Crypto-anonymity knowbase
founder:	overdrive
depends on:
interested:	ruza EDITME2
software license:	-
hardware license:	-

Aim of this project is to create knowledge base for everybody who need or want to behave in secure way, because “Informations want to be free!” but “Privacy does matter!”

I [we] want to collect all privacy and cryptography related projects of BRMLAB here, too.

Do not hesitate to contribute.

• OSS Crypto support
• BrmTor
• ChaosVPN
• CryptoToken
• Laser Eavesdropping
• TREZOR : BitCoin Hardware wallet
• Linux Insecurity by Jenda
• : Nyx auditorium about Anonymity and Cryptography - cooperative place for people who care about this topic
• : Root.cz tag Let's encrypt - news about Let's encrypt

• Extensive guide of everyday computer security by CCC
• YouTube Tutorial for PIDGIN + OTR
• : Elliptic curves for beginners - video
• : Videos from Siliconhill Cryptofest 2013
• : Videos from Siliconhill Cryptofest 2015
• : DNSSEC pro běžného uživatele (Ondřej Caletka) – Mírně pokročilí
• : Overdrive's notes to everyday cryptography [long, 1h]

• GPG 2.1 with Elliptic curves

* PGP for Thunderbird : https://www.enigmail.net/home/index.php

• google randomization Firefox ad-on: https://addons.mozilla.org/en-us/firefox/addon/googlesharing/
• https everywhere plugin: https://www.eff.org/https-everywhere
• PrivacyBadger - do-not-track : https://www.eff.org/en-gb/node/73969
• AdBlocker: https://www.ublock.org/
• Ghostery [do not track]: https://addons.mozilla.org/en-us/firefox/addon/ghostery/
• turun off JavaScript selectively [Firefox ad-on]: https://addons.mozilla.org/en-us/firefox/addon/noscript/

• https://duckduckgo.com
• https://startpage.com/

• TOR powered Firefox: https://www.torproject.org/projects/torbrowser.html.en
• SSH like client over UDP [for unstable networks]: https://mosh.mit.edu/

• encrypted partition [file] - pc: truecrypt
• encrypted -“- - [A]Droid: - ???

• https://mat.boum.org/ - MAT: Metadata Anonymisation Toolkit

• Let's encrypt : https for every web : https://letsencrypt.org/
• Server side testing, config, SSL/TSL : https://bettercrypto.org/
• SSL test : https://www.ssllabs.com/

• https://tails.boum.org/ - Tails - Debian based TOR powered Live GNU/LINUX

• https://github.com/rossjones/alternative-internet - really complex list of alternatives to Open Intenet
• https://github.com/cryptosphere/cryptosphere
• tor
• MNet
• Freenet
• Tahoe-LAFS

• Yubico hardware U2F authentication key
• : YubiKey authentication key

• http://www.hacker10.com/...puting/how-egyptian-police-quickly-cracked-journalists-computer-password/ - How Egyptian police quickly cracked journalist’s computer password - This is important. Sometimes cryptography is not enough, when you could be tortured.
• https://en.wikipedia.org/wiki/Bitmessage - something, that could be potentially used instead of email - test and try to understand, question is traffic shaping too [IMHO]
• https://bitmessage.org/forum/index.php?topic=1666.0 - BitMessage analysis

• https://we.riseup.net/riseuplabs+paow/openpgp-best-practices - OpenPGP best practices

• https://www.imperialviolet.org/ - Andam Langley is HTTPS infrastructure designer for google, blog is about Cryptography theory and more

• http://www.cypherpunks.ca/~iang/pubs/mpotr.pdf - reserch papers

• https://github.com/DrWhax/mpOTR - prozkoumat

• http://tools.ietf.org/html/draft-brown-pgp-pfs-03 - forward secrecy pro GnuPG [draft]

• http://schleuder2.nadir.org/ - Schleuder is a gpg-enabled mailinglist with remailer-capabilities. It is designed to serve as a tool for group communication: subscribers can communicate encrypted (and pseudonymously) among themselves, receive emails from non-subscribers and send emails to non-subscribers via the list. Schleuder takes care of all de- and encryption, stripping of headers, formatting conversions, etc. Further schleuder can send out its own public key upon request and receive administrative commands by email.

Have a server with a master key that decrypts incoming mail, re-encrypts with board members' individual subkeys? If it *has* to be the same email account, does it support IMAP? If so, IMAP behaves like a folder; you can take stuff out, and put it back in again. A Python script could be written to scan over new mail, remove “master key” mail and deposit “subkey-re-encrypted” mail. When members access the mail, it will usually have been accessed, re-encrypted and replaced with one they can decrypt. If not, they'll have to wait a few minutes and try again.

Police in democratic-law following country play a game with you, they are sure, you are afraid and unsure of law and situation, keep it in mind This howto is based on Overdrive's experience, not really universal

• keep in mind, that you are suppose to but you must pay visit of em' if cops summon you not testyfy [according Czech law]
• do not afraid and be sure of what are you talking about
• do not tell them anything, they are not asking directly, yes, now or I do not know is answer too
• do not carry electronic devices full of data with you [if possible]
• lawyer number in wallet could be usefull, in case you go to prisson, debts are no prob., in case he will help, you will get some money to pay
• do not do small-talks with cops, even personal talks will allow them to get a lot more info, than you recognize at first [kind of good/bad cop game]
• to not play cheeky monkey, do not try to outsmart them, do not by aggresive just cooperate, but minimally
• BTW it is not necessary to answer all of the questions, e.g. you want to answer some, because you think, it can help in case [think twice of course], but they are asking about something, that can harm you or partner/best friend - than you have right not to talk, use this right [here is text - CZ only - about this topic: (Ne)podání vysvětlení: http://www.dfens-cz.com/view.php?cisloclanku=2013010605 ]

this howto is ment for moments, when they want something from you, in case you need them, use it is oppsite way [not only last point ;]

• Overdrive's key, Fingerprint: 08EA E4DC EF85 0F02 9267 5B48 2E58 6902 C5F8 794C