Using Ettercap to sniff passwords
Secure erasure and data recovery
Partially overwritten files
File encryption with GPG
Warning for Mac FileVault users
This is for all the noobs out there who are planning on doing anything illegal over the internet. Some simple common sense precautions that are followed less than you'd expect, because people are lazy fucks who get complacent. Don't get complacent.
1. Hard drive encryption.
Stops people from being able to read the data on the drive without the password. The password should be 15+ characters in length at the bare minimum, 30+ if you're serious about security,
and totally random. Don't re-use it for anything else
It's possible for someone to recover the password if your computer is powered on by using something called a cold boot attack, your data is only safe if your computer has been powered completely off.
Keep in mind that disk encryption is NOT anti-malware. The physical security of your computer is still very very important. Read up here:
Truecrypt is the best encryption software. It's free for Windows and Linux.
For disk encryption use the AES algorithm and the RIPEMD hash algorithm. Anything else for system encryption can cause compatibility issues, depending on your hardware and OS.
If you have a Mac you'll need PGP, since Truecrypt on OS X doesn't work with system partitions. It's not free, but easily pirated, if you wish to do so.
2. Proxies + Tor
Not for privacy, since people may be snooping, but good for anonymity. Make sure you use foreign
proxy servers and Tor nodes. Basically,k they route traffic through a server, so that website you are visiting doesn't see your IP address, they see the address of the proxy server.
Remember that a lot of proxy servers and Tor nodes are blacklisted by sites like eBay or Amazon.
The Torbutton addon for Firefox is good to have. I think it's included with the Tor/Vidalia download package.
slim's Tor guide:
Get the Backtrack live linux CD. The BT3 CD image is best at the moment since it'll boot nearly anything. It comes with a whole lot of useful tools for "hacking".
There's a learning curve if you're a noob, it takes a while to learn the commands for the command line and how to set up things. If you have a problem, Google it, and use the built in manual pages.
A few bit of useful software:
Kismet + Aircrack - wireless hacking.
Wireshark - packet sniffing.
Ettercap - stealing passwords through ARP poisoning.
John The Ripper - password cracker.
Nessus + Nmap - vulnerablity scanners.
Linux is best for hacking, Macs can handle most of the same programs, but some might need a little tweaking, Windows is generally not so good for it.