>>105417443
This isn't your jobs thread or cert thread, it's a group therapy session. /Cyb/er/sec/urity/pri/vacy general is for the discussion of anything and everything related to cyberpunk culture, cybersecurity, and digital privacy.

--[/Cyb/erpunk]-----
The FAQ: https://sizeof.cat/post/cyberpunk-faq/
What is /cyb/erpunk? https://pastebin.com/pmn9vzWZ
How do I into /cyb/erpunk? https://pastebin.com/5tpNFQds
Huge list of cyberpunk media: https://sizeof.cat/post/cyberpunk/
The cyberdeck: https://pastebin.com/7fE4BVBg
Cyberlife: https://jinteki.industries/files/cyberlife.7z
Bibliothek: https://www.mediafire.com/folder/4m5hd2065hde8/Bibliothek

--[/Re/verse Engineering]-----
Getting into /re/: https://igwiki.lyci.de/wiki/Reverse_Engineering

--[/Sec/urity]-----
"Shit just got real": https://pastebin.com/rqrLK6X0
Cybersecurity basics: https://igwiki.lyci.de/wiki/Cybersecurity_-_/sec/_guide
and armory: https://igwiki.lyci.de/wiki/Cybersecurity_-_basics_and_armory
learning: https://igwiki.lyci.de/wiki/Cybersecurity_-_Learning/News/CTFs
Reference books (PW: ABD52oM8T1fghmY0): https://mega.nz/#F!YigVhZCZ!RznVxTiA0iN-N6Ps01pEJw
/sec/ PDFs: https://mega.nz/#F!zGJT1QQQ!O-8yiH845GN26ajAvkoLkA
EFF anti-surveillance: https://ssd.eff.org/
Other library: https://mega.nz/file/UCgEGAjb#rwNcnMAQCUUbSp8supsFvn9QEHCWUW86eLcZa16ZG4Y

--[/Pri/vacy]-----
Tools: https://www.privacyguides.org/en/tools/
Hitchhiker’s Guide: https://anonymousplanet.org/guide.html
Hardware: https://ryf.fsf.org/products
Frontends: https://igwiki.lyci.de/wiki/Privacy_friendly_frontends
OSINT Guide: https://inteltechniques.com/index.html
Firmware: https://libreboot.org/
RMS: https://stallman.org/facebook.html

--[/hmg/ Hackerman General]-----
VM/CTFs:
http://overthewire.org/wargames/bandit/ - easy beginner
https://www.vulnhub.com/ - prebroken images
https://www.hackthebox.eu/ - super secret club
Huge info dump: https://hmg.neocities.org/

You know those people search sites like Spokeo and True People Search and shit? I forgot what they're called. Anyway is there any reason not to request they (the big ones at least) remove my info?

What practises do you follow for good computer security, lads? Here are some of things I do:

>Only install software from trusted sources
>Install security updates as soon as they're available
>Don't stay on software that is no longer getting security updates (e.g. Windows 7, or an old smartphone that no longer gets updates)

>>105732640
Definitely request the big ones, I found this list to be helpful:
https://pastebin.com/9tc94g2T
https://pastebin.com/raw/9tc94g2T
Intelius is a real pain to deal with, the only way I could get them to remove data was by filing a BBB complaint.

Ayy I love these threads but never participate in them.
I was spooked since I thought sizeof.cat was down.

Throwing out a general question; but you think the swiss are going to pull out that shitty surveillance law soon? It seems like lately even the toberone people are taking in the dumb
>for your security
juice.

What are the recommended places/tools to find comprehensive data breach info, or for doing osint on yourself?

>>105732878
https://haveibeenpwned.com/

Has anyone tried a P2P messenger like Briar, OnionShare or Cwtch? I've heard Cwtch is shit but Briar is actually pretty good from what I've read

>>105734247
I haven't heard of those. If you need a messenger why not just use Signal?

>>105734310
Signal requires a phone number to connect to it and its servers are centralized

>>105734833
>go to a nearby city
>buy a sim card, they're extremely cheap
>use the number of that sim card to sign up for signal
>once you're signed up for signal, take the burner sim card out of your phone, and just store it somewhere in case you need it
Surely that phone number could then only be traced to that city, rather than your home address.

And if you're REALLY paranoid you could buy a burner phone while you're in the city, so your normal phone's IMEI isn't associated with the burner SIM card.

>>105732590 (OP)
how come the cyberpunk retards ITT NEVER talk about a future society in which you will be able to use solar panels to charge your electric car to spend $0 on fuel and be able to live on your own, far from the city, and maybe even produce your own food and stuff, as long as you have your own land?
are cyberpunk retards actually OK with the idea of having corporations own them? did they go from thinking such society is a dystopia to loving the idea of owning nothing and being happy?

>>105734247
>>105734833
is this the new openbsd shitposting general

what is there to talk about in this thread. youd probably nag me about scanning. not the right kind of people.

>>105732590 (OP)
List cool air gapped machines.

Raspberry Pi doesn't count (it has wifi and bt)

>>105734897
>buy a sim card
no

>>105734833
this

signal is BAD

>>105732590 (OP)
actual previous thread >>105729696

epoxy on my ram and rom

>>105737073
okay so i want to get a list of woocommerce sites. Can you guys do that muh hawats.

>>105737073
welcome to this thread. you can't talk about security here because it's only ever visited by LARPers and cyberpunk retards.

>>105737992
you can talk about security here fine everyone knows the most secure computer is the one thats been nuked from orbit everything else is some kind of compromsie

>>105738000
ok. let's talk about security. post 0day or CVE.

>>105738007
ok heres one https://nvd.nist.gov/vuln/detail/CVE-2025-48752

any actual tips on how to start to VPN correctly?
Would you reccommend buying a physical firewall as well?
in this trying times I want to start actually taking this more seriously

>>105738047
just windows with bitdefender and a vpn and thats it. As someone who got pwned nothing else worked.

>>105732590 (OP)
Great! I missed you guys.

>>105738209
Well, let me change the question, any VPN you guys reccomend?
I know free VPNs are eh, but dunno if the right choice is to pay for one,

also for ativirus I have Windows defender and Malwarsbytes

Anyone here used or uses Opensk key for 2fa?
Reliable?
https://github.com/google/OpenSK

>>105738275
i use private internet access cause its cheap and it has a history of keeping no logs either way. it can also do port forwarding and give you a uniwue ip address.
some people prefer mullad cause you can pay it with crypto.

>>105738418
>you can pay it with crypto.
interesting, I also want to start using crypto but I've got no idea how yet, thanks for the answer

>>105738605
mullvad typo

Much has been happening™ since the last set of barrels went under, I can't keep up- too much to recap. I trust some anons here have been situation monitoring. Some recent headlines - AI was used to decide to go to war:
>https://militarycognizance.com/the-ai-that-triggered-a-war-how-palantir-and-the-iaea-fueled-israels-strike-on-iran/
Or that, instead of encouraging Americans to eat better, get /fit/ and get the poisons out of the food supply, RFK Jr. wants all us mutts to use ‘wearable’ health data-collecting technology as a key driver in the MAHA agenda:
>https://www.msn.com/en-us/health/other/rfk-jr-wants-every-american-to-use-wearable-health-data-collecting-technology/ar-AA1HmIk7
--------/SEC/TV
Many of the YT'bers I post here have posted new videos like Matt Brown, who is reversing his 'smart' grill, One of the "Thingino" devs recorded a live IP camera hacking session, etc. I came across this the other day:
'The exact moment when I found the NSA backdoor in Intel CPUs'
>https://youtu.be/PwdVT5vHm2c
I don't have the context for this, but the original upload date was a few weeks ago. This is a short excerpt. Don't know if this is a new backdoor, and old one, or a nothing burger. He has another 2+ hour vid on the subject along with other items of possible interest. Deep /sec/ bros might want to check it out.
-------Discovery-------
Here's a nice progress bar for RSYNC with lots of options:
>https://github.com/laktak/rsyncy?tab=readme-ov-file#installation
-------Music-------
>https://youtu.be/7xxgRUyzgs0
>https://youtu.be/fXQmCf6bNU4
>https://youtu.be/1-V6AwlD7I8?t=24
==========================
Deep /cyb/ Radio: "Only you, can set you free."

>>105738418
>>105738605
mullvad stores all their data on ram instead of disks, in a similar way to how tails does. because of this, its basically unmatched in the vpn space in terms of their privacy. they got raided once and system pigs left empty handed

>>105738418
>>105738605
>>105738613
>>105738981
when you do get around to purchasing with monero, make sure your run your own monero node to connect to the blockchain
https://mullvad.net/en/blog/we-have-successfully-completed-our-migration-to-ram-only-vpn-infrastructure
https://mullvad.net/en/blog/update-the-swedish-authorities-answered-our-protocol-request

>>105735376
sounds like you are into solarpunk. this site is really good for anyone into that, it runs off solar power
https://solar.lowtechmagazine.com/
>>105737160
post quantum encryption is kinda gemmy tho
>>105734897
not suitable for my use case i have to migrate hundreds if not thousands of users

Final question for now, what's a good alternative email service?
I've been just making 10min mails when I can for my random manga site and the like stuff
But i've been using the same MS account for like 15 years, and while nothing really ever happened besides some obvious spam here and there, and the activity shows login attempts every coupel of hours around the world kek, and its been going on for years but I do make my passwords autism long,but the chance is not zero
I've been wanting to just leave my normie stuff there, or move it to my gmail accountI only ever used for my yutube account since I was forced to create it long ago with the failed google+ social media, besides the xbox stuff maybe
>>105738981
from what im reading both use ram
>>105739004
thanks as well

>mullvad browser
is it any good?
I use firefox and have Brave as an alt, but I dont really use it nowadays

>>105739073
email is cancer in general i just use gmail because i dont want my shit to get marked as spam. protonmail is a honeypot and ive heard tutanota has issues too but theyre good if you just want a throwaway. if you want something actually private you should use Tor via dnmx.su but that doesnt sound like what youre going for

>>105739119
Im trying to actually learn some bascic cybersecurity and how to privacy, but dunno at what point its fine and at what point its just schizo autism

>>105739180
protonmail is 100% a honeypot and to prove it i challenge you to create an email from a vpn/tor connection and not have it get block. hint: you cant and the only way to unblock it is to 1. pay money (no option for monero, only shitcoin) 2. provide a recovery email/phone number which they will turn over to police https://cyberinsider.com/protonmail-discloses-user-data-leading-to-arrest-in-spain/

>>105739200
kek, I guess ill just keep my youtube, xbox, steam etc stuff on my mail, [spoiler]that already has my phone on it anyway[/spoiler]
and rely on throways 10 min mails, for whatever random site and stuff liek sad panda and hobby websites

>>105739292
https://www.latacora.com/blog/2019/07/16/the-pgp-problem/#encrypting-email
read this if you are curious why email is a lost cause

might as well ask here
Should I remove the "MiUi global" OS from my POCO phone and just run it with regular android, im scared of fucking it up, but chinese os and all that

>>105739459
chinese spyware is better because prc has no jurisdiction or extradition with your country

Going to the computer store tomorrow to get a USB that I can attach a lanyard for to create a dead man's switch when i use tails

>>105739499
anon, i dont intend on breaking the law kek, BUT my country is about to most,likely, go full commie ruled by Karens unless some mayor shit happens, and I just want my anime and stuff, while I figure out how to move away from here if possible
also just in case I need to start worrying about piracy or some bs internet id

>>105732748
>What practises do you follow for good computer security, lads?
I have a computer that never connects to the internet.
I also rawdog crackwhores, ride motorcycles drunk without a helmet and smoke 2 packs of Chesterfields a day. I wore a wire to collect evidence on the mob and have information that will lead to the arrest and conviction of Hillary Clinton.

Lads I'm still learning Linux as much as I can. Is it worthwhile to encrypt my whole disk, or just folders as needed?

>>105739004
just curious, why monero?

I'm giving Mullvad a whirl on my Mint box. So far, great experience.

>>105739837
whole disk. make sure you use a password with good entropy
>>105739904
tldr bitcoin is public and without putting it through a mixer its extremely easy to track while monero is different in that its harder to track because it is okay just stop asking questions and be a good goy

>>105740022
Gotcha, thank you. I was reading the Privacy-Guides page on full disk encryption and LUKS is recommended. Is that still the case or is there something different I should use?

>And can I use it after install cause I already installed mint.

>>105740075
yes, LUKS is still the industry standard for drug market admins and terrorists so whatever guide your reading is correct in this case and is probably accurate in general

>>105738418
I've been reading thePrivate internet access page and they seem to also accept crypto

>>105732765
THANK YOU

>>105735376
You're thinking of solar punk. It idealizes the possible rather than cyberpunk, which prepares for the inevitable. Humans can't do anything without romanticizing it, even dying.

>>105739507
I don't get it I thought tails was a volatile environment for Tor anyway. Shouldn't it die after you take out the USB?

>>105740378
thats why im getting a lanyard so that if i have to separate myself from my computer the usb will automatically come out, killing the tails session

mods ban me in 3 seconds for talking bad about kikes but leave this shit up for hours

>>105740843
>>105740848
>Why yes i use emacs, how could you tell?

>>105737160
What's bad about Signal then? You really think the government is going to use Signal to spy on you, even though the government already has their time taken up with actual criminals? You're not as important as you think you are

>>105735376
I have no idea about the cyberpunk retards, but at least in this general, we do discuss Solarpunk. Also:
https://find.4chan.org/?q=solarpunk

>>105742449
Slow day? I'll try some more Solarpunk.

>>105732590 (OP)
How difficult is it to get a job in cybersecurity? I've been working through Practical Malware Analysis as a side hobby/out of personal interest, and I actually really like working in and analyzing assembly more so than I do in a higher level language such as C/C++.

=== /cyb/ News
For exoskeleons are /cyb
>OpenExo: An open-source modular exoskeleton to augment human function
https://archive.is/4TYiu
>To address these barriers, we present OpenExo, an open-source modular untethered exoskeleton framework that provides access to all aspects of the design process, including software, electronics, hardware, and control schemes.

Wonder what everyone’s thoughts are about being under domestic satellite surveillance and the types of fucked up weird control freaks who seem to gravitate towards those fields.

>>105744444
checked

>>105744497
There are satellites that can take detailed photos of anywhere on Earth right? But I doubt anybody is tracking my own movements with those satellites. There are much bigger targets for government agencies to worry about.

>>105744497
For decades, the amount of surveillance data, including satellite imagery, has exceeded the bandwidth of human analysts. People talk about AI, automation and smart analysis but reality is that there is just way too much data and far too few people to look into it. So you might be photographed nude in your back garden but nobody will ever see those pictures.

=== /cyb/ News:
We have now gone off the rails
>Call Center Workers Are Tired of Being Mistaken for AI
https://archive.is/wvBgE
>Lindsey, whose work involves selling and answering questions about credit cards for American Express, a Concentrix client, has developed her own tactics to try to calm customers. “I tell them, ‘I promise, I’m a real human.’” To demonstrate, she might cough or giggle, vocal tics she believes AI can’t replicate. “I even ask them, ‘Is there anything you want me to say to prove that I’m a real human?’”

>>105744497
I guess we will have to look for methods to avoid that shit. some transparent materials might be able to make it more difficult for visible and x-ray radiation to be captured by the sats, I guess
AFAIU, the resolution is good but not great either, so the pics the sats take might be good for some things (patterns like leaving and going back home or whatever), but not good enough to recognize faces.

>>105745033
nta

>the amount of surveillance data, including satellite imagery, has exceeded the bandwidth of human analysts
they have automatic methods of processing data though

>far too few people to look into it. So you might be photographed nude in your back garden but nobody will ever see those pictures.
sure, but the potential is there. the companies that own that data most probably archive it, so someone might take a look at it in the future too.

>>105745705
>they have automatic methods of processing data though
That is what they have said for decades. That doesn't mean it is anywhere near the truth. Every time there is a terrorist attack we see that
1: they never saw it coming
2: that can, however, use the recorded data to see what the attackers did up to the event and later, just not before the attack is done.

Anyone else noticed various intelligence agencies are posting job ads like there is no tomorrow? Lately it is even in my LinkedIn feed.

>>105746064
>Every time there is a terrorist attack we see that
>1: they never saw it coming
>2: that can, however, use the recorded data to see what the attackers did up to the event and later, just not before the attack is done.
anon... have you ever asked yourself why, sometimes "cameras don't work" during some events (attacks, killings or whatever)? glowies do "operations" to remove people, push for specific narratives, etc., etc.
the "never saw them coming" attacks were the ones they either carried themselves or let pass because it was convenient for them, for politicians, for big corporations, etc. to let happen.

>>105747710
Not sure where you are posting from but here in the European pseudu utopian democracy, the labour party is working hard to fill the ranks of all government organization with their members. This includes even the military and the judiciary and they have absolutely no shame. Skills and qualifications do not come into it. Accordingly, they would not recognize a threat even if it painted itself pink and was standing in front of them singing threatening days are here again.

What's your favorite way to secure/destroy old HDDs or SDDs?

Slow night. Strange, I had expected more traffic after the long break. Anyway, time for some more Solarpunk plus nightcore: https://www.youtube.com/watch?v=SW4F7psrTgY

>>105740754
update: i bought a pack of 6 strechy wrist lanyards and connected them to my usb and tried to quickly pull it out of the computer but the wirst lanyards just streched out im gonna have to return them and try again with something else

>>105739837
Always encrypt. Even if you don't think you'll ever need it, always, always, always encrypt. It's like picking a strong password or setting up multi-factor authentication at this point; it should be something you do automatically.

>>105745705
>sure, but the potential is there. the companies that own that data most probably archive it, so someone might take a look at it in the future too.
That's true of just about everything, but like the other anon said, there's a limit to the bandwidth of human analysts and even artificial intelligence, and while our capability to process and analyze data increases every day, the amount of data we're accumulating (the vast majority of which is irrelevant to almost everyone) will always outpace our ability to keep up with analyzing it.

>>105747895
Erase, overwrite, erase, high voltage, hammer.

>>105748922
hanfcuffs

>>105747895
I don't think I ever have destroyed one because I make use of old hard drives for back ups. But if I were to destroy one I guess I would first write random data over the drive several times, then physically destroy the drive.

>>105751554
Same here, I have 20 year old computers with original disks.
Destroying disks should also include grinding off the magnetic layers off the platters.

>>105752535
>Destroying disks should also include grinding off the magnetic layers off the platters.
Personally i think I would just use secure erase a few times (a feature that I think most hard drives support in firmware), which writes random data over the whole disk. After several rounds of that the data is probably non-recoverable. Then just smash up the disk with a hammer if you want. At that point, who is going to put in the effort to recover your data?

None of my data is massively sensitive anyway. I suppose people could use my personal data to try and steal my identity. But I don't think anyone is going to try to put a smashed hard drive back together and try to recover data that has been written over several times, just to try to steal somebody's identity. There are much easier to ways to commit identity theft.

>>105752593
>probably
If there is doubt then there is no doubt.
As for who will put in the effort, it all depends on the threat scenario. For a hard disk in a nuclear sub any and all efforts will be acceptable. For a discarded pr0n collection, not so much.

=== /sec/ News:
>Break The Air Gap With Ultrasound
https://hackaday.com/2025/06/29/break-the-air-gap-with-ultrasound/
>In the world of information security, much thought goes into ensuring that no information can leave computer networks without expressly being permitted to do so. Conversely, a lot of effort is expended on the part of would-be attackers to break through whatever layers are present. [Halcy] has a way to share data between computers, whether they are networked or not, and it uses ultrasound.

>>105750179
thats what im gonna be walked out in if i cant find a lanyard that works

Everytime someone recommends SimpleX I want to punch them in the throat. Nobody who shills for that buggy piece of shit has actually used it for over 10 minutes

So If I want to start using TOR, it it okay to use the Brave browser private winodw one?, or should I look elsewhere?

>>105756766
>Brave browser
delete that jeet spyware off your device before you even think of using tor

>>105751554
I'll only destroy hard drives if I have other secure backups of the data already. But at a certain point holding on to old drives becomes a security liability itself. Your odds of misplacing them, losing them, having them stolen, or otherwise accessed without your approval increases.

>>105756909
its not like its my main browser, it is firefox, for better or worse
Basically I want to learn about starting to encrypt and stuff
Which reminds me, is encrypting your phone a meme or is it actually a good idea?
Im not eve trying to break law or ome shit, my goverment is going full commie and I just want to be left alone as much as possible

>>105757070
using brave after this for anything secure is a meme
https://www.theverge.com/2020/6/8/21283769/brave-browser-affiliate-links-crypto-privacy-ceo-apology

>>105757287
A yes I remember that, all I ask is if I should be careful with TOR, or its a dont be an idiot and look/mess wih obvious dumb area where I can just use it with my usual sites outside of youtube and stuff,like usual, and also maybe use a VPN as well, maybe I have that lingering memory where it became famous for the dark web and shit, which im not interested in, just want to learn how to maximize privacy, as Im also intersted in crypto, and be ready if censorship gets bad

=== /sec/ News:
Social engineering hits an entirely new level not previously thought to exist
>Russia grooms Ukrainian teens as spies and saboteurs
https://archive.is/nZBM5
>Beyond the traditional theatre of war, senior officials in Kyiv told the Financial Times they are seeing the systematic grooming of teenagers and young adults, including those orphaned and displaced by the fighting, struggling financially or merely eager to score enough cash for a new iPhone.
>Sometimes Russian spies recruit Ukrainians under the guise of “quests” — scavenger hunt-like games that are popular with teenagers.
>Two friends aged 15 and 16 were intercepted in December in Kharkiv while allegedly carrying out surveillance on air defence positions, and coordinating targets for air strikes and arson. They believed they were playing a game that promised a financial reward to the winners, according to the SBU.

trying to find a thread mikee isnt posting in

>>105732590 (OP)
How do people run exploits and payloads and hack in general without Metasploit?

>>105760547
Packages that are distributed by the hacker groups. They run the vulns/exploits. Remember this is a business and most of the 'hackers' are just script kiddies running packages. They also only make a few thousand while the hacker groups make millions.

If you wanna be Mr. Robot with the shit then you have to get by with what you've learned from CVEs and previous knowledge. That's l33t

>>105760670
I don't hack. I'm afraid of getting caught and going to prison and being raped by subhumans. I am 32 years old and suck as computers, programming, and hacking. I have no way to practice without getting caught. If I ever hacked I would be a script kiddy, but that's how every good hacker started out. I guess I could do CTFs but I don't know how to do that shit. I wish I could be a cool underground hacker and make millions but I would be constantly on the run from the law and I am pretty comfortable living with my aging mother at her house. Also every hacker or hacker group are gatekeeping assholes and don't teach you anything new. I'm guess I'm not about dat life.

Also what are packages?

t.total newbie.