Privacy, Security, and OSINT Show

I found this magnet link on Bitsearch:

magnet:?xt=urn:btih:3C21F5F3A8E4FE2319617C9DF6548B02ECAB20AC&tr=udp%3A%2F%2Ftracker2.dler.com%3A80%2Fannounce&tr=udp%3A%2F%2Ftracker.torrent.eu.org%3A451%2Fannounce&tr=udp%3A%2F%2Ftracker.opentrackr.org%3A1337%2Fannounce&tr=udp%3A%2F%2Ftracker.breizh.pm%3A6969%2Fannounce&tr=udp%3A%2F%2Fwww.torrent.eu.org%3A451%2Fannounce&tr=udp%3A%2F%2Ftracker.bitsearch.to%3A1337%2Fannounce&dn=%5BBitsearch.to%5D+The+Privacy%2C+Security+and+OSINT+Show+-+Ep+001-305

I'm so glad I found this, and I will re-listen to many of the episodes. I currently just have the entire archive stored on my phone, listening to it through the 'local folder' feature in AntennaPod. Will soon move this to my self-hosted Audiobookshelf server.

When uploading image gives me “hmm something went wrong pls try again later”

I tried multiple browsers.

It works on the phone.

Im stumped.

Our Emergency Alert Test

Written by Aaron Kelley

Our Los Angeles office recently had the opportunity to test our recommendations for those who wish to avoid mandatory emergency alerts (and test alerts) within their mobile devices, and the results were surprising. On Wednesday, October 4th, 2023 at 11:20 Pacific, three of our devices alerted, but one did not.

There has been many conspiracy theories about how the recent test alert was an attempt by the government to collect data about our locations, but we do not buy into that. We just wanted to know if our settings worked. For our test, we full reset four mobile devices. Two were a Pixel 6A with GrapheneOS default settings. The other two were an Apple iPhone 14 with default settings. All four devices possessed eSIM service from Mint with cellular service from T-Mobile. All four were next to each other with a strong signal. The following settings represent the modifications to each GrapheneOS device. The device on the left had full alerts allowed while the one on the right had everything disabled.

The iPhones were similar. The one on the left had everything turned on while the one of the right had all turned off.

The time finally came. The GrapheneOS and iPhone devices with alerts enabled both rang loud with the test notification as expected. The GrapheneOS device with alerts disabled stayed silent with no notifications as hoped. The surprise was the iPhone which had all alerts disabled. It also blared a loud tone and presented the test message, even though we informed it not to display any alerts.

This is another reason we prefer un-Googled devices such as GrapheneOS over any Apple or Google stock device. They do what you tell them to do.

Great reminder to always do data removal yourself. This allows you to be absolutely sure that it is done correctly and kept confidential.

Data Removal Guides/Links:

https://inteltechniques.com/workbook.html

https://inteltechniques.com/data/workbook.pdf

https://github.com/yaelwrites/Big-Ass-Data-Broker-Opt-Out-List

What do/would you put over your barcode? What do you think MB has on his? Curious to see if others implement this tactic.

EPISODE 269-New OSINT Tools & Breach Data Lessons

[31:26.86] Now, one thing I've started doing is on the back of my driver's license, there is a barcode. I would never let anyone copy it, but I did go ahead and take a, I made a vinyl sticker of a new barcode and I put it on my driver's license.

[31:37.86] So if I am ever forced for some reason to allow a system to scan my driver's license, it'll scan, but the message that you're going to get is probably not something safe to talk about on this show.

https://inteltechniques.com/podcast.html

STATUS: The SoundCloud podcast archive is offline. We are researching new hosts capable of servicing this audience.

EPISODE 305-Revisiting VPNs & Firewalls

https://inteltechniques.com/blog/2023/09/08/the-privacy-security-osint-show-episode-305/

This week I revisit many updates associated with VPNs and Firewalls to coincide with the release of our next digital guide.

SHOW NOTES:

INTRO:

Jason

NEWS & UPDATES:

None

REVISITING VPNS & FIREWALLS:

https://inteltechniques.com/book7d.html

https://inteltechniques.com/firewall/

https://inteltechniques.com/vpn.html

Transcript

https://0.0g.gg/?30dc0d1379292270#AeBHewMjQdPALmfgNDoHhWsFKdzHKnYYtnAdr4vAr4bz

EPISODE 304-Linux Privacy & Security

This week we release our new digital guide Extreme Privacy: Linux Devices, I offer a conversation about Linux privacy and security, and present several important OSINT updates.

LINUX PRIVACY & SECURITY:

https://inteltechniques.com/book7c.html

OSINT:

https://inteltechniques.com/tools/index.html

Transcript

https://0.0g.gg/?793c8a2e767e1bea#5bjMkAx7ezTKRjZJ26hSYJ2BHDC9obBwNMhBEUw4zmjy

For those of you who might consider using VOIP.ms as suggested recently by MB (Michael Bazzell), beware of the limitations, specifically the MMS limitation.

Without MMS, you will NOT be able to receive messages over 160 characters in length. This is caused by the SMS 160 character limit. Anything >160 characters gets converted to a MMS message.

List of limitations below:

⚠️ LIMITATIONS

➜ The limit of the capacity to send SMS/MMS via the portal is unlimited. 
➜ The limit of sending SMS/MMS via the API is limited to 100 per day. For any modification to the limit, please contact support or open a ticket via the customer portal. 
➜ At the moment, receiving and reading MMS is only possible through the message center or by using the SMS/MMS Forward option. MMS through SIP protocol is not available. 

➜ The SMS/MMS Service is only available for US and Canadian local DID Numbers marked with the distinctive SMS/MMS Icon. 
➜ The SMS/MMS Service can only be used to send SMS/MMS Messages to Canadian and US 10 digit numbers at this time. 
➜ SIP SMS messages will only be delivered to and accepted from SIP trunks using username/password authentication. 
➜ SIP SMS messages use the SIP MESSAGE method. See RFC 3428 for details. 
➜ At this time we cannot guarantee that Short Code SMS Messages, which are usually 6 digits or less (e.g.: Skype, Bank Codes, TV Commercials etc...) will work. 
➜ We cannot guarantee that accents or special characters including non-Latin letters will be properly delivered. 

➜ Public URL shorteners such as bit.ly, tinyurl.com etc, are widely restricted by mobile providers as a response from the industry to combat SPAM campaigns and protect the consumer. Including this type of links into your messages may result in a blocked or undelivered message. 
➜ For Ported In Numbers compatible with the feature: The SMS/MMS Functionality will be available up to 48 hours after the porting process is marked as Completed. 

➜ VoIP.ms reserves the right, at its sole discretion, to limit or disable the SMS/MMS service from any account that may present marketing patterns/automation patterns/bulk sending or receiving. 

___

This week we take a brief break from the self-hosting series and revisit iOS privacy and security.

iOS PRIVACY & SECURITY:

https://inteltechniques.com/book7a.html

Benefits of iOS

Risks of iOS

Privacy & Security Considerations

Settings

Remove unused stock apps

App Store login vs iCloud login

App funding

DNS: https://nextdns.io/

Calendars & Contacts: https://www.etesync.com/

Password Manager: https://strongboxsafe.com/

VoIP App: https://acrobits.net/

VoIP Service: https://voip.ms/en/invite/Mzc2NjM3

Data Service: https://refer.telnyx.com/refer/zrfmo

Custom App Settings

Shortcuts for Home Screen

Transcript

https://0.0g.gg/?01a41f194dc84e9b#6UNbk8VAUxcKJGVAJDV8Stv9iDAm2PYa9Nfr7WzCfCT7

SELF-HOSTED 4: THE NEXT LEVEL:

This week I continue the self-hosted series with a discussion about password managers, 2FA, Docs, Photos, Backups, Comms, and Media.

https://keepassxc.org/

https://bitwarden.com/help/install-on-premise-linux/

https://bitwarden.com/help/licensing-on-premise/

https://bitwarden.com/blog/new-deployment-option-for-self-hosting-bitwarden/

https://standardnotes.com/help/self-hosting/getting-started

https://syncthing.net/

https://photostructure.com/server/photostructure-for-servers/

https://freefilesync.org/

https://element.io/solutions/self-hosted-or-cloud-collaboration

https://kodi.tv/

https://jellyfin.org/

Transcript

https://0.0g.gg/?149950011a6d89a3#5VWSgvYsTxgG1Fv9b5z33rjMyxdv6NrSjE2UcbTbJgg5

TIL the French government may have broken encryption on a LUKS-encrypted laptop with a "greater than 20 character" password in April 2023.

• https://nantes.indymedia.org/posts/87395/une-lettre-divan-enferme-a-la-prison-de-villepinte-perquisitions-et-disques-durs-dechiffres/

When upgrading TAILS today, I saw their announcement changing LUKS from PBKDF2 to Argon2id.

• https://tails.boum.org/security/argon2id/index.en.html

The release announcement above has some interesting back-of-the-envelope calculations for the wall-time required to crack a master key from a LUKS keyslot with PBKDF2 vs Argon2id.

And they also link to Matthew Garrett's article, which describes how to manually upgrade your (non-TAILS) LUKS header to Argon2id.

• https://mjg59.dreamwidth.org/66429.html

EPISODE 301-Self-Hosted 3: Calendars, Contacts, & Notes

This week I continue the Self-Hosting series with a discussion about Calendars, Contacts, and Notes.

SELF-HOSTED 3: CALENDARS, CONTACTS, & NOTES:

https://www.etebase.com/

https://github.com/etesync/server

https://www.etesync.com/

https://standardnotes.com/help/self-hosting/getting-started

https://standardnotes.com/help/self-hosting/docker

https://www.cloudflare.com/products/tunnel/

https://tailscale.com

https://github.com/juanfont/headscale

https://goteleport.com/

https://github.com/slackhq/nebula

https://www.zerotier.com/

Transcript

https://0.0g.gg/?a398c9795cd99b7e#6bi1vWv8QugMuzRSq6SCJeDWpfBZfK4QjyYc9KG48YmQ

EPISODE 300-Self-Hosted 2: Offline Knowledge

This week I continue the self-hosted series with several easy options from which anyone can benefit. Let's archive some powerful data for offline use.

SELF-HOSTED 2: Offline Knowledge

https://www.kiwix.org/en/

https://library.kiwix.org/?lang=eng&q=wiki

https://download.kiwix.org/zim/wikipedia/wikipedia_en_all_maxi_2023-05.zim

https://download.kiwix.org/zim/wiktionary/wiktionary_en_all_maxi_2023-04.zim

https://download.kiwix.org/zim/other/mdwiki_en_all_maxi_2023-06.zim

https://download.kiwix.org/zim/other/zimgit-medicine_en_2022-03.zim

https://download.kiwix.org/zim/other/wikem_en_all_maxi_2021-02.zim

https://download.kiwix.org/zim/zimit/fas-military-medicine_en_2022-05.zim

https://download.kiwix.org/zim/ifixit/ifixit_en_all_2023-04.zim

https://download.kiwix.org/zim/gutenberg/gutenberg_en_all_2023-05.zim

https://download.kiwix.org/zim/stack_exchange/mechanics.stackexchange.com_en_all_2023-05.zim

https://download.kiwix.org/zim/videos/urban-prepper_en_all_2023-02.zim

https://download.kiwix.org/zim/zimit/opentextbooks_en_all_2023-05.zim

https://download.kiwix.org/zim/other/zimgit-food-preparation_en_2022-03.zim

https://calibre-ebook.com/

https://ia800207.us.archive.org/33/items/WhereThereIsNoDoctor-English-DavidWerner/14.DavidWerner-WhereThereIsNoDoctor.pdf

https://ia800209.us.archive.org/10/items/Where_There_is_no_Dentist/Where_There_is_no_Dentist.pdf

https://survivallife.com/Ultimate-Survival-Skills-Guide.pdf

https://www.trueprepper.com/wp-content/uploads/2022/12/Shelters-Shacks-and-Shanties.pdf

https://www.trueprepper.com/wp-content/uploads/2022/12/LDS-Preparedness-Manual.pdf

https://pack365.org/wp-content/uploads/2020/03/BasicScoutKnots-All.pdf

http://www.survivorlibrary.com/library/edible-wild-plants.pdf

https://www.researchgate.net/profile/Dr-Rajkumar-Yadav/publication/322210506_EDIBLE_MUSHROOMS/links/5a4bbf790f7e9b8284c2ded5/EDIBLE-MUSHROOMS.pdf

http://www.survivorlibrary.com/library/vegetable-garden-encyclopedia.pdf

https://seasonedcitizenprepper.com/wp-content/uploads/2014/02/SODIS-manual.pdf

https://graywolfsurvival.com/wp-content/uploads/Water_-_Water_Treatment.pdf

https://apps.who.int/iris/bitstream/handle/10665/42052/9789241547024_eng.pdf

https://www.redcross.org/content/dam/redcross/atg/PDFs/Take_a_Class/FA_CPR_AED_PM_sample_chapter.pdf

http://www.survivorlibrary.com/library/survival-medicine.pdf

https://armypubs.army.mil/epubs/DR_pubs/DR_a/ARN35831-TM_3-34.47-000-WEB-1.pdf

http://www.cutelariaartesanal.com.br/downloads/Carpentry_Training_Manual.pdf

https://www.sherriallen.com/gardenhandbook.pdfhttps://www.fao.org/3/i3556e/i3556e.pdf

https://www.almanac.com/sites/default/files/webform/pdf/almanac-start-a-garden.pdf

https://f-droid.org/en/packages/net.osmand.plus/

https://mealie.io/

Transcript

https://0.0g.gg/?8fa033cd0d3710c7#BWeHGU3P1Hmqsp7dWJ6ZViXUnGHqPmkqt7pbpXbnDtVF

ZIP archive containing text files of transcripts with timestamps of episodes 250-299. These were transcribed using the FOSS whisper.cpp with the base.en model.

You can download and extract this ZIP and then use grep or rg (ripgrep) with the files to find specific keywords in order to find when and in which episode something was mentioned.

Example:

$ rg -ie 'burner.*sim' 
1276301293-user-98066669-263-proton-changes-new-breach-lessons.mp3.lrc
227:[13:32.00] I won't give out the make and model of this device, but it was very obvious that this was a knock off burner type phone that you would get maybe in a grocery store for $40 when you buy a prepaid SIM card

EPISODE 296-The Argument for a Stock Browser

This week I present an argument supporting the use of an untouched stock browser with no privacy and security hardening. Sharpen your pitchforks.

Transcript

https://0.0g.gg/?52395e757c507066#D3svvrPVrTgDoyJvyHNFVnizdnYQKXgs5dq65cFJFHTT

NEWS & UPDATES:

This week I offer many updates including new Know Your Customer concerns, better 2FA options, my latest macOS Devices digital guide, OSINT tool changes, and how to get your own free TV which of course monitors everything you do.

KYC Changes

Standard Notes 2FA Updates

https://inteltechniques.com/book7b.html

https://inteltechniques.com/tools/Videos.html

TV Spy

Transcript

https://0.0g.gg/?ad93f9f1a9062b57#Bs7FS8guExSBwBQknDePaPxhdinspva2zthFuQxjuFK5

Group chat using https://simplex.chat/ to talk about anything privacy, security, or OSINT. SimpleX uses no identifiers so you don't need to give any info to join.

https://simplex.chat/contact#/?v=1-2&smp=smp%3A%2F%2FSkIkI6EPd2D63F4xFKfHk7I1UGZVNn6k1QWZ5rcyr6w%3D%40smp9.simplex.im%2F-NuYM0_oJ92tQWtnd1DHKaQmWJ3z9AaP%23%2F%3Fv%3D1-2%26dh%3DMCowBQYDK2VuAyEAHJUL9Hwi-UhfLRqRCvZWjC4t7cKgTRT_Ss4jKPbxvwc%253D%26srv%3Djssqzccmrcws6bhmn77vgmhfjmhwlyr3u7puw4erkyoosywgl67slqqd.onion&data=%7B%22type%22%3A%22group%22%2C%22groupLinkId%22%3A%22vVQLicDjzZhW0rGWhJ7HwQ%3D%3D%22%7D

EPISODE 299-Self-Hosted Part I

This week I begin the conversation about self-hosting everything, plus offer the latest privacy news.

https://feeds.soundcloud.com/stream/1528902265-user-98066669-299-self-hosted-part-i.mp3

Transcript

https://0.0g.gg/?2a1fc86610c56fae#G1szAq4YmZsfEMG9ebCdYXGxod6X1R7UiRfRwjsmY8no

EPISODE 298-OSINT Maintenance

This week Jason joins me to talk about the nuances of keeping all your OSINT accounts, tools, and techniques maintained, plus we each share our most recent OSINT successes.

https://feeds.soundcloud.com/stream/1523234632-user-98066669-298-the-osint-maintenance-grind.mp3

Transcript

https://0.0g.gg/?3551d5109bbb7d4d#BNaqm7avEYRBWup7aZVA3sGT5MKnMz8j8T27toD6tkqX