traffic should be routed entirely over Tor (whonix is the best for this). See Phineas Fishers operational security practices for hackers OPSEC.

OPSEC Tools

There is no silver bullet when it comes to protecting yourself, staying safe and anonymous. It's important to know how to use the tools we rely on to keep us safe and free. Below you will find industry standard tools that will help keep your hacktivity private and secure.

When communicating with journalists or other hackers it's important to keep all communication end-to-end encrypted, network connection over Tor and to not use aliases or emails that lead back to your real world identity.

Know your enemy

Cyber investigators will use many techniques to uncover your identity to facilitate in a successful arrest. Books as seen below help us see and understand some of the tactics they use, even trying to infiltrate groups to collect information.

Always be aware, know your enemy!

  • (Book) Hunting Cyber Criminals: A Hacker's Guide to Online Intelligence Gathering Tools and Techniques 1st Edition
  • (Book) Tracers in the Dark: The Global Hunt for the Crime Lords of Cryptocurrency
Retrieved from "https://enlacehacktivista.org/index.php?title=Opsec_Measures&oldid=1395"