Super Duper Computer Security

Welcome to CPAElites - the original incentive CPA affiliate marketing forum online, solely based on "Cost Per Action".

Be a part of something great, join today! Learn CPA marketing with CPAElites, we will teach you everything such as the best CPA networks, CPA offers with highest payouts and best conversion rates, unsaturated CPA niches, most effective traffic sources and more.

Oloty

Well-known member
Joined
August 6, 2013
Messages
61
Reaction score
0
Oloty's Mega Computer Security Compilation

Copyright (C) The Peoples of the World, All Rights Reserved.

takamina said:
Online privacy is a myth. If you want privacy online then pull your network cable.




Music

Listen to some music while you read.

[youtube]





Anti-Virus

Clam AV - Link


Avira Free Antivirus - Link



Microsoft Security Essentials - Link

Docs: Documentation
License: Microsoft Security Essentials License Agreement
Price: Free ($0)

Recommended Settings:
1) Settings->Scheduled Scan->Set-up scheduled scans
2) "Check for the latest virus & spyware definitions before running a scheduled scan"
3) Settings->Real-time Protection->Enable All
4) Settings->Advanced->Enable All




Browser Protection
What's the point of being able to utilize the internet if you can't do it safely?

Mozilla Firefox - Link

Source: Source Code | Docs: Documentation | Alternative(s): Comodo IceDragon ; IceCat
License: Mozilla Licensing Policies
Price: Free ($0)

Getting Started:
1) Tools->Options
1a) Options->General->Ask where to save files
1b) Options->Security->Warn me when sites try to install addons
1c) Options->Security->Block reported attack sites
1d) Options->Security->Block reported web forgeries
1e) Options->Security->Remember passwords for sites (disabled)
1f) Options->Security->Use a master password (disabled)
1g) Options-Advanced->General->Submit Crash Reports
1h) Options-Advanced->Update->Automatically check updates for all
1i) Options-Advanced->Update->Ask me what to do
1j) Options-Advanced->Encryption->Use SSL 3.0
1k) Options-Advanced->Encryption->Use TSL 1.0

2) Addons->Plugins->Disable All (Optional)

3) Install:
3a) Better Privacy
3b) NoScript
3c) HTTPS Finder
3d) HTTPS-Everywhere
3e) Ghostery
3f) Adblock Plus
3g) fanboy-adblock
3h) LastPass (Why?)
3i) WOT - Safe Surfing
3j) Tor Button
3k) User Agent Switcher (Alternative: Blender)

4) Install NoScript
4a) Options->Embeddings->Forbid Java
4b) Options->Embeddings->Forbid Adobe Flash
4c) Options->Embeddings->Forbid Microsoft Silverlight
4d) Options->Embeddings->Forbid Other Plugins
4e) Options->Embeddings->Forbid <AUDIO>
4f) Options->Embeddings->Forbid Font

5) User Agent Switcher:
5a) Tools -> Default Useragent -> Edit User Agents...
5b) New -> User Agent
5c)
Code:
Description: 	UA
User Agent: 	Mozilla/5.0 (Windows NT 6.1; rv:10.0) Gecko/20100101 Firefox/10.0
App Code Name: 	Mozilla
App Name: 		Netscape
App Version: 	5.0 (Windows)
Platform: 		Win32

6) Search Engines:
6a) DuckDuckGo: Privacy Policy | DonTrack.Us - Google Fingerprinting | Fix Tracking | DontBubble.Us | What is DNT (Do Not Track)
6b) ixquick: Privacy Policy | About ixquick
6c) Startpage: ixquick mirror.
6d) Privatelee: (Requires JS): Privacy Policy | Terms of Use

7) about:config (Credits: sorcerer's_apprentice, Myself.)
Code:
network.http.sendRefererHeader:0
network.http.sendSecureXSiteReferrer:false
network.protocol-handler.external:false (default & sub-settings)
network.protocol-handler.warn-external:true (default & sub-settings)
extensions.blocklist.enabled:false
network.http.keep-alive.timeout:600
network.http.max-persistent-connections-per-proxy:16
network.http.pipelining:true
network.http.pipelining.maxrequests:8
network.http.proxy.keep-alive:true
network.http.proxy.pipelining:true
network.prefetch-next:false
browser.cache.disk.enable:false
browser.cache.disk_cache_ssl:false 
browser.cache.offline.enable:false 
browser.cache.memory.enable:false 
browser.cache.disk.capacity:0 
browser.cache.disk.smart_size.enabled:false
browser.cache.disk.smart_size.first_run:false
browser.cache.offline.capacity:0
dom.storage.default_quota:0
dom.storage.enabled:false
dom.indexedDB.enabled:false
dom.battery.enabled:false
browser.search.suggest.enabled:false
browser.sessionstore.resume_from_crash:false
geo.enabled:false
keyword.enabled:false
network.dns.disablePrefetch:true -> very important when using TOR
network.dns.disablePrefetchFromHTTPS -> very important when using TOR
dom.disable_window_open_feature.menubar:true
dom.disable_window_open_feature.personalbar:true
dom.disable_window_open_feature.scrollbars:true
dom.disable_window_open_feature.toolbar:true
browser.identity.ssl_domain_display:1
browser.urlbar.autocomplete.enabled:false
browser.urlbar.trimURL:false
privacy.sanitize.sanitizeOnShutdown:true
network.http.sendSecureXSiteReferrer:false
network.http.spdy.enabled:false ---> use http instead of google's spdy
plugins.click_to_play:true ---> also check each drop-down-menu under "preferences"->"content"
security.enable_tls_session_tickets:false ---> disable https-tracking
security.ssl.enable_false_start:true ---> disable https-tracking
extensions.blocklist.enabled:false ---> disble Mozilla's option to block/disable your addons remotely
webgl.disabled:true ---> disable WebGL ([url]http://security.stackexchange.com/questions/13799/is-webgl-a-security-concern[/url])
network.websocket.enabled:false ---> ***Tor Users: This is extremely important as it could blow your cover! See: [url]http://pastebin.com/xajsbiyh***[/url]
network.http.pipelining:true
network.http.pipelining.ssl:true
network.http.proxy.pipelining:true
network.http.max-persistent-connections-per-proxy:10
network.http.max-persistent-connections-per-server:10
network.http.max-connections-per-server:15
network.http.pipelining.maxrequests:15
network.http.redirection-limit:5
network.dns.disableIPv6:true
network.http.fast-fallback-to-IPv4:false 
dom.popup_maximum Mine:10
network.prefetch-next:false
browser.backspace_action:0
browser.sessionstore.max_tabs_undo:5
browser.sessionhistory.max_entries:5
browser.sessionstore.max_windows_undo:1
browser.sessionstore.max_resumed_crashes:0
browser.sessionhistory.max_total_viewers:0
browser.tabs.animate:0
New->Boolean->config.trim_on_minimize->true


8) Browser Science
Browser Fingerprinting Check [ Browser Uniqueness | How the Internet sees you [27C3] )

Chromium - Link

Source: Source Code | Docs: Documentation | Alternative(s): Comodo Dragon ; RockMelt ; SRWare Iron
License: Chromium Licenses
Price: Free ($0)

Getting Started:
1) Open Advanced Settings
1a) Privacy->Enable Phishing and Malware Protection
1b) Privacy->Use a web service to help resolve navigation errors (disable)
1c) Privacy->Use a prediction service to help complete searches and URLs typed in the address bar (disable)
1d) Privacy->Predict network actions to improve page load performance (disable)
1e) Passwords->Autofill (Disable)
1f) Offer to Save Passwords (Disable)
1g) Content Settings->Cookies->Block third-party cookies
1h) Content Settings->Javascript->Do not allow
1i) Content Settings->Javascript->Manage Exceptions->[*.]com ; [*.]edu ; [*.]gov ; [*.]net ; [*.]org (Whitelist)
1j) Content Settings->Plugins->Block All

2) Install:
2a) Last Pass
2b) HTTPS-Everywhere
2c) Ghostery
2d) WOT - Web of Trust




Data Retention
Data retention can help with malware analysis and prevention.

Deep Freeze Standard - Link

Docs: Documentation
License: Commercial
Price: $35.00

Getting Started:
1) Install Deep Freeze.
2) Whenever you need to keep your data, hold down "shift" and double-click the Deep Freeze icon in the tray.
3) Input password.
4) Boot Thawed on Next {X} Restarts
5) Apply and reboot.

Note: Always use your computer while "frozen" (data actively retained) unless you specifically need to boot "thawed".
I find it useful to sync my documents in the cloud, and sync every day or so.

Sandboxie - Link

Docs: Documentation
License: Shareware (Nagware) / Commercial
Price: Free ($0)

Getting Started:
1) Install Sandboxie.
2) Open any suspicious files or websites in a new virtual sandbox.

Notes: Particularly helpful for malware analysis.

fsprotect - Link

Docs: Documentation
License: GPLv3
Price: Free ($0)

Getting Started:
fsprotect Installation




DNS
Picture pop-up-book section.

Router

Getting Started:
1) Go to your router's DNS Settings.
2) Input your preference of the following:
2a) OpenDNS
2b) Comodo DNS
2c) Google DNS
2d) DNS Crypt (Linux)
3) ???
4) Profit!?1?

Android

DNS Forward

Sorry, there wasn't much info to put here.):




Firewall
Wouldn't it be nice to have your own VPN/firewall/AV?
Note: This will be a generic guide with multiple alternative programs to use at user's discretion.

Gufw Firewall - Link

Source: Source Code | Docs: Documentation | Alternative(s): Firestarter ; iptables ; ipcop ; Shorewalls ; UFW
License: GNU General Public License
Price: Free ($0)

Getting Started:
1) Create a new linux VM. (We'll be using DSL.)
1a) Memory: 50MB
1b) Virtual Hard Disk->None
1c) Network->Adapter 2->Internal Network
2) Desktop->System->Deamons->SSH->Start
3) Desktop->Right-Click->XShells->Root Access->Transparent
3a) "passwd"
3b) Decide on a new password (see: "Complex Passwords")
4)
Code:
ifconfig eth1 10.0.3.1
4a) Ctrl + S (Save State)
4b) Ok.
5) Power off machine.
6) Restore Snapshot 1.
6a) Restore->Start

7) Create a new linux VM. (We'll be using Ubuntu 10.10.)
7a) Memory: 256MB min. ; 512MB rec.
7b) Virtual Hard Disk->Create New Hard Disk
7c) VDI: 8GB (fine) ; 10GB rec.

8) Start the Ubuntu VM.
8a) Install Updates (Recommended)
8b) After all updates have finished, restart the VM.
9) Devices->Install Guest Additions
9a) Let it do its things. This may take up to 30 mins.
10) Shut down the VM.
10a) System->Base Memory: 512MB min. ; 1GB+ rec.
10b) System->Video Memory: 128MB+ Rec.
10c) Enable 3D Acceleration: Ok

11) Start VM.
12) Configure your firewall. This is where you'll actually have to do research and practice.
13) Manual Proxy Configuration: (Ubuntu Box)
13a) HTTP Proxy: 127.0.0.1
13b) SSL Proxy: 127.0.0.1
13c) Socks5 Host: 127.0.0.1
13d) Socks5 Port: 9050
14) Applications->Accesories->Terminal
14a)
Code:
ifconfig eth0 10.0.3.2
15)
Code:
ssh -N -L 9050:10.0.2.2:9050 root@10.0.3.1
15a) Yes->Input Firewall (DSL) Password
16) Terminal->File->Open Tab
16a)
Code:
ssh -N -L 8118:10.0.2.2:8118 root@10.0.3.1

18) Daily Use:
18a) Start Snapshot 1 (DSL)
18b) Start Ubuntu, Log in
18c) Applications->Accesories->Terminal
18d)
Code:
sudo bash
18e) Input password.
18f)
Code:
ifconfig eth0 10.0.3.2
18g)
Code:
ssh -N -L 9050:10.0.2.2:9050 root@10.0.3.1
18h) Yes->Password
18i) Terminal->File->Open Tab
18j)
Code:
ssh -N -L 8118:10.0.2.2:8118 root@10.0.3.1




Hard Disk Encryption
Encrypting your hard disk can prevent thieves from stealing your important information.

TrueCrypt - Link

Source: Source Code | Docs: Documentation
License: TrueCrypt License Version 3.0
Price: Free ($0)

Getting Started:
1) Download TrueCrypt.
2) Install the program on the local machine.
3) "Create New Volume"
4) Select "Normal".
5) Select how many operating systems you're running. (If single-booting, partition encryption is recommended over disk)
6) Select an encryption algorithm. I suggest looking at a benchmark and deciding based on security and performance. I personally use a triple-cipher AES-Twofish-Serpent algorithm with SHA-512 or Whirpool. However, the default configuration is adequate.
7) Create a complex password. [ How Secure Is My Password | Complex Passwords ]
8) Here's the hard-part: randomly move your mouse. For plausible-deniability ("I forgot my password") do not display pool content.
9) Create your rescue CD. Burn it to physical media and keep a backup on a pen drive.
10) Choose wipe mode. How secure would you like to be? More passes = more secure = longer process.
11) Follow through with pretest.
12) Encrypt and wait...
13) Done!

PGPdisk - Link

Source: Source Code | Docs: Documentation
License: Open-source / Commercial
Price: Free ($0) / Varies (Multiple Products)

Getting Started:
Note - For our purposes we will be using passphrase protection versus public key or token key.
1) Open PGP.
2) Select the disk you would like to add a user to.
3) User Access -> Create User
4) Passphrase User -> New Username
5) Double-confirm the passphrase.
6) Finish.

FreeOTFE - Link





Malware Removal
Well, we all slip up once-in-a-while.

Malwarebytes - Link

Docs: Documentation
License: Proprietary / Commercial
Price: Free ($0) / $24.95

Getting Started:
1) Install.
2) Open.
3) Perform full scan->Scan
4) Fix All.

Spybot S&D - Link

Docs: Documentation
License: Freeware / Commercial Business
Price: Free ($0) / Varies (Multiple Products)

Getting Started:
1) Install.
2) Open.
3) System Scan->Start
4) Fix problems.

Combofix - Link

Docs: Documentation
License: Freeware
Price: Free ($0)

Getting Started:
1) Run. (This was a joke. Haha.)

HijackThis - Link

Docs: Documentation
License: GNU General Public License 2.0
Price: Free ($0)

Getting Started:
HijackThis User's Guide




Operating Systems
Operating system specific tips. (Some Googleing may be required.)

Windows XP - Link

Getting Started:
1) Update to Service Pack 3.
2) Enable ICF logging
3) Test service load and only enable required services.
4) Use complex passwords for service accounts.
5) Never log-n to service accounts.
6) Disable network access to service accounts.
7) Use accounts with minimal privileges needed.
8) Use the Microsoft Baseline Security Analyzer
9) Format your partitions to NTFS
10) Rename accounts
11) Replace the Everyone group with the Authenticated Users group inside the access control lists (ACLs) of your shares.
12) Disable IR (Infrared) transfers.
13) Regularly back-up data.




Passwords
Yes, this needs a section.

Pass-words, Phrases & Strings
Wikipedia: Authentication
Public Key: Public Key Certification | Private Key: Private Key Cryptography

1) LastPass: Password safe, generator, etc.
2) KeePass: LastPass alternative.
3) How Secure is my Passowrd? (Requires JS)
4) Top 10 Most Common Passwords
5) Complex Passwords
6) Complex Passwords (Requires JS)




Virtual Machines
Virtual machines can be used to test out miscellaneous programs and scripts for undesired affects.

Oracle VM VirtualBox - Link

Source: Source Code | Docs: Documentation
License: Open-source / Commercial
Price: Free ($0) / Not Stated

Getting Started:
1) Install VirtualBox.
2) Download or create a VDI (Virtual Disk Image).
3) Run the VM (virtual machine) like a normal computer and install everything accordingly.
4) After you finish installing, you can use your new VM at any time.

VMware Virtualization - Link





Change Log
After multiple revisions, I think it's time for a change log.

08/08/13:
Code:
- Removals:
+ Download links because fuck uploading.

06/12/13:
Code:
- Additions:
-+ takamina's quote
-+ Blender (User Agent Switcher Alt.)
-+ DNS Forward (Android)


06/08/13:
Code:
- Added a change log.
- Previous Additions:
-+ Coalbytes Mirrors
-+ Browser Protection (Mozilla, Chromium)
-+ Data Retention (Deep Freeze, Sandboxie, fsprotect)
-+ Firewall (gufw)
-+ Hard Disk Encryption (TrueCrypt, PGPdisk, FreeOTFE)
-+ Malware Removal (MalwareBytes, Spybot, Combofix, HJT)
-+ Virtual Machines (Virtualbox, VMware)
- New Additions:
-+ Operating Systems (XP, *nix to come)
-+ Anti-Virus (ClamAV, Avira, Security Essentials)
-+ Passwords
-+ Copyrights (Koppimi, Sharing)
-+ Change log color
-+ Combofix links
-+ Music
-+ KeePass
-+ DNS
-+ Giveaways
- Removals:
-+ Anti-Keylogger





Giveaways

No current giveaways. :sadface:
Have a product or service you'd like to give away for free?
PM me!




Note: This is a constant WIP:
Computer security is always changing and therefor this thread is dynamic.
Because of this it can not be guaranteed that all information is up-to-date and secure.
You have been warned.




"The quieter you become, the more you can hear."
~Ram Dass



"Sharing is caring. Knowledge is power. We as the people, have freedom."
Email | Skype | Pastebin Mirror
 

Roccaz

Well-known member
VIP Legends CPAElites Classic (1.0)
VIP Elites CPAElites Classic (1.0)
Joined
June 16, 2013
Messages
47
Reaction score
0
Sorry to break it to you, but you're gonna need a virus scan for each of these files mate.
 

Oloty

Well-known member
Joined
August 6, 2013
Messages
61
Reaction score
0
Roccaz said:
Sorry to break it to you, but you're gonna need a virus scan for each of these files mate.

1) Most those files would be too large for VirusTotal.
2) Most are hosted by Fortune 500's.
3) I'll go as a staff.
 

Oloty

Well-known member
Joined
August 6, 2013
Messages
61
Reaction score
0
Update: Removed all the download links.
I am definitely not spending another two days uploading all these.
Thank God for RegEx.
 
Top Bottom