Cette page est destinée à regrouper les bonnes adresse rencontrées par les membres de l’ASCII au sujet de la sécurité informatique. Attention toutefois, la plupart des articles sont technique ou réalisés par des techniciens : la majorité des articles sont en anglais.
de Télécomix [MàJ 08.05]
News
- Aint No Party Like a Cryptoparty!
- TETRA hacking is coming: OsmocomTETRA
- Slideshow on hacktivism, encryption, online anonymity, & darknets 101 now up at: http://scr.bi/yLxMak (same with https)
- WSJ Surveillance Catalog / Spy Files aka axis of evil
- HTTPS/SSL probably dead: Deep Packet Spying Breaches Gmail and All Security, also: Hackers break SSL encryption used by millions of sites.
- Added a basic guide to Deploying, Implementing and Using Cryptographic Systems.
- AES weakened by 2 Bits
- TCMB Station 7 checks in for the first time 🙂
- Older news
Scratchpad(s)
Software
- Full communication and storage system
- Freenet
- Project Byzantium
- RetroShare: a decentralised communication platform / darknet based on GPG & OpenSSL Needs moar analyzing(Maybe not safe) Still very much in Beta.
- Tahoe-LAFS Distributed encrypted file system
- Encrypted Communication
- GPG / Mac Encryption for mails, files and more. No forward secrecy!
- JavaScript GPG for the GMail webinterface
- OTR Extremely IMPORTANT for Instant Messaging – USE THIS
- Tomb strong semi-deniable encryption for the desktop and safe transports
- Tcpcrypt a protocol that attempts to encrypt (almost) all of your network traffic.
- CurveCP Usable security for the Internet
- Crayfish Safe IRC shelter server (concept).
- LUKS LUKS is the standard for Linux hard disk encryption.
- Silc : Secure Internet Live Conferencing : IRC like but much more safer (to be written) SILCNET Offical Website
- Cryptocat — in-browser c(h)atroom with clientside encryption for 2+ chatters. Join Cryptocat-IRC channel: #Cryptocat
- Enigmail OpenPGP add-on for Thunderbird
- Mumble, voice communication like the non-free TeamSpeak, with SSL encryption, good and very simple replacement to Skype (if video is not needed)
- Anontwi Shell client to have more privacy on Twitter and identi.ca
- Alternatives to Certificate Authorities
- Anonymous General Purpose Operating Systems
- Firewall
- Communism (known_certs), a joint project between TCMB and the PSYCs
- iptables (linux firewall)
- Authority Netblock Blacklist (huge blacklist useful if you dont want the authorities to contact you)
- pf (OpenBSD firewall)
- Anonymous and Alternative Networks
- Telex (Telex is a complex and extreamly effective anti-censorship system. WARNING: Still in testing stages, not ready for actual deployment.)
- Tor (Peer reviewed, understood and very secure anonymity network.)
- Tor combined with VPN, SSH or Proxy
- Mobile Anonymity
- I2P (Likely unsafe in extremely dangerous situations, peer review needed)
- OnionCat (Anonymous IPv6 tunneling on top of Tor/I2P.)
- cjdns (No peer review, early-stage friend-to-friend IPv6 VPN)
- Netsukuku – Internet Protocol based alternative to ICANNnet – currently lacks dedicated anonymization mechanism, mainly based on physical WLAN links
- General-purpose VPN software
- curvetun (lightweight multiuser IP tunnel based on elliptic curve cryptography, howto)
- OpenVPN (Direct p2p VPN.) – Lacking peer review
- VTun – Peer review: no strong security
- PPTP (Knowledge needed to set up a linux computer as an IPREDATOR-router for your entire net.) PPTP is not safe to use
- tinc
- quicktun – uses Elliptic Curves, popular in dn42 community
- SSH
- IPSec (for example OpenSWAN)
- Libraries
- SECCURE – Elliptic Curve Crypto
- NaCl – Networking and Cryptography library – used by quicktun, curvetun, and cjdns
- Kademlia DHT – Kademlia Distributed Hash Table
- Economy & Money
- Bitcoin – P2P cryptocurrency
- bmoney – specs
- Open Transactions – untraceable digital cash
- IPv6 (collection of micro-tutorials)
- Backup software
- SSH
- Databases
- Sousveillance/Counter Surveillance
- Sniffing, scanning, hax0ring
- hax0ring tools (backup of original: long list of tools)
- Miscellaneous Scripts
- Random hostname on boot
- Random MAC when bringing the network interfaces
- astraceroute Autonomous System trace route and DPI tester
- Root password recovery
- Hardware security
- Services
- LiveCDs
- Tails Debian based OS using Tor
- Liberté Linux Gentoo-based LiveUSB for communication in hostile environments (seems discountinued since 2012)
- dyne:bolic 100% free GNU/Linux
- Discussion About Privacy And Anonymity Kids
- Haven is a Live operating system based on Ubuntu – RIP (Development discountinued as of v1.3.4)
- Byzantium Secure live CD for emergency situations to communicate and collaborate.
- OccupyOS Secure live CD developed with ease of use and secure, deniable communication in mind.
- Pirate Linux developed by members of the Canadian Pirate Party.
- Build your own livething using qemu
Needed Software – projects
Software we may need for further projects, still to be found or written
- SIP Software Modem for Dial-Up / BBS projects
- BBS gateway to give access to web services through low bandwidth connections
Physical infrastructure
- AirChat, a communication system useful where there’s not Wi-Fi, for example in Syria
- Anonymous Base Station
- Blackthrow
- WLAN
- Long range cantennas
- Offsite assembly instructions
- Seattle Wireless – many tutorials on hacking antennas and APs.
- Freifunk (« free radio ») German mesh network
- Blocklists – firewall all authorities!
- OpenWRT
- PirateBox
- WiDrop
- Trusted Platform Module
Repository of research articles
Cryptography
Cryptography for The Post-Quantum Computing Era
- The McEliece cryptosystem is likely secure against Shor’s algorithm.
- The One Time Pad system is secure against all possible forms of cryptanalysis.
- The redundant cryptosystem (partially sketched up, move it here)
- Quantum computer (Project for trying to learn how quantum computers works)
- Quantum Hacking
Books, papers and logs
- Telecomix Crypto Munitions Bureau – The Apocryphal Machinery of Ciphernautics (Collaborative book-writing)
Further Links
- Wiki-Article about Crypto Wars by Open Rights Group
- Underground Book
- A Cypherpunk’s Manifesto, that is nowadays even more relevant
Meetings and seminars
- TCMB agent discussing ACTA in the European Parliament
- Telecomix at Festa Dei Pirati, Italy.
- Summer of Cipher Assembly — A series of seminars held by TCMB.
- SoCA course material
- The IT security expo
- Telecomix Crypto Workshop for Journalists
TCMB official documents
- Request for the deployment of a crypto munitions bureau
- Workers needed for the Telecomix Crypto Munitions Bureau
Interesting papers/pads
- European Union Committee – Fifth Report: Protecting Europe against large-scale cyber-attacks
- Security and Crypto Pad (unknown purpose)
- US Army considered attack on Wikileaks
Software watch list
Interesting software that is yet to be investigated.
- CrypTool / JCrypTool: graphical cryptography teaching tool
- AlpineLinux hardened and lightweight Linux distribution for setting up routers / gateways
Other
- Deep Packet Inspection
- Phone numbers to some politicians
- Riseup Labs – cool stuff!
- Kartbuilding.net – lots of cool guides on linux software
- Fractal
- Conversations
- Step-by-step guide to setting up LUKS-encrypted LVM with Ubuntu (useful reference)
- Haskell — random notes
- Cypherpunks list
- Interception Capabilities Report, 2000
- China’s Great Firewall Tests Mysterious Scans On Encrypted Connections
- p2p Hackers list
- THC Wiki
- US and the (broken) freedom of expression
- Infoanarchy Wiki
- Forensics wiki
- OpenDPI, source code of a crappy DPI, that is used in real-world systems
- Telecomix Blue Cabinet Wiki Project on Tor]
- Buggedplanet – Intel of Vendors of SIGINT/COMINT/LI and supporting Technologies and Systems
- CCC conference video archive
- Project PM
French tutorials
English tutorials
Security Interest List