The Privacy, Security, and OSINT Show

205 readers
4 users here now

The unofficial, fan run community for Michael Bazzell’s Privacy, Security, & OSINT Show podcast.

Community Guidelines
  1. No sharing of pirated materials
  2. No trolling, insulting or derogatory comments, and personal or political attacks
  3. No publishing of others' private information
  4. No spam or advertising
  5. Please keep posts related to privacy, security, or OSINT. If you wish to discuss other topics, there are other communities better suited to those.

Beyond that, let's try and understand that everyone has different threat models and are at different points of their privacy journey. Please try and be accommodating and refrain from talking down to anyone.

founded 1 year ago
MODERATORS
1
2
Welcome! (lemmy.one)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
 
 

Given the increase in popularity of Lemmy I thought the Fediverse would be a great home for discussions regarding Michael's podcast and privacy, security, etc. in general.

I'll be posting recaps of all shows going forward as well as of previous episodes when I can and look forward to discussing them!

2
 
 

We're happy to announce that BusKill is presenting at DEF CON 32.

What: Open Hardware Design for BusKill Cord
When: 2024-08-10 12:00 - 13:45
Where: W303 – Third Floor – LVCC West Hall

BusKill goes to DEF CON 32 (Engage)
BusKill is presenting at DEF CON 32

via @[email protected]

What is BusKill?

BusKill is a laptop kill-cord. It's a USB cable with a magnetic breakaway that you attach to your body and connect to your computer.

What is BusKill? (Explainer Video)
Watch the BusKill Explainer Video for more info youtube.com/v/qPwyoD_cQR4

If the connection between you to your computer is severed, then your device will lock, shutdown, or shred its encryption keys -- thus keeping your encrypted data safe from thieves that steal your device.

What is DEF CON?

DEF CON is a yearly hacker conference in Las Vegas, USA.

DEF CON Documentary
Watch the DEF CON Documentary for more info youtube.com/watch?v=3ctQOmjQyYg

What is BusKill presenting at DEF CON?

I (goldfishlaser) will be presenting Open Hardware Design for BusKill Cord in a Demo Lab at DEF CON 32.

What: Open Hardware Design for BusKill Cord
When: Sat Aug 10 12PM – 1:45PM
Where: W303 – Third Floor – LVCC West Hall

Who: Melanie Allen (goldfishlaser) More info

Talk Description

BusKill is a Dead Man Switch triggered when a magnetic breakaway is tripped, severing a USB connection. I’ve written OpenSCAD code that creates a 3D printable file for plastic parts needed to create the magnetic breakaway. Should anyone need to adjust this design for variations of components, the code is parameterized allowing for easy customization. To assemble a BusKill Dead Man Switch cord you will need:

  1. a usb-a extension cord,
  2. a usb hard drive capable of being attached to a carabiner,
  3. a carabiner,
  4. the plastic pieces in this file,
  5. a usb female port,
  6. a usb male,
  7. 4 magnets,
  8. 4 pogo pins,
  9. 4 pogo receptors,
  10. wire,
  11. 8 screws,
  12. and BusKill software.
Image of the Golden BusKill decoupler with the case off
Golden DIY BusKill Print

Full BOM, glossary, and assembly instructions are included in the github repository. The room holds approx. 70 attendees seated. I’ll be delivering 3 x 30 min presentations – with some tailoring to what sort of audience I get each time.

Meet Me @ DEF CON

If you'd like to find me and chat, I'm also planning to attend:

  • ATL Meetup (DCG Atlanta Friday: 16:00 – 19:00 | 236),
  • Hacker Kareoke (Friday and Sat 20:00-21:00 | 222),
  • Goth Night (Friday: 21:00 – 02:00 | 322-324),
  • QueerCon Mixer (Saturday: 16:00-18:00 | Chillout 2),
  • EFF Trivia (Saturday: 17:30-21:30 | 307-308), and
  • Jack Rysider’s Masquerade (Saturday: 21:00 – 01:00 | 325-327)

I hope to print many fun trinkets for my new friends, including some BusKill keychains.

Image shows a collection of 3D-printed bottle openers and whistles that say "BusKill"
Come to my presentation @ DEF CON for some free BusKill swag

By attending DEF CON, I hope to make connections and find collaborators. I hope during the demo labs to find people who will bring fresh ideas to the project to make it more effective.

3
4
 
 

Just kidding (I hope) but in the prior week's episode (303) he mentioned that he would be trying out some new forms of identification during a trip and joked that if it doesn't work out he might have to see if he can record a podcast while in a foreign jail. Then this Friday, a new episode wasn't dropped. Wonder if that actually happened.

5
 
 
Episode 303: iOS Privacy & Security

Originally Posted on July 7, 2023

Episode Link:

https://inteltechniques.com/blog/2023/07/07/the-privacy-security-osint-show-episode-303/

Show Notes:

https://inteltechniques.com/blog/2023/07/07/the-privacy-security-osint-show-episode-303/

Show Topics
00:00:37 - Intro
00:00:55 - Reasons why this show was made
00:04:05 - The benefits of iOS
00:08:15 - Chapters in extreme mobile privacy PDF that are relevant
00:09:15 - Removing stock iOS apps
00:10:58 - Connecting to iCloud
00:12:44 - Logging out of iCloud
00:13:43 - What to use for a required phone number for Apple ID
00:14:54 - Funding your Apple ID
00:15:52 - Setting up a DNS
00:17:00 - The benefits of a DNS
00:17:40 - Why LockDown for iOS is no longer recommended
00:19:09 - Using calendars and contacts
00:24:05 - Password managers
00:26:51 - VOIP options
00:37:00 - Data services
00:38:02 - Custom application settings
00:38:43 - Shortcuts and home launching application
00:40:16 - Summary of podcast
00:41:33 - Preview of next weeks episode
Links

DNS: https://nextdns.io/

Calendars & Contacts: https://www.etesync.com/

Password Manager: https://strongboxsafe.com/

VoIP App: https://acrobits.net/

VoIP Service: https://voip.ms/en/invite/Mzc2NjM3

Data Service: https://refer.telnyx.com/refer/zrfmo

6
 
 
Episode 302: Self-Hosted 4: The Next Level

Originally Posted on June 30, 2023

Episode Link:

https://feeds.soundcloud.com/stream/1553627806-user-98066669-302-self-hosted-4-the-next-level.mp3

Show Notes:

https://inteltechniques.com/blog/2023/06/30/the-privacy-security-osint-show-episode-302/

Show Topics
00:00:37 - Recap of previous shows and summary of topics for this show
00:01:50 - Self-hosting password managers
00:02:50 - Bitwarden
00:05:22 - Things to consider when choosing a password manager
00:07:05 - Using password managers for two-factor authentication
00:08:37 - Using KeepPassXC for two-factor authentication
00:09:59 - Using Standard Notes for two-factor authentication
00:13:24 - Storing documents
00:15:05 - Using Syncthing to sync data between devices
00:16:53 - Sharing photos and videos
00:18:22 - Using PhotoStructure to self-host photo structure
00:18:45 - Using Syncthing with PhotoStructure to automatically sync photos
00:20:38 - Self-hosting backups
00:21:27 - Using FreeFileSync
00:22:22 - Self-hosting communications
00:22:38 - While Wire or Signal can't be self-hosted
00:23:07 - Challenges of self-hosting Element or Matrix
00:26:00 - Self-hosting a media server
00:27:18 - Using Kodi when you have one device for watching
00:28:26 - Using Kodi as a replacement for Roku
00:30:09 - Using Jellyfin when you want to watch on more than one device
00:32:23 - Outro
Links

https://keepassxc.org/

https://bitwarden.com/help/install-on-premise-linux/

https://bitwarden.com/help/licensing-on-premise/

https://bitwarden.com/blog/new-deployment-option-for-self-hosting-bitwarden/

https://standardnotes.com/help/self-hosting/getting-started

https://syncthing.net/

https://photostructure.com/server/photostructure-for-servers/

https://freefilesync.org/

https://element.io/solutions/self-hosted-or-cloud-collaboration

https://kodi.tv/

https://jellyfin.org/

7
 
 
Episode 301: Self-Hosted 3: Calendars, Contacts, & Notes

Originally Posted on June 23, 2023

Episode Link:

https://feeds.soundcloud.com/stream/1547994979-user-98066669-301-self-hosted-3-calendars-contacts-notes.mp3

Show Notes:

https://inteltechniques.com/blog/2023/06/23/the-privacy-security-osint-show-episode-301/

Show Topics
00:00:00 - News & Updates
00:00:37 - System76 leak summary
00:04:13 - How to know if you have exposure from the leak
00:05:53 - Lessons from the leak
00:07:41 - Update on mobile privacy eBook regarding Twilio
00:09:23 - Update on mobile privacy eBook regarding GrapheneOS
00:09:54 - Recap of previous self-hosted episodes
00:10:23 - Intro to self-hosting calendars, contacts, and notes
00:12:30 - Current landscape of calendars, contacts, and notes
00:18:21 - Self-hosting options
00:18:28 - Stand-alone applications
00:19:22 - Disadvantages of stand-alone applications
00:20:40 - Server options
00:21:17 - Recommendation: Micro-PC
00:22:09 - Why renting a server isn't self-hosting
00:23:43 - Why to avoid turnkey micro pcs
00:24:21 - Michael's setup
00:24:37 - Using Etebase for self-hosting calendars and contacts
00:29:36 - Benefits of this setup
00:31:26 - Using Standard Notes docker image
00:32:27 - Opinion on Nextcloud
00:33:17 - Using a virtual machine for self-hosting instead of a server
00:33:46 - Overview of Michael's setup
00:34:00 - Accessing a home server remotely
00:36:34 - Options for creating a secure connection
00:37:10 - Using Cloudflare
00:41:05 - Is it worth it?
00:42:38 - Who is this for?
00:43:50 - Outro
News & Updates

System 76 Leak https://inteltechniques.com/book7a.html

Links

https://www.etebase.com/

https://github.com/etesync/server

https://www.etesync.com/

https://standardnotes.com/help/self-hosting/getting-started

https://standardnotes.com/help/self-hosting/docker

https://www.cloudflare.com/products/tunnel/

https://tailscale.com

https://github.com/juanfont/headscale

https://goteleport.com/

https://github.com/slackhq/nebula

https://www.zerotier.com/

8
 
 
Episode 300: Self-Hosted 2: Offline Knowledge

Originally Posted on June 16, 2023

Episode Link:

https://feeds.soundcloud.com/stream/1541980267-user-98066669-300-self-hosted-2-offline-knowledge.mp3

Show Notes:

https://inteltechniques.com/blog/2023/06/16/the-privacy-security-osint-show-episode-300/

Show Topics
00:00:00 - Intro
00:01:18 - Recap of last episode
00:02:01 - Scenarios where access to offline knowledge is required
00:03:00 - Summary of the show
00:03:40 - Backing up Wikipedia
00:04:58 - Opinion on Kiwix
00:05:45 - Different Wikipedia datasets available
00:07:09 - Connecting Kiwix to a dataset
00:07:51 - Using the replica of Wikipedia
00:08:30 - Advantages of having copy of Wikipedia
00:09:26 - Wiktionary
00:10:10 - MD Wiki
00:11:08 - Other datasets
00:13:30 - Benefits of datasets
00:15:06 - Overview of Calibre for eBooks
00:15:50 - Usage of eBooks
00:16:32 - Medical books
00:17:17 - Prepper books
00:18:16 - Searching in Calibre
00:21:38 - Offline maps using OSMAND
00:24:50 - Translating text and voice
00:26:02 - MEALI recipe database
00:27:30 - Summary
Links

https://www.kiwix.org/en/

https://library.kiwix.org/?lang=eng&q=wiki

https://download.kiwix.org/zim/wikipedia/wikipedia_en_all_maxi_2023-05.zim

https://download.kiwix.org/zim/wiktionary/wiktionary_en_all_maxi_2023-04.zim

https://download.kiwix.org/zim/other/mdwiki_en_all_maxi_2023-06.zim

https://download.kiwix.org/zim/other/zimgit-medicine_en_2022-03.zim

https://download.kiwix.org/zim/other/wikem_en_all_maxi_2021-02.zim

https://download.kiwix.org/zim/zimit/fas-military-medicine_en_2022-05.zim

https://download.kiwix.org/zim/ifixit/ifixit_en_all_2023-04.zim

https://download.kiwix.org/zim/gutenberg/gutenberg_en_all_2023-05.zim

https://download.kiwix.org/zim/stack_exchange/mechanics.stackexchange.com_en_all_2023-05.zim

https://download.kiwix.org/zim/videos/urban-prepper_en_all_2023-02.zim

https://download.kiwix.org/zim/zimit/opentextbooks_en_all_2023-05.zim

https://download.kiwix.org/zim/other/zimgit-food-preparation_en_2022-03.zim

https://calibre-ebook.com/

https://ia800207.us.archive.org/33/items/WhereThereIsNoDoctor-English-DavidWerner/14.DavidWerner-WhereThereIsNoDoctor.pdf

https://ia800209.us.archive.org/10/items/Where_There_is_no_Dentist/Where_There_is_no_Dentist.pdf

https://survivallife.com/Ultimate-Survival-Skills-Guide.pdf

https://www.trueprepper.com/wp-content/uploads/2022/12/Shelters-Shacks-and-Shanties.pdf

https://www.trueprepper.com/wp-content/uploads/2022/12/LDS-Preparedness-Manual.pdf

https://pack365.org/wp-content/uploads/2020/03/BasicScoutKnots-All.pdf

http://www.survivorlibrary.com/library/edible-wild-plants.pdf

https://www.researchgate.net/profile/Dr-Rajkumar-Yadav/publication/322210506_EDIBLE_MUSHROOMS/links/5a4bbf790f7e9b8284c2ded5/EDIBLE-MUSHROOMS.pdf

http://www.survivorlibrary.com/library/vegetable-garden-encyclopedia.pdf

https://seasonedcitizenprepper.com/wp-content/uploads/2014/02/SODIS-manual.pdf

https://graywolfsurvival.com/wp-content/uploads/Water_-_Water_Treatment.pdf

https://apps.who.int/iris/bitstream/handle/10665/42052/9789241547024_eng.pdf

https://www.redcross.org/content/dam/redcross/atg/PDFs/Take_a_Class/FA_CPR_AED_PM_sample_chapter.pdf

http://www.survivorlibrary.com/library/survival-medicine.pdf

https://armypubs.army.mil/epubs/DR_pubs/DR_a/ARN35831-TM_3-34.47-000-WEB-1.pdf

http://www.cutelariaartesanal.com.br/downloads/Carpentry_Training_Manual.pdf

https://www.sherriallen.com/gardenhandbook.pdf

https://www.fao.org/3/i3556e/i3556e.pdf

https://www.almanac.com/sites/default/files/webform/pdf/almanac-start-a-garden.pdf

https://f-droid.org/en/packages/net.osmand.plus/

https://mealie.io/