The Privacy, Security, & OSINT Show – Episode 131
Posted on July 19th, 2019
EPISODE 131-Is Your Personal Website Private & Secure?
This week Jesse joins me to talk about personal and small business website security and privacy. You might be surprised at how much we expose about ourselves when we accept the default privacy and security settings when we launch a new site.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Stitcher / Spotify
SHOW NOTES:
Disclaimers
Domain privacy
DNS registration
Hosting Registration
Archive restriction
Archive.org
Robots ignored
HTML page:
<meta name=“robots” content=“noindex” /> </head>
<meta name=“robots” content=“noarchive”>
<meta name=“robots” content=“noarchive, notranslate, noimageindex”>
htaccess:
RewriteEngine On
RewriteCond %{HTTP_USER_AGENT} (archive.org_bot) [NC]
RewriteRule .* – [R=403,L]
Use 2FA on all accounts
General Website Security
Backup issues
Wordpress
https://www.exploit-db.com
https://wpscan.org/
Forums
Updating
FTP considerations
Content
Shared hosting
https://www.yougetsignal.com/tools/web-sites-on-web-server/
Tiers
Hosting Providers
Windows vs Linux
SelfHosted
Email
CPanel
Final Thoughts
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
Amazon: http://amzn.to/2IAyNzm
Filed under Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 131
The Privacy, Security, & OSINT Show – Episode 130
Posted on July 12th, 2019
EPISODE 130-This Week In Privacy
This week I catch up on the latest privacy & OSINT news, offer a warning about third party keyboard apps, and revisit Blackhat & Defcon operational security.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Stitcher / Spotify
SHOW NOTES:
Virtual Keyboard Concerns
https://inteltechniques.com/blog/2019/07/11/last-chance-to-register-for-online-training/
Blackhat/Defcon Privacy Considerations
https://tutanota.com/blog/posts/free-encrypted-calendar/
https://www.bbc.com/news/technology-48950503
https://www.businessinsider.com/slack-eff-data-retention-encryption-2019-7?r=US&IR=T
https://matrix.org/
https://www.zdnet.com/article/microsoft-stirs-suspicions-by-adding-telemetry-files-to-security-only-update/
https://www.oo-software.com/en/shutup10
https://www.latimes.com/business/la-fi-license-plate-recognition-drive-through-restaurant-20190711-story.html
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
Amazon: http://amzn.to/2IAyNzm
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 130
Last Chance to Register for Online Training
Posted on July 11th, 2019
Hello all,
At the close of business on July 31, 2019, we will stop accepting new members to the online IntelTechniques OSINT, Privacy, & Cyber video training. This post explains our decision and how you can enroll before the deadline.
Over the past several months, we have seen a huge spike in new members to the training. From a business perspective, this is amazing news. However, we have always had a theoretical maximum number of members we desired. We take pride in offering same-day support to all members, and we are reaching the capacity in order to maintain immediate customer service. Below are some anticipated common questions with our responses.
I am already a member of the training, what does that mean for me?
-Nothing really. I will keep updating the videos and tools. Nothing is being removed during your membership. You should see no change. By capping our number of members, you do not risk losing priority support.
If I enroll before August 1, 2019, will I still receive unlimited access to the tools and forum, even after my membership expires?
-Yes. You would be “grandfathered” in.
Will you open up enrollment on a future date after August 1, 2019?
-We have no plans of reversing this decision.
What happens when my membership expires?
-If you expire before August 1, 2020, you can renew until then within the training portal. ALL accounts will expire by August 1, 2020, at which time the online video training will be closed completely.
I have a bulk-license invoice that cannot be paid before your due date, what happens?
-No worries, just contact us and we will get you sorted.
Where do I find pricing and purchase details?
https://inteltechniques.com/training/
Finally, a huge thanks to all current and former members of the online training for all of their support. Many new training videos are being planned right now.
MB
Filed under OSINT | Comments Off on Last Chance to Register for Online Training
The Privacy, Security, & OSINT Show – Episode 129
Posted on July 5th, 2019
EPISODE 129-Privacy vs. Your Neighborhood
This week I discuss various neighborhood privacy threats such as Nextdoor.com, a new physical security app which monitors any room for intrusion, and a new OSINT tip for finding people.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Stitcher / Spotify
SHOW NOTES:
PRIVACY VS. YOUR NEIGHBORHOOD:
ROOM MONITORING WITH HAVEN:
https://guardianproject.github.io/haven/
OSINT:
https://www.cyberbackgroundchecks.com/
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
Amazon: http://amzn.to/2IAyNzm
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 129
The Privacy, Security, & OSINT Show – Episode 128
Posted on June 28th, 2019
EPISODE 128-PSA: Don’t Respond to Feedback Requests
This 8 minute show reveals why we should resist providing feedback to service providers.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Stitcher / Spotify
SHOW NOTES:
Discussion
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
Amazon: http://amzn.to/2IAyNzm
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 128
The Privacy, Security, & OSINT Show – Episode 127
Posted on June 21st, 2019
EPISODE 127-Back to Privacy
This week I return to news and commentary about the latest privacy concerns and present a dark web OSINT tip.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Stitcher / Spotify
SHOW NOTES:
BACK TO PRIVACY:
Bank Fail
Inline Scripts: https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/
Anonymous Apple Purchase Update
Apple Sign In: https://techcrunch.com/2019/06/03/apple-sign-in-privacy/
Ebay Data Removal: https://www.ebay.com/help/account/changing-account-settings/closing-account?id=4199
JoinToken Failure: https://jointoken.com
https://globalnews.ca/news/5347720/weight-loss-grants-customer-health-information/
OSINT:
https://darksearch.io
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
Amazon: http://amzn.to/2IAyNzm
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 127
The Privacy, Security, & OSINT Show – Episode 126
Posted on June 14th, 2019
EPISODE 126-A Bad Week for OSINT, Great for Privacy
This week I discuss the disappearance of many online investigation resources such as Facebook Graph, Pipl (Free), and numerous custom OSINT search tools. On the flip-side, I talk about how this is beneficial toward privacy.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
A BAD WEEK FOR OSINT:
FB Research: https://gist.github.com/nemec/2ba8afa589032f20e2d6509512381114
Tools: https://sowdust.github.io/fb-search/
Pipl: https://pipl.com/corp/next-step-for-pipl/
HIBP: https://www.troyhunt.com/project-svalbard-the-future-of-have-i-been-pwned/
OSINT:
http://inteltechniques.com.ozx.co/
http://img.sur.ly/thumbnails/620×343/i/inteltechniques.com.png
https://today-date.com/
http://today-date.com.ozx.co/
https://www.easycounter.com/report/today-date.com
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
Amazon: http://amzn.to/2IAyNzm
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 126
The Privacy, Security, & OSINT Show – Episode 125
Posted on June 7th, 2019
EPISODE 125-What Happened?
This week I discuss the attacks toward the site which forced removal of the online OSINT tools.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
Discussion
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
ProtonVPN: https://protonvpn.net?aid=IntelTechniques
Amazon: http://amzn.to/2IAyNzm
Silent Pocket: https://silent-pocket.com/discount/IntelTechniques
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 125
The Privacy, Security, & OSINT Show – Episode 124
Posted on May 31st, 2019
EPISODE 124-Does DNS Matter?
This week I am joined by Jim Nitterauer to discuss DNS services and how it may protect your internet traffic.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
INTRO:
NONE
DOES DNS MATTER?:
@jnitterauer
jim@creativedata.net
https://www.youtube.com/watch?v=Wl-M007tFO0
DNS Risks
Browsers using embedded DNS
Provider Comparison
Google 8.8.8.8
Cloudflare 1.1.1.1
Quad9 9.9.9.9
OpenDNS 208.67.222.222
DNS Encryption:
DNS over HHTPS vs DNS over TLS
Firefox Configurations:
network.trr.mode from 0 to 2.
network.security.esni.enabled from False to True
network.trr.uri (CF by default)
Test:
https://www.cloudflare.com/ssl/encrypted-sni/
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
ProtonVPN: https://protonvpn.net?aid=IntelTechniques
Amazon: http://amzn.to/2IAyNzm
Silent Pocket: https://silent-pocket.com/discount/IntelTechniques
Filed under Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 124
The Privacy, Security, & OSINT Show – Episode 123
Posted on May 24th, 2019
EPISODE 123-Researching & Acquiring Data Breaches & Leaks
This week my guest Jesse and I talk about researching data breaches and leaks, and the conversation goes much deeper than any other discussion I have had on this show about the topic. This should offer some insight for both the privacy crowd and the OSINT enthusiasts. I also discuss the latest privacy news since the last show.
Support for this show comes directly from the IntelTechniques online OSINT & Privacy video training. We now have over 300 videos with over 100 hours of content, with more added every month. Listeners of this show always receive a 25% discount at https://inteltechniques.com/25.
Listen to all episodes at https://inteltechniques.com/podcast.html
or Subscribe at:
RSS / iTunes / Google / Stitcher / Spotify
SHOW NOTES:
INTRO:
https://krebsonsecurity.com/2019/05/account-hijacking-forum-ogusers-hacked/
https://www.wired.com/story/rants-and-raves-square-emails/
https://www.theregister.co.uk/2019/05/08/airbnb_host_jailed/
https://blog.mozilla.org/firefox/block-cryptominers-with-firefox/
https://blog.mozilla.org/firefox/how-to-block-fingerprinting-with-firefox/
https://medium.com/coinmonks/the-most-expensive-lesson-of-my-life-details-of-sim-port-hack-35de11517124
RESEARCHING & ACQUIRING DATA BREACHES & LEAKS:
Breach vs Leak
Database comparisons
Service Comparisons:
https://www.shodan.io/
https://www.binaryedge.io/
Search Strings:
https://www.shodan.io/search?query=product%3Aelastic+port%3A9200+
https://www.shodan.io/search?query=product%3AMongoDB+
Demo:
https://www.shodan.io/search?query=product%3Aelastic+port%3A9200+instagram
http://3.8.0.106:9200/instagram/_search?size=100
CFAA:
https://en.wikipedia.org/wiki/Computer_Fraud_and_Abuse_Act
Data Removal Workbook:
https://inteltechniques.com/data/workbook.pdf
Affiliate Links:
PIA: https://privateinternetaccess.com/pages/buy-vpn/crimeinfo
ProtonVPN: https://protonvpn.net?aid=IntelTechniques
Amazon: http://amzn.to/2IAyNzm
Silent Pocket: https://silent-pocket.com/discount/IntelTechniques
Filed under OSINT, Podcast, Privacy, Security | Comments Off on The Privacy, Security, & OSINT Show – Episode 123