End Point Protection

• Disk Encryption Attacks
• Cryptoalgorithms, Brute Force Attacks & Implementation
• Further reading on quantum computing and its effect of cryptography - NIST Reports
• N.S.A. Able to Foil Basic Safeguards of Privacy on Web
• Physical
• Inception
• YouTube - Inception over firewire attack
• Passware Kit Enterprise - Hard Disk Decryption (paid)
• WindowsSCOPE (paid)
• Choose the Right BitLocker Countermeasure
• Intel Virtualization Technology for Directed I/O (VT-d): Enhancing Intel platforms for efficient virtualization of I/O devices
• Wiki - Disk encryption
• YouTube - Cold Boot Attack Demo
• YouTube - nullcon Goa 2015: Cold Boot Attack on DDR2 and DDR3 RAM by Marko Schuba
• Report - Cold Boot Attack on DDR2 & DDR3 RAM (pdf)
• Evil Maid Attack goes after TrueCrypt!
• Security Pitfalls in Cryptography
• Containers, Volumes and Partitions
• Security Pitfalls in Cryptography
• Windows - Disk Encryption
• Introduction
• Truecrypt
• VeraCrypt
• CipherShed
• Diskcryptor
• Symantec Drive Encryption
• BestCrypt Container Encryption
• Windows BitLocker
• Wiki - Comparison of disk encryption software
• BitLocker
• Windows BitLocker Drive Encryption Step-by-Step Guide
• What's new in Windows 10, versions 1507 and 1511
• YubiKeys
• Every Windows 10 in-place Upgrade is a SEVERE Security risk
• Setting up BitLocker
• Encrypting your laptop like you mean it
• VeraCrypt
• VeraCrypt
• Is TrueCrypt Audited Yet? Yes!
• German government audits truecrypt
• Truecrypt 7 Derived Code/Windows: Drive Letter Symbolic Link Creation EoP
• Truecrypt 7 Derived Code/Windows: Incorrect Impersonation Token Handling EoP
• http://www.openwall.com/lists/oss-security/2016/01/11/1
• NitroKey
• Yubico
• VeraCrypt - Operating Systems Supported for System Encryption
• Report - UEFI Secure Boot in Modern Computer Security Solutions
• https://sourceforge.net/p/veracrypt/code/ci/master/tree/src/Boot/EFI/Readme.txt#l19
• VeraCrypt FAQ
• Setting up VeraCrypt (Windows, Mac & Linux)
• VeraCrypt - Beginner's Tutorial
• CipherShed, Diskcryptor, Symantec & Bestcrypt
• Diskcryptor
• Ciphershed
• BestCrypt Volume Encryption
• Symantec Drive Encryption
• Wiki - Comparison of disk encryption software
• Linux
• Linux Whole Disk Encryption - Dm-crypt and LUKS
• Plain dm-crypt
• LUKS support for sotring keys in TPM NVRAM
• Two factor authentication with YubiKey for harddisk encryption with LUKS
• YubiKey Two-factor Authentication Full-disk Encryption via LUKS
• Setting up Dm-crypt / LUKS
• The Debian Administrator's Handbook
• Cryptsetup & LUKS
• zuluCrypt
• Arch - dm-crypt/Encrypting an entire system
• Arch - Disk encryption
• Encrypting the boot partition with Grub2
• Arch - encrypted boot partition (GRUB)
• Two factor authentication with Yubikey for harddisk encryption with LUKS
• Yubikey Two-factor Authentication Full-disk Encryption via LUKS
• Self Encrypting Drives (SEDs)
• Report - Ten Reasons to Buy Self-Encrypting Drives
• Defense against Disk Decryption Attacks
• Tresor Runs Encryption Securely Outside RAM
• Security Requirements and Precautions
• File Encryption
• PeaZip (recommended)
• AES Crypt (all platforms, iOS & Android)
• GnuPG / GPG (recommended; multi platforms)
• Mandatory Key Disclosure & Plausible Deniability
• Wiki - Key disclosure law
• Veracrypt - Hidden Volume
• Arch - Plain dm-crypt
• VeraCrypt - Plausible Deniability
• Appeals Court Upholds Constitutional Right Against Forced Decryption
• Why you might NOT want to use plausible deniability
• Case Studies in Disk Decryption
• KINGPIN: How One Hacker Took Over the Billion-Dollar Cybercrime Underground
• Darkmarket (book)
• Hacking Godfather 'Maksik' Sentenced to 30 Years by Turkish Court

• Is Anti-Virus dead?
• The Threat Landscape
• av-test.org - The best antivirus software for Windows Home User
• Kaspersky compare
• YouTube - FUD Crypting Service (0/35 100% FUD)
• Protection Methods
• https://cybermap.kaspersky.com/
• Paper - Malicious Code Detection Technologies
• White Paper - Malicious Code Detection Technologies
• Ransomware
• The cost of ransomware attacks: $1 billion this year (2016)
• Anti-Virus & End-Point-Protection Testing
• bitdefender
• List of AV Testing Labs
• av-comparatives.org
• The Best of Business End-Point-Protection (EPP)
• https://www.bitdefender.co.uk/business/
• https://www.kaspersky.co.uk/small-to-medium-business-security#compare
• The best antivirus software for Windows Client Business User
• Windows - The Best of Anti-Virus & End-Point-Protection
• BitDefender
• Kaspersky
• Norton
• Security Essentials Download (Windows 7)
• Protect your PC (Windows 10)
• Microsoft’s Free Security Tools – Windows Defender Offline
• https://www.bitdefender.com/media/html/freeav-upgrade/?et_cid=EMM_NA_FreeAV_Upsell
• Business End-Point-Protection (EPP)
• av-test.org - The best antivirus software for Windows Client Business User
• Linux - The Best of Anti-Virus & End-Point-Protection
• Report - Linux Security Review (pdf)
• Clamav
• chkrootkit.org
• R-fx Networks - Linux Malware Detect
• Wiki - Linux Malware
• Online & Second Opinion - Anti-Virus & End-Point-Protection
• How to send files via email to VirusTotal
• alternativeto.net/software/virustotal
• Metadefender
• Jotti's malware scan
• VirSCAN.org
• ThreatTrack
• Eset
• herdProtect - Download
• HitmanPro (paid; recommended)
• Is Anti-Virus & End-Point-Protection Dangerous?
• AVG can sell your browsing and search history to advertisers
• Zero-day vulnerabilities reportedly found in Kaspersky and FireEye security products
• 'Ridiculous' Bug in Popular Antivirus Allows Hackers to Steal all Your Passwords (Trend Micro)
• Comodo: Comodo "Chromodo" Browser disables same origin policy, Effectively turning off web security
• MalwareBytes: multiple security issues
• High-severity bugs in 25 Symantec/Norton products imperil millions
• Travis Ormandy @taviso

• What is application & execution control?
• the-backdoor-factory
• Windows - Application control
• ACLs, Windows Permission Identifier & Accessenum
• Windows Permission Identifier
• AccessEnum - check permissions
• How to Change File Permissions on Windows 7
• User Account Control (UAC)
• User Account Control (UAC)
• Wiki - User Account Control
• How User Account Control works
• Software Restriction Policies
• Use Software Restriction Policies to block viruses and malware
• Use a Software Restriction Policy (or Parental Controls) to stop exploit payloads and Trojan Horse programs from running
• AppLocker
• What Is AppLocker?
• Restrict Access to Programs with AppLocker in Windows 7
• Lock down Windows 10 to specific apps
• AppLocker Step-by-Step Guide
• Finding Evil in the Whitelist
• Guide to Application Whitelisting
• Use AppLocker and Software Restriction Policies in the same domain (Windows 10)
• Bypass the Windows AppLocker bouncer with a tweet-size command
• YouTube - NoVA Hackers Curt Shaffer & Judah Plummer - Application Whitelisting
• Bypassing Windows AppLocker using a Time of Check Time of Use Vulnerbility
• Parental controls
• Ensure a Windows PC Never Gets Malware By Whitelisting Applications
• Test: Parental control software for Windows and Mac OS X
• Windows - Third Party App Control - AV, Appguard, VoodooShield, NoVirusThanks
• Kaspersky Trusted Applications technology
• Kaspersky Internet Security 20xx
• AppGuard Breach Prevention
• NoVirusThanks - EXE Radar Pro
• VoodooShield
• Ivanti Application Control (previous Lumension)
• Carbon Black
• McAfee Application Control
• Windows - Exploitation Prevention
• EMET
• EMET (Enhanced Mitigation Experience Toolkit)
• Whitepaper on Bypassing ASLR/DEP
• Angler Exploit Kit Evading EMET
• Microsoft - EMET
• Microsoft - Moving Beyond EMET
• Process Explorer - check if EMET is running on app
• CVE-2015-2545 ITW EMET Evasion
• YouTube - EMET: Guide To New Features
• Traps, MBEA & HMPA
• HitmanPro.Alert (paid; recommended)
• MBEA - Malwarebytes Anti-Exploit (free version available)
• Sandboxie forum - MalwareBytes Anti Exploit
• Traps (paid)
• HitmanPro.Alert - Exploit Test Tool Manual (pdf)
• Windows 10 - Device Guard
• IOMMU: A Detailed view
• What's new in Windows 10, versions 1507 and 1511
• Device Guard and Credential Guard hardware readiness tool
• Windows Defender Device Guard deployment guide
• Microsoft future security strategy - black hat talk
• Windows - Defender Application Guard for Micorsoft Edge
• Windows Defender Application Guard for Microsoft Edge
• YouTube - Windows Defender Application Guard for Microsoft Edge
• Linux - Security frameworks
• AppArmor
• Wiki - AppArmor
• AppArmor - How to use
• SELinux (Security-Enhanced Linux)
• Wiki - Security-Enhanced Linux
• Wiki - SELinux Project
• SELinux on Debian
• Grsecurity
• grsecurity.net
• Configuring and Installing grsecurity
• Hardening Debian for the Desktop Using Grsecurity
• Which is better, grsecurity or SELinux?
• Linux Kernel Security (SELinux vs AppArmor vs Grsecurity)
• Which distributions maintain a kernel package with grsecurity support
• alpinelinux.org
• Arch Linux kernel and modules with grsecurity
• PaX and more
• https://pax.grsecurity.net
• https://www.rsbac.org
• http://tomoyo.osdn.jp
• http://schreuders.org/FBAC-LSM
• The New Normal for End-Point-Protection Technology
• Invincea
• Bromium
• BUFFERZONE
• Deep Freeze Standard
• Illusive Networks
• Javelin Networks
• Attivo Networks
• Canary (for business)
• Cylance (recommended for malware prevention)
• Deep Instinct

• Honeypots (Ideal for home users)
• Rethinking Honeypots
• The Honeynet Project
• Canary Tokens
• CanaryTokens
• OpenCanary
• OpenCanary (for Ubuntu)
• OpenCanary Guide
• Canary (for business)
• Artillery - Binary Defense
• Artillery Project
• Artillery (for Debian & Windows; Python script)
• Honey Drive
• HoneyDrive - for virtual box (ova)
• Intrusion Detection Systems (IDS) - Snort, Suricata, Bro IDS & OpenWIP-n
• Snort (leader)
• Suricata (free)
• Bro
• OpenWIPS-ng (for Wireless traffic; free)
• Host-Based Intrusion Detection - OSSEC
• OSSEC (free; for multi plaforms, virtual box (ova))
• OSSEC - Download
• Network Analysis - Sguil, Xplico & NetworkMiner
• Sguil
• Xplico - installed in major distributions of digital forensics and penetration testing
• NetworkMiner (for WIndows, Linux, OSX)
• Burp
• mitmproxy
• OWASP Zed Attack Proxy Project - for penetration testing
• File Integrity Monitoring (FIM) and Checking
• AFICK
• AIDE
• Osiris
• SAMHAIN
• Windows FIMS
• Solar Winds
• What to include in FIM for Windows & Linux.
• Tripwire and El Jefe
• Linux - Tripwire (free)
• Tripwire - most popular (for commercial use)
• Tripwire Open Source vs OSSEC : Which Is Right For You?
• How To Use Tripwire to Detect Server Intrusions on an Ubuntu VPS
• linux-audit.com
• Linux - Lynis (command-line)
• eljefe.immunityinc.com
• Network Security Toolkit (NST)
• nst.sourceforge.net/nst
• Network Security Toolkit (NST)
• Security Onion
• Security Onion
• Security Information & Event Management System (SIEM)
• AlienVault OSSIM (free version available)

• Introduction to Malware & Hacker Hunting
• malwareremoval.com
• bleepingcomputer.com
• Windows - Farbar Recovery Scanner
• Farbar Recovery Scan Tool (multi platforms)
• Farbar Recovery Scan Tool - Tutorials
• Automated Malware Removal Tools
• Microsoft - Malicious Software Removal Tool
• Kaspersky Removal Tool 2015 (download & update to latest version)
• (run 2nd) Malwarebytes
• SUPERAntiSpyware
• HitmanPro (paid; recommended)
• RogueKiller
• aswMBR - Master Boot Record (MBR) scanner
• List of Windows Anti-Rootkit
• RKill (use after safe mode or rename the tool failed; attempts to kill the known malware processes that allow you to run anti malware tool)
• Chocolatey (use this when you fail to download tool via the browser)
• Homebrew
• Live Rescue Operating Systems, CDs and USBs
• Rufus - To create a bootable USB/SD card with ISO
• (run 1st) HitmanPro (fast; ignore cookies ok)
• DIY
• Create Windows 7 Live CD
• Windows 7 Live CD Download
• Pendrive Linux
• UNetbootin (multi platforms)
• Pre-made / Ready to Go
• Gandalf's Windows 7 PE x86
• Ironkey w700 - Windows To Go Drives
• Wiki - Windows To Go (for enterprise)
• System Admin Live Operating System
• Hiren's BootCD
• f4ubcd
• SystemRescueCd
• Trinity Rescue Kit
• Malware Rescue Live Operating System
• Kaspersky Rescue Disk 10
• Malware Forensics Operating System (VMware applicance for Security Professional; not for find & recovering malware)
• REMnux: A free Linux Toolkit for Reverse-Engineering and Analyzing Malware
• SANS Investigative Foresensic Toolkit (SIFT)
• Windows - Malware Seek & Destroy
• Process Explorer (recommended; advanced task manager)
• Windows Sysinternals (best)
• Process Explorer - check if EMET is running on app
• whois.domaintools.com (recommended)
• Process Tools
• Process Hacker
• ShimCacheParser
• UserAssistView
• Sigcheck (scan for unsigned files)
• Sigcheck
• Autoruns (shows you what programs are configured to run during system bootup or login; can be used to run on offline systems)
• Autoruns for Windows
• Configure a script to run once when a new user logs on
• Autorunsc - the command-line version of Autoruns
• Process Monitor
• Process Monitor
• Network Connections
• Unhide (find hidden processes and TCP/UDP ports by rootkits/LKMs; for Windows & Linux)
• whois.domaintools.com (recommended)
• Networx (bandwidth monitor, connection speed test, data usage log)
• NetWorx (multi platforms)
• Linux - Malware Seek & Destroy
• Sysdig
• Sysdig
• Sysdig User Guide
• Csysdig
• Basic Command List
• Sysdig Examples
• debsums & unhide
• Unhide (find hidden processes and TCP/UDP ports by rootkits/LKMs; for Windows & Linux)
• rkhunter
• The Rootkit Hunter
• rkhunter FAQ
• LinkName
• Chkrootkit, Tiger, Clamav & Linux Malware Detect(LMD)
• chkrootkit.org
• LMD homepage
• Install LMD on Linux
• Tiger
• ClamAV
• Report - Linux Security Review (pdf)
• Wiki - Linux malware
• Persistence
• SysVinit to Systemd Cheatsheet
• Debian system initialization
• Mac, Linux & Windows - OSquery
• osquery (multi platforms)
• OSquery homepage
• OSquery Getting Start
• osquery example conf file
• Example - File Integrity Monitoring (FIM)
• Yara Configuration
• Yara in a nutshell
• GRR Rapid Response: remote live forensics for incident response
• windmill (A TLS endpoint for serving osquery configuration)
• Firmware Rootkits - Seek & Destroy
• Reference Materials
• Kaspersky: Equation Group: The Crown Creator of Cyber-Espionage
• NSA Ant Catalog - Firewalls
• Hacking Team Uses UEFI BIOS Rootkit to Keep RCS 9 Agent in Target Systems
• Hacker presentation on Hacking the Extensible Firmware Interface
• YouTube - DEF CON 22 - Panel - Summary of Attacks Against BIOS and Secure Boot
• Powerful backdoor/rootkit found preinstalled on 3 million Android phones
• Wiki - Open-source hardware
• US intelligence chief: we might use the internet of things to spy on you
• UEFI Innovations for Platform Security
• US-13-Butterworth-BIOS-Security-Code.zip
• Putting the spotlight on firmware malware
• Firmware Extraction Tools (make sure you remove private information such as wifi password before upload to virustotal
• flashrom
• uefi_firmware (Python)
• chipsec: Platform Security Assessment Framework (for Windows, Linux)
• chipsec-manual
• VirusTotal
• VirusTotal output example
• End-Point-Protection Recovery & Remediation Technology (Disk Cloning/ Re-imaging/ Roll Back)
• horizondatasys.com
• Macrium (free)
• Carbon Copy Cloner (for Mac)
• DriveImage XML Backup Software (for Windows free)
• Clonezilla
• Acronis
• TeraByte (recommended; for Windows & Linux)
• Encrypted Backup & Cloud Storage
• Add client side encryption to Dropbox, Google Drive (20+ providers)
• Boxcryptor (free version available)
• Local / On-premises Backup
• Drobo Store
• QNAP Network Attached Storage (NAS) (recommended)
• Encrypted Cloud Storage
• Seafile (recommended)
• ownCloud (free & open source)
• File Syncing
• Syncany (multi platforms)
• Syncthing (multi platforms; decentralized)
• Self Hosting Encrypted Cloud Storage
• ownCloud by Turnkey Linux
• DigitalOcean - ownCloud One-Click Install Application
• DigitalOcean - How To Install and Configure Seafile on an Ubuntu VPS
• Pydio
• DigitalOcean - How To Host a File Sharing Server with Pydio on Ubuntu
• Tahoe-LAFS (free, open source & decentralized)
• DigitalOcean - How To Set Up a Tahoe-LAFS Distributed Filesystem on Ubuntu Servers

• Hardening Standards
• Center for Internet Security (CIS)
• CIS Benchmarks (most popular)
• CIS Benchmarks PDF Download (need to pay for membership to get SCAP files)
• CIS membership - academic/institutions(paid)
• CIS SecureSuite Membership (paid)
• The United States Government Configuration Baseline (USGCB)
• Defense Information Systems Agency - STIGs - Security Template Implementation Guide
• STIG Viewing Guidance
• OpenSCAP (multi platforms)
• The Security Content Automation Protocol (SCAP) - NIST
• Search CRSC
• OpenSCAP Homepage
• OpenSCAP - Tools Download (Workbench etc)
• Security Compliance
• Vulnerability Assessment
• www.debian.org/security/oval/
• Customizing SCAP Security Guide for your use-case
• How to Evaluate DISA STIG
• Download oval definitions
• Baseline Auditing
• OpenVAS (for Kali Linux)
• Nessus Professional (recommended; Free for 7 Days)
• Nessus Home (recommended)
• Qualys (free online blackbox non-privileged scan)
• Linux - Lynis (command-line)
• linux-audit.com
• Windows - Hardening
• CIS Benchmarks PDF Download (need to pay for membership to get SCAP files)
• The United States Government Configuration Baseline (USGCB)
• Defense Information Systems Agency - STIGs - Security Template Implementation Guide
• Hardem Windows 7 for Security
• Harden Windows 8 for Security
• Harden Windows 10 for Security
• Windows - Security Compliance Manager (SCM)
• Microsoft Security Compliance Manager (import GPO & perform audit against baseline function)
• Local Group Policy (LGP) Editor (Use this to export the GPO settings and then import into Microsoft SCM; for standalone, non domain machine)
• Microsoft Security Guidance blog
• Microsoft Baseline Security Analyzer
• Policy Analyzer
• Attack Surface Analyzer - What is it?
• Attack Surface Analyzer - Download
• Linux - Hardening
• CIS Benchmarks
• The United States Government Configuration Baseline (USGCB)
• Defense Information Systems Agency - STIGs - Security Template Implementation Guide
• https://www.open-scap.org/security-policies/scap-security-guide/
• Securing Debian Manual
• Kernel Self Protection Project
• Wiki - AppArmor
• https://grsecurity.net/features.php
• SELinux Project
• Which is better, grsecurity or SELinux?
• Security Focused Operating Systems
• Tails - for security, privacy & anonymity; protection from local forensics
• Whonix workstation & gateway; a focus on anonymity & preventing leaks out of the Tor network
• Whonix OS + Quebes OS - security through isolation & compartmentalization; privacy & anonymity
• Qubes OS - Security through isolation & compartmentalization implemented using virtualization
• Hardened Gentoo Linux with grsecurity & PaX
• Subgraph OS - Security, privacy & anonymity
• Parrot Security OS - Security GNU/Linux distribution designed with cloud pentesting & IoT security in mind
• Wiki - Astra Linux - Russian Linux-based secure operating system
• Trisquel OS
• Debian - Good general use OS with a security focus
• Arch Linux - Good general use OS with a security focus
• OpenBSD - Good general use OS with a security focus
• Mempo - Looks interesting but nothing happening
• Wiki - Security-focused operating system (most are dead)

• Secure File Deletion
• Mechanical Drives
• Recuva
• Windows - Eraser
• Windows - File Shredder (with portable version)
• Solid State Drives (SSD)
• Paper - Reliably Erasing Data From Flash-Based Solid State Drives (pdf)
• YouTube - Security of Data on Disk - Computerphile
• YouTube - EXTRA BITS - Data Security and Flash Memory - Computerphile
• Recovering Evidence from SSD Drives in 2014: Understanding TRIM, Garbage Collection and Exclusions
• SSD and eMMC Forensics 2016
• Evidence Elimination
• CCleaner & Bleachit
• CCleaner (for Windows & Mac)
• BleachBit
• Winapp2.com
• BleachBit - Winapp2.ini
• Virutal Memory, Swap, RAM Memory Cache and Buffer
• Force Windows 7 to Clear Virtual Memory Pagefile at Shutdown (prevent cold boot attack)
• How to Disable Paging (swap) File
• YouTube - How to disable virtual memory in Windows 7
• How to disable and re-enable hibernation
• How to Disable Memory Dump Files
• How to Clear RAM Memory Cache, Buffer and Swap Space on Linux
• Disk Wiping (Sanitization)
• Mechanical Drives
• Windows - Eraser
• Windows - File Shredder (with portable version)
• CCleaner (for Windows & Mac)
• bleachbit
• DBAN (iso image only)
• DBAN - Usage Guide
• How to Wipe a Hard Drive (Permanently Erase Everything)
• PartedMagic (Live OS; paid)
• Drive eRazer Ultra (hardware)
• Hard Drive Degausser (hardware; expensive; magnet)
• Solid State Drives (SSD)
• ATA Secure Erase (if manufacturers support)
• Corsair - SSD Toolbox
• Intel - SSD Toolbox (windows 7 only)
• Kingston - SSD Toolbox (windows 7 only)
• Samsung - SSD Tools & Software
• SanDisk - SSD Dashboard
• Toshiba - SSD Utility
• Wiki - hdparm (for Linux)
• Wiki - Parallel ATA
• GParted (Live OS with hdparm)
• Crypto Erase (for SED)
• Ten Reasons to Buy Self-Encrypting Drives (SED)
• SED FAQ
• What is Crypto Erase?
• SanDisk Crypto Erase Tool
• ThinkPad Drive Erase Utility for Resetting the Cryptographic Key and Erasing the Solid State Drive
• Reliably Erasing Data From Flash-Based Solid State Drives
• Linux - Securely Erasing Your SSD with Linux: A How-To
• PartedMagic (Live OS; paid)
• Thermaltake BlacX Hot-Swap SATA External Hard Drive Docking Station for Windows & Mac Os Compatible
• NIST Speical Publication 800-88 - Guidelines for Media Sanitization
• Scrubbing EXIF & Metadata
• Introduction
• BatchPurifier
• https://loc.alize.us/
• Metadata ruins Google's anonymous eBay Australia protest
• The views of Iraq you weren’t supposed to see
• The 13 Most Embarrassing Web Moments
• Geotagging poses security risks
• FBI led to Anonymous hacker after his girlfriend posts picture of her breasts online
• Tools
• ExifTool
• ExifTool - Supported Files Types (Exif only)
• Hidden Data Detector (only finding metadata)
• BatchPurifier (paid)
• Doc Scrubber (for Word documents)
• Exiv2 (a C++ library & a command line utility to manage image metadata)
• JPEG & PNG Stripper
• pdfparanoia (pdf watermark removal)
• Linux - MAT (Metadata Anonymisation Toolkit)
• verexif.com (remove EXIF online)
• Guidance
• How To Turn off Geotagging in Android
• How to Turn Off Geotagging For Photos On iPhone and iPad
• The views of Iraq you weren’t supposed to see
• How to Remove The Hidden Personal Information Microsoft Office Adds to Your Documents
• ImageMagick (convert doc into images and imported to pdf file)
• Sensor Noise Camera Identification
• Associating cameras with users and objects in a social networking system - Google Patents
• Paper - Sensor Noise Camera Identification: Countering Counter-Forensics (pdf)
• ObscuraCam - Secure Smart Camera (Android)
• Camera fingerprint (extract fingerprint info from pictures)

• Clients, Protocols and Authentication
• Is STARTTLS more safe than TLS/SSL?
• Secure Email (check webmail security)
• Email Weaknesses
• The Current State of SMTP STARTTLS Deployment
• Google - Email encryption in transit
• Emkei's Fake Mailer (create fake From email address)
• ParseMail.org (recommended)
• PGP, GPG & Privacy
• rfc4880.txt - OpenPGP Message Format
• Symantec - Desktop Email Encryption (paid; blackbox)
• GnuPG / GPG (recommended; multi platforms)
• PGP & GPG Clients
• How to: Use PGP for Windows
• How to: Use PGP for Linux
• GPG Suite
• gpg4usb (portable app for Windows / Linux)
• Android
• Andriod - OpenKeychain: Easy PGP
• Secure Mobile Apps
• iOS: iphone, ipad
• iOS - iPGMail
• Tails
• Tails - OpenPGP public-key cryptography
• Tails - Decrypt or verify a text created using OpenPGP Applet
• Webmail (recommended to use with isolation & anonymous services VPN/Tor/Jon Donym/Whonix)
• Mailvelope
• Chrome - Secure Mail for Gmail (by Streak)
• Chrome - Mymail-Crypt for Gmail
• Chrome - google/end-to-end
• Windows
• Gpg4win Compendium
• Gpg4win Download
• Thunderbird
• Enigmail download
• Google - Sign in using App Passwords
• PGP & GPG Weaknesses
• 15 reasons not to start using PGP
• What's the matter with PGP? - A Few Thoughts on Cryptographic Engineering
• Improving OpenPGP Security
• Best Practices
• Example Config File - gpg.conf
• OpenPGP Best Practices
• Primary & Subkeys
• GPG Suite
• Improve the Security of Your OpenPGP Key by Using Subkeys
• Creating the perfect GPG keypair
• Using OpenPGP subkeys in Debian development
• Anatomy of a GPG Key
• Smartcards / YubiKey
• Smartcard - The OpenPGP Card
• https://www.floss-shop.de/
• YubiKey NEO and OpenPGP (recommended)
• Yubikey Neo Manager - Download
• Using GPG with Smart Cards
• Email Tracking & Exploits
• Email Privacy Tester (recommended)
• YouTube - #BadWinmail Demo
• #BadWinmail: The "Enterprise Killer" Attack Vector in Microsoft Outlook
• Thunderbird - Remote Content in Messages
• Fight Spam and Protect Your Privacy by Disabling Remote Content in Apple Mail
• Email Anonymity & Pseudonymity
• https://anonbox.net/
• https://en.getairmail.com/
• https://www.mailinator.com/
• https://www.guerrillamail.com/
• http://www.mytrashmail.com/
• http://www.tempinbox.com/
• https://www.trash-mail.com/en/
• http://www.dispostable.com/
• Send Anonymous Emails: 20 Sites To Keep Your Identity Hidden
• TorBirdy (extension for Thunderbird to make connection over the Tor network)
• TorBirdy - Download
• torbirdy - Tor Bug Tracker & Wiki
• Remailers
• Google group: alt.anonymous.messages
• Yardbird's Effective Usenet Tradecraft - Survival in an Extremely Adversarial Environment - Hacker OPSEC
• De-Anonymizing Alt.Anonymous.Messages
• YouTube - De Anonymizing Alt Anonymous Messages
• Type II - Mixmaster
• Mixmaster homepage
• QuickSilver
• Whonix on Mixmaster
• About mixmaster
• Debian package mixmaster
• Type III - Maxminion (not in active development)
• Mixminion
• mixgui - A Thunderbird Extension for Mixminion
• Type IV - Nym Servers
• Paranoia Remailer
• Is Not My Name Nymserver
• Whonix on Nymservers
• Choosing an Email Provider
• Choosing Private & Secure Email | What To Look For
• Google 2-Step Verification
• Google gives Gmail a security boost in bid to stop spy snooping
• EFF - Mandatory Data Retention
• Email Privacy Tester (recommended)
• Wiki - Comparison of webmail providers
• List of Privacy-Conscious Email Services
• reddit - discussion on email providers
• Mail-in-a-Box (DIY: Build you own email server)
• Email Providers
• Tutanota (free)
• Openmailbox
• Posteo
• CounterMail
• StartMail
• Kolab Now
• CryptoHeaven
• NeoMailBox
• Runbox
• mailbox.org
• Email Alternatives (other than messengers)
• I2P
• I2P-Bote and Thunderbird - Setup Tutorial
• LinkName
• Bitmessage (Beta; peer-to-peer)
• Paper on Bitmessage
• Retroshare
• Confidant Mail

• Introduction
• EFF Secure Messenger Scorecard
• Wiki - Comparison of instant messaging clients
• Secure Messaging Apps Comparison
• Instant Messenger
• Signal
• Signal
• Android Signal - Download
• iOS Signal - Download
• iOS - How to: Use Signal
• Android - How to: Use Signal
• Signal Audit Reveals Protocol Cryptographically Sound
• ChatSecure
• ChatSecure (iOS)
• Cryptocat
• Cryptocat (multi desktop platforms)
• Ricochet
• Ricochet (TOR required; multi desktop platforms)
• Other
• Kontalk
• Conversations
• Video & Voice Messengers
• Linphone
• Linphone
• Free sip service register
• LinkName
• Jitsi
• Jitsi (replacement for pidgin)
• Other
• Ring
• Tox
• Wiki - Comparison of VoIP software