h4x0ra
Membership Platform Specialist
2
MONTHS
2 2 MONTHS OF SERVICE
LEVEL 1
200 XP
OpSec or Operational Security is how secure your operation is (regardless of what you're doing). It could be if you're just online in general, cracking or performing other illegal activity. Good OpSec is a secure, isolated operation in which your security or anonymity can't be compromised.
As this affects all of Nulled regardless of Rank or Quality I won't be hiding any of this, feel free to leech as much as you want.
What is the purpose of OpSec?
The purpose of OpSec is to remain anonymous and secure when doing things online. Most people believe that OpSec only relates to the top 10% of crackers, hackers and other illegal occupations however that's not true. OpSec is vital in the current climate because there really is nobody you can trust on the internet even this forum will leak and provide information at their own discretion.
What is the fundamental belief of good OpSec?
The fundamental belief of good OpSec is to 1) Have a secure system/setup so that your operation can't be compromised from the standpoint of security and 2) To remain anonymous online so that you can't be identified and compromised that way.
At its core the basic concept is security and isolation. If you can separate your main computer that you do shopping, gaming and social media on from your cracking computer then if either one is compromised, they won't link together. On the other side of the aisle you'll need to separate any aliases that have illegal items or activities linked to them from any legitimate, lawful online aliases that you may have. For example if you have "Bill3644" as your username where you moderate and facilitate international drug deals but it's also your Twitter handle? then you're pretty fucked.
Who is a danger to your OpSec?
Simply put, everyone and everything on the internet is a danger to your OpSec. From forums like this one, to angry 14 year olds who know how to dox at the most basic level to serious hackers who want to hack your systems (usually for financial gain) and of course the police or other enforcement agencies who are looking to make you pay for the damage and crimes that you've committed.
While not EVERYTHING may be actively working to destroy your OpSec you should always assume that everything is a threat, then you know you're secure from everything. What isn't a threat right now might be used against you later.
What aspects of OpSec should you care about?
Well, as OpSec affects everything from you Browser to your Computer Systems to Networks to Online identities to the forums you visit you should care about every aspect of it. It only takes one little mistake for your entire operation to come "crashing down".
Techniques of removing/bypassing OpSec
The most common technique of someone being able to compromise your OpSec is through your usernames and information you've given out publicly. Someone would look at your username and any other username, contact information or other accounts you've linked to and search for them through other sites, services and databases until they find a match to another account, which contains more information. This continues until you're completely unmasked. This is bad.
How to improve OpSec physically (Computer Systems, Security and Networks)
Ok so while I won't explain each of these methods in detail, I'll list the method of protection along with what it does:
As this affects all of Nulled regardless of Rank or Quality I won't be hiding any of this, feel free to leech as much as you want.
What is the purpose of OpSec?
The purpose of OpSec is to remain anonymous and secure when doing things online. Most people believe that OpSec only relates to the top 10% of crackers, hackers and other illegal occupations however that's not true. OpSec is vital in the current climate because there really is nobody you can trust on the internet even this forum will leak and provide information at their own discretion.
What is the fundamental belief of good OpSec?
The fundamental belief of good OpSec is to 1) Have a secure system/setup so that your operation can't be compromised from the standpoint of security and 2) To remain anonymous online so that you can't be identified and compromised that way.
At its core the basic concept is security and isolation. If you can separate your main computer that you do shopping, gaming and social media on from your cracking computer then if either one is compromised, they won't link together. On the other side of the aisle you'll need to separate any aliases that have illegal items or activities linked to them from any legitimate, lawful online aliases that you may have. For example if you have "Bill3644" as your username where you moderate and facilitate international drug deals but it's also your Twitter handle? then you're pretty fucked.
Who is a danger to your OpSec?
Simply put, everyone and everything on the internet is a danger to your OpSec. From forums like this one, to angry 14 year olds who know how to dox at the most basic level to serious hackers who want to hack your systems (usually for financial gain) and of course the police or other enforcement agencies who are looking to make you pay for the damage and crimes that you've committed.
While not EVERYTHING may be actively working to destroy your OpSec you should always assume that everything is a threat, then you know you're secure from everything. What isn't a threat right now might be used against you later.
What aspects of OpSec should you care about?
Well, as OpSec affects everything from you Browser to your Computer Systems to Networks to Online identities to the forums you visit you should care about every aspect of it. It only takes one little mistake for your entire operation to come "crashing down".
Techniques of removing/bypassing OpSec
The most common technique of someone being able to compromise your OpSec is through your usernames and information you've given out publicly. Someone would look at your username and any other username, contact information or other accounts you've linked to and search for them through other sites, services and databases until they find a match to another account, which contains more information. This continues until you're completely unmasked. This is bad.
How to improve OpSec physically (Computer Systems, Security and Networks)
Ok so while I won't explain each of these methods in detail, I'll list the method of protection along with what it does:
- A Network Level VPN (Router Level) - Runs all network traffic through a VPN meaning that you can't be identified by IP address, important against being identified by the Police more than anything.
- Isolate your cracking "computer or connection" from your main computer - Nothing done on one computer can be linked to anything done on the other computer.
- Secure your computer systems use custom firewalls and Security solutions to ensure that the regular malware infested tools that you'll find won't work.
- Use FDE or Full Disk Encryption - to stop forensic teams from being able to inspect your computers and link illegal activity to you (I recommend VeraCrypt).
- Harden your chosen operating system settings and security - (You'll have to google how to harden your specific operating system).
- Use a proxy within the browser - always (this is to give the impression of you being an average user and to make sure that even if the VPN fails you can't log into any shady sites without some level of protection.
- Harden your browser -to reduce the attack vectors that hackers, skids and law enforcement would use to identify you.
- Use separate emails and usernames for accounts.
- Use randomly generated passwords (strong) and then write them down physically.
- Use different browsers on different systems to isolate accounts.
- Don't reuse usernames or passwords.
- Don't communicate with any of your other accounts (eg, passing account details from one account to another).
- So some common sense is don't reveal information about yourself to anyone, if you're a risk to the police then even narrowing down what country you live in would work against you.
- Never click links you don't 100% need to.
- Don't think that what you say to people is private