Git-Mirrors/thgtoa
1
0
Fork 0
mirror of https://github.com/Anon-Planet/thgtoa.git synced 2024-10-01 01:25:56 -04:00
Code Issues Packages Projects Releases Wiki Activity
406 Commits 9 Branches 6 Tags 1.3 GiB
d8e9c2fb38
Commit Graph

231 Commits

Author SHA1 Message Date
pterocles
7736c42bd7
a 
Signed-off-by: pterocles <pterocles@proton.me>
 2022-08-14 11:01:18 -04:00
pterocles
7d80648d88
Doc: Microarchitecture bugs in Intel and AMD CPUs 
Add information about microarchitecture bugs

It's been a very busy year for Intel and AMD CPUs. Researchers have
discovered bugs left and right. One of them was revealed recently and I
felt compelled to add not only it but also information regarding other
types of attacks that aren't yet in the guide.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-08-14 10:26:32 -04:00
TwoSixtyThreeFiftyFour
f4d6530ffd
Adding warning about cars emergency calling features 
Small update to Appendix N: Warning about smartphones and smart devices

Adding small warning about cars having some cell network related features
 2022-08-13 17:02:51 +00:00
TwoSixtyThreeFiftyFour
c3199f7cec
Update on browser side-channel attack section 
See:

-  Release tweet: <https://twitter.com/ma1/status/1557751019945299969> <sup>[[Archive.org]](https://web.archive.org/web/https://twitter.com/ma1/status/1557751019945299969)</sup>
-  User explanation: <https://noscript.net/usage/#crosstab-identity-leak-protection> <sup>[[Archive.org]](https://web.archive.org/web/https://noscript.net/usage/#crosstab-identity-leak-protection)</sup>
-  Tor Project Forum Post: <https://forum.torproject.net/t/tor-browser-can-leak-your-identity-through-side-channel-attack/4005/2> <sup>[[Archive.org]](https://web.archive.org/web/https://forum.torproject.net/t/tor-browser-can-leak-your-identity-through-side-channel-attack/4005/2)</sup>
-  NoScript extension for Firefox (Firefox, and other Firefox-based browsers except Tor Browser): https://addons.mozilla.org/en-US/firefox/addon/noscript/
-  NoScript extension for Chromium based browsers (Brave, Chrome, Edge, and other Chromium-based browsers): https://chrome.google.com/webstore/detail/noscript/doojmbjmlfjjnbmnoijecmcbfeoakpjm?hl=en

- Removed advice to install Lekuidator+ on TBB since it's now handled by NoScript and on by default.
- Added NoScript as preferred for other Browsers (requires settings, on by default on private Windows).
- Changed Lekuidator+ from main mitigation to alternative to NoScript.
 2022-08-13 15:30:58 +00:00
pterocles
022c9f6169
Update transparency reports 
- Discord transparency report
- Snapchat transparency report
- TitkTok transparency report
- Reddit transparency report
- Twitter transparency report (link)

Signed-off-by: pterocles <pterocles@proton.me>
 2022-08-12 02:00:19 -04:00
TwoSixtyThreeFiftyFour
40e4a28464
Adding mention of OSINT room in guide 
Adding mention of OSINT room in guide
 2022-08-09 10:41:50 +00:00
TwoSixtyThreeFiftyFour
2a72f370fb
Approved 
Co-authored-by: T. H. <pterocles@proton.me>
 2022-08-09 10:09:19 +00:00
TwoSixtyThreeFiftyFour
d98d84379c
Merge branch 'master' into Updates-to-Appendix-B3-about-Threat-Modeling 2022-08-09 10:07:58 +00:00
TwoSixtyThreeFiftyFour
6d7d57e9e2
Fix bad links to VPN logging policies 
Fix bad links to VPN logging policies
 2022-08-09 09:35:05 +00:00
TwoSixtyThreeFiftyFour
0f15b8f74f
Merge branch 'Updates-to-Appendix-B3-about-Threat-Modeling' into pterocles/update-threat-modeling-section 2022-08-09 09:28:09 +00:00
TwoSixtyThreeFiftyFour
a99181080b
samm update removing name 2022-08-09 09:19:46 +00:00
Alex Anderson
66227ce576
Merge pull request #149 from pterocles/patch-1 
Appendix L: list format, make it easier to skim through
 2022-08-07 20:55:35 +00:00
Alex Anderson
5f9242537a
Merge pull request #162 from TwoSixtyThreeFiftyFour/Small-fixes-in-the-pay-with-crypto-section 
Small fix in the "pay with crypto section"
 2022-08-07 20:55:14 +00:00
Alex Anderson
3f6665f9d1
Merge pull request #153 from TwoSixtyThreeFiftyFour/Add-Tor-Mirror-URL-to-Readme-and-Guide 
Add tor mirror url to readme and guide
 2022-08-07 20:52:35 +00:00
TwoSixtyThreeFiftyFour
6cd3d17b07
Update guide.md 
Co-authored-by: T. H. <pterocles@proton.me>
 2022-08-06 19:57:50 +00:00
T. H
9e6cd3826f
Update guide.md 2022-08-06 06:24:27 +00:00
pterocles
a193dcba82
The commit 0ef3728442 ("Update of the threat modeling section") is 
missing some key elements:

Specify whom created the LINDDUN online tool. Define acronym and
explain that it is synergistic with STRIDE methodology. Add optional
illustration from Dr. K. Wuyts' 2015 publication: Privacy Threats in Software
Architectures, Ph.D. Thesis, Doctor of Engineering Science (PhD) (Leuven),
KU Leuven, January 16, 2015.

Fixes: #188 ("Update of the threat modeling section")

Signed-off-by: pterocles <pterocles@proton.me>
 2022-08-04 14:27:44 -04:00
TwoSixtyThreeFiftyFour
0ef3728442
Update of the threat modeling section 
Update of the threat modeling section
 2022-08-04 15:00:20 +00:00
TwoSixtyThreeFiftyFour
c3b9f0b9a6
Adds https://generated.photos/face-generator to creating identities section 
Adds https://generated.photos/face-generator to creating identities section

Removes the archive.org link to thispersondoesnotexist as it's pointless?
 2022-08-04 14:25:37 +00:00
TwoSixtyThreeFiftyFour
79b01253a0
little grammar fix 2022-08-04 14:03:06 +00:00
TwoSixtyThreeFiftyFour
9256fc675a
Adds Molly next to Signal in the guide 
Adds Molly next to Signal in the guide
 2022-08-04 14:00:53 +00:00
TwoSixtyThreeFiftyFour
a3e487a79c
Update guide.md 
Co-authored-by: T. H. <pterocles@proton.me>
 2022-08-03 19:07:00 +00:00
TwoSixtyThreeFiftyFour
454f04492e
Move to 1.1.6pre 
Move to 1.1.6pre to change the date and reflect that many changes did happen since 1.1.5
 2022-08-03 14:19:26 +00:00
Alex Anderson
8de6b5bb69
Merge pull request #182 from pterocles/pterocles/update-tor-route 
Update on Tor Browser
 2022-08-01 21:10:32 +00:00
pterocles
524331a69f
Update options for Tor route on Android 
Fix out of date options/settings for Tor on Android.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-08-01 12:06:01 -04:00
pterocles
aabd9a121d
Update images for Tor route 
Images were out of date. Updated and used PNGs for them.

Tor Project has condensed their settings and it is no longer
necessary to manually configure bridges.

Automatic censorship detection and circumvention:
https://blog.torproject.org/new-release-tor-browser-115/

Signed-off-by: pterocles <pterocles@proton.me>
 2022-08-01 11:48:02 -04:00
pterocles
79bdd14fbb
Refine and finish Connection Assist notification 
Add refined notice and Archive link

Signed-off-by: pterocles <pterocles@proton.me>
 2022-08-01 11:17:57 -04:00
pterocles
b208098eae
Add notice about Connection Assist 
Signed-off-by: pterocles <pterocles@proton.me>
 2022-08-01 11:07:19 -04:00
pterocles
6a183e5865
Fix a word/typo 
Overlooked a word

Signed-off-by: pterocles <pterocles@proton.me>
 2022-08-01 10:56:43 -04:00
Alex Anderson
c8b03a5228
Merge pull request #173 from TwoSixtyThreeFiftyFour/add-link-to-stylometry-reduction-article 
Added link to countering linguistic analysis
 2022-07-31 22:09:57 +00:00
Alex Anderson
3ac382a96e
Merge pull request #175 from TwoSixtyThreeFiftyFour/remove-bad-links 
Removal and fix of some bad links
 2022-07-31 22:07:58 +00:00
Alex Anderson
c174ce335f
Merge pull request #178 from TwoSixtyThreeFiftyFour/recommended-vpn-logging-policies-links 
Adding recommended VPNs logging policies links
 2022-07-31 22:06:36 +00:00
pterocles
2d8480417a
Update on Tor Browser 
Tor Browser Bundle (TBB) now has easier settings for the user.

TBB also makes the connection simpler for the user:
- Now enabled by default, moat will help you configure bridges.
- Bridge cards for viewing your Tor bridges make it both pretty and more useful for the user.
 2022-07-31 15:57:02 -04:00
TwoSixtyThreeFiftyFour
174bbdf42a
Update one link from old to org repo 
Update one link from old to org repo
 2022-07-31 14:16:09 +00:00
TwoSixtyThreeFiftyFour
7a6cb1e484
Update guide.md 2022-07-31 11:43:08 +00:00
TwoSixtyThreeFiftyFour
305c4b9150
Adding link to the no-logging policies of our recommended VPN providers 
Adding link to the no-logging policies of our recommended VPN providers in Appendix G
 2022-07-31 11:41:09 +00:00
TwoSixtyThreeFiftyFour
36254ef366
Update guide.md 
agreed

Co-authored-by: T. H. <pterocles@proton.me>
 2022-07-30 16:00:16 +00:00
TwoSixtyThreeFiftyFour
6526f80120
Update guide.md 
Ok

Co-authored-by: T. H. <pterocles@proton.me>
 2022-07-30 15:59:37 +00:00
TwoSixtyThreeFiftyFour
3fef354d6a
Update guide.md 
Ok

Co-authored-by: T. H. <pterocles@proton.me>
 2022-07-30 15:59:15 +00:00
TwoSixtyThreeFiftyFour
a309e49971
Removal of some obsolete links 
- https://anonarchive.org/ removed due to 404
- Internal link [How to spot if someone has been searching your stuff:] fixed
- Temporarily strike-through on odt and pdf links
 2022-07-30 10:43:08 +00:00
TwoSixtyThreeFiftyFour
6b5dc93604
Fix of fix of fix 
Sorry for this garbage
 2022-07-29 17:26:51 +00:00
TwoSixtyThreeFiftyFour
cf96bfe657
Fix to fix 
Fix to fix
 2022-07-29 11:14:46 +00:00
TwoSixtyThreeFiftyFour
fccb082eaa
Fixes as per review 
Fixes as per review
 2022-07-29 11:12:29 +00:00
TwoSixtyThreeFiftyFour
805a2b44dc
Added link to countering linguistic analysis 
Added link to Appendix A4 to countering forensics linguistic analysis 

https://seirdy.one/posts/2022/07/09/stylometric-fingerprinting-redux/
 2022-07-29 10:55:24 +00:00
TwoSixtyThreeFiftyFour
821918411a
Couple of "we" typos 
Couple of "we" typos
 2022-07-28 05:44:13 +00:00
Alex Anderson
c8ff26bec6
Merge pull request #167 from TwoSixtyThreeFiftyFour/Add-Qubes-4.1.x-tutorial-for-Windows-VMs 
Link to Qubes tutorial for installing Windows VMs
 2022-07-24 18:45:51 +00:00
Alex Anderson
7da672d892
Made changes 2022-07-24 18:42:50 +00:00
pterocles
86980c4b30
Add link to Arkenfox/user.js 
Arkenfox relies on a set of `about:config` tweaks in
Firefox. It allows you to set many privacy and disk 
avoidance related values which provide you with the 
ability to avoid useless Firefox additions and also 
avoid giving your browser a unique value which can
be tracked across the web.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-24 07:54:50 -04:00
pterocles
ac535721c1
Remove unnecessary addons 
Update addons recommended in guide. Explain use of 
`network.http.referer.XOriginPolicy`. Explain 
difference between uBO and NoScript.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-24 07:36:10 -04:00
TwoSixtyThreeFiftyFour
a1f2727941
Link to Qubes tutorial for installing Windows VMs 
Added link to https://github.com/Qubes-Community/Contents/blob/master/docs/os/windows/windows-tools41.md
 2022-07-24 11:34:47 +00:00
pterocles
3c280ed041
Fix Windows 10/11 links (#165) 
Update Windows 10/11 VM links in ToC and document

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-24 06:59:27 -04:00
TwoSixtyThreeFiftyFour
0aab0e4a24
Small fix in the "pay with crypto section" 
Removed outdated info
Added ref to updated info
 2022-07-23 07:56:32 +00:00
Alex Anderson
7c91c963cb
Merge pull request #160 from TwoSixtyThreeFiftyFour/Fixes-in-browser-fingerprinting-listing 
Add item in listing of sites showing your browser fingerprint and fixing typos
 2022-07-22 18:17:42 +00:00
TwoSixtyThreeFiftyFour
267c19b4ea
Add ref to a DEF CON 25 vid about fingerprinting 
Add ref to a DEF CON 25 vid about fingerprinting in various sections
 2022-07-22 16:04:54 +00:00
TwoSixtyThreeFiftyFour
022876e4e2
Add item in listing of sites showing your browser fingerprint 
Added: https://abrahamjuliot.github.io/creepjs/

Fixed: fixed some typos
 2022-07-22 14:43:47 +00:00
Alex Anderson
a446db7e40
Merge branch 'pr/147' 2022-07-22 01:40:00 +00:00
Alex Anderson
a4684ca29f
Updated not-recommended section 2022-07-22 01:36:25 +00:00
Alex Anderson
3984c597b4
Merge pull request #157 from pterocles/appendix-n-typo-fix 
Fix typo in Appendix N: "additionally"
 2022-07-22 01:25:16 +00:00
Alex Anderson
69192adf8f
Merge pull request #158 from TwoSixtyThreeFiftyFour/Replacement-of-"When-using-BTC-bonus-step-for-improving-your-privacy-using-obfuscation" 
Replacement of "When using BTC: bonus ..." section
 2022-07-22 01:24:54 +00:00
TwoSixtyThreeFiftyFour
2a27652dd4
Typo fix as per review 
Typo fix as per review
 2022-07-21 22:09:54 +00:00
TwoSixtyThreeFiftyFour
aaf3efdd52
Adding link to "Microarchitectural Side-channel Deanonymization Attacks:" warning in each route 
Adding link to "Microarchitectural Side-channel Deanonymization Attacks:" warning in each route
 2022-07-21 21:58:14 +00:00
TwoSixtyThreeFiftyFour
d360fbd67e
Typo fixing per review 
Typo fixing per review
 2022-07-21 21:02:53 +00:00
TwoSixtyThreeFiftyFour
80d89a5393
Replacement of "When using BTC: bonus ..." section 
Replace section "When using BTC: bonus step for improving your privacy using obfuscation" with appropriate recommendation.

See #154

Academic References provided.
 2022-07-21 19:46:54 +00:00
pterocles
c5efcb1396
Fix typo in Appendix N: "additionally" (#156) 
Simple typo fix as I was skimming the smartphone sections.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-21 06:48:46 -04:00
Alex Anderson
7903203f81
Added minor clarification 2022-07-21 01:17:13 +00:00
Alex Anderson
1d9a1bf114
Fixed formatting issue 2022-07-21 01:15:01 +00:00
Alex Anderson
b67e78d32d
Fixed formatting issue 2022-07-21 00:48:40 +00:00
Alex Anderson
09280ee9a1
Added important security notice 2022-07-21 00:45:59 +00:00
TwoSixtyThreeFiftyFour
599d46687d
Small fix to onion link missing the http:// 
Small fix to onion link missing the http://
 2022-07-20 13:42:53 +00:00
TwoSixtyThreeFiftyFour
9059e49054
Adding Tor Mirror URL to guide 
Adding Tor Mirror URL to guide
 2022-07-20 12:54:14 +00:00
pterocles
a8e4e64cd5
Appendix L: list format, make it easier to skim through 
Make the instructions clear and use list format to 
help guide the reader. Use imperative form. Use 
```code``` blocks for typing and **bold** for directions.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-20 06:18:42 -04:00
pterocles
c73913a646
another indentation fix. numbering 
Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-19 19:34:12 -04:00
pterocles
a4cfd3c23b
Appendix Z: change formatting (#146) 
Use bullet points instead of list format. Make it look
obvious that it is a step-by-step. Fix indentations.
 2022-07-19 19:25:16 -04:00
Alex Anderson
beadd4081e
Add references to Officer_CIA 2022-07-18 23:28:34 +00:00
Alex Anderson
9bb46f2387
Merge pull request #142 from Anon-Planet/pr/135 
Pr/135
 2022-07-17 07:01:53 +00:00
Alex Anderson
adb2a1e1d1
Moved line 2022-07-17 07:01:08 +00:00
Alex Anderson
3015f36c0f
Updated OPSEC notes 2022-07-17 06:57:48 +00:00
Alex Anderson
bf750b04a9
Merge pull request #141 from pterocles/correlation-vs-attribution 
guide: note about Correlation vs Attribution of activities
 2022-07-17 06:31:24 +00:00
Alex Anderson
aa24cb0f57
Merge pull request #137 from pterocles/patch-5 
guide: Tracking Reduction and Tracking Evasion
 2022-07-17 06:28:21 +00:00
Alex Anderson
8d814ab3d5
Merge pull request #140 from pterocles/patch-1 
guide: fix missing pointer for Anti Evil Maid
 2022-07-17 06:26:05 +00:00
pterocles
af543faddd
guide: add missing ToC item for Anti Evil Maid 
Add missing pointer
 2022-07-16 23:29:49 -04:00
pterocles
d259dd75b3
guide: note about Correlation vs Attribution of activities 
A quick note about correlation and attribution.
 2022-07-16 23:23:43 -04:00
pterocles
b46d33f1b8
guide: fix missing pointer for Anti Evil Maid 
Evil-Maid Attack section needed a reference to Anti
Evil Maid section, and the pointer was missing.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-16 21:12:55 -04:00
pterocles
965ebb7589
guide: iOS Onion Browser leaking IP 
Since 2018, it is known to have a leak in `RTCPeerConnection`.
This is something that the developers have said cannot be
removed and thus, the functionality of the browser still
contains this call, and users should be wary of using iOS
until it is fixed. We will monitor the situation but it doesn't
appear they can patch.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-16 10:43:37 -04:00
pterocles
15d4988362
Merge branch 'patch-4' into patch-5 2022-07-16 07:58:41 -04:00
pterocles
4faaf81287
guide: Tracking Reduction and Tracking Evasion 
Add TR & TE explanation to Appendix V1: Hardening your Browsers.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-16 07:39:34 -04:00
Alex Anderson
9966f35766
Merge pull request #134 from pterocles/patch-2 
guide: fix random newline that breaks a sentence
 2022-07-16 11:33:38 +00:00
Alex Anderson
727c68aae5
Merge pull request #133 from pterocles/patch-1 
guide: fix comma in 2 lines
 2022-07-16 11:31:55 +00:00
TwoSixtyThreeFiftyFour/thgtoa
9fb23f1341 Small references quick fixes 
Small references quick  fixes
 2022-07-16 12:26:13 +01:00
pterocles
7342c5c51d
guide: add additional OPSEC notes 
Loose lips (usually your own) sink ships.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-16 00:02:12 -04:00
pterocles
4e5bcdbc1a
guide: fix random newline that breaks a sentence 
This one stood right out to me, skimming the document.

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-15 14:49:47 -04:00
pterocles
f95df2d346
guide: fix comma in 2 lines 
Fixing an errant white space before comma

Signed-off-by: pterocles <pterocles@proton.me>
 2022-07-15 14:40:12 -04:00
TwoSixtyThreeFiftyFour/thgtoa
645911c326 First PR of an update to the evil-maid, tampering and OPSEC sections 
First PR of an update to the evil-maid, tampering and OPSEC sections
 2022-07-15 13:36:12 +01:00
Alex Anderson
6f66b5303c
Updated Briar message 2022-07-14 23:46:22 +00:00
TwoSixtyThreeFiftyFour/thgtoa
77da6b5267 README / Ukrainian info update and fixes 
README / Ukrainian info update and fixes
 2022-07-14 23:51:54 +01:00
Alex Anderson
7f08482169
Signed recent changes 
and fixed the PDF build
 2022-07-13 06:05:36 +00:00
Dan Kir
a98a201338
Merge branch 'master' into qubes-4-1-update 2022-07-11 04:39:51 +00:00
dan
4126d1848d
Qubes 4.1 update and AEM addition 2022-07-11 04:02:19 +00:00
Alex Anderson
08d4996a0b
Remove a thing 2022-07-10 22:45:53 +00:00
TwoSixtyThreeFiftyFour
8fc0107ec2
Fixed ref 294 
Fixed ref 294
 2022-07-10 22:42:49 +00:00