Device hardening shop-list

In this page you’ll find informations about a good software package to protect the privacy of your devices. Go to your operating system list and check the software linked.
Help me also to correct and add software to the list to make society computer experience more secure and reliable.

[NT] = not tested by myself.

 

CROSS PLATFORM

  • Brain
    Brain is an exceptional tool working with all platforms. Once you activate it, it will protect you against doing stupid things that always threat computer security. It is activated by default several days before birth. Do not disable Brain like someone disable Windows UAC.

 

MICROSOFT WINDOWS

  • TrueCrypt
    TrueCrypt is an encryption software that cypher your disk, a partition or a folder using many strong cryptography algorithms. Use it on your laptops to prevent data theft in the case of stolen or lost computer.  WEB PAGE
  • KeePass [NT]
    Keepass is a password manager. It let’s the user to create and manage his password wallet, stored in an encrypted form. Keepass allows to manage complex password that are hard to remember and to write at each login but beware: the security of all your passwords will depend on the master password that you’ll use to secure the Keepass wallet. WEB PAGE
  • GPG4WIN
    gpg4win is a porting of the GnuPG utility for the windows systems. It allows to use OpenPGP encryption and digital signature. Important to start private encrypted communications and also for verify message and software authenticity. WEB PAGE
  • Eraser
    Eraser is a tool to help the user to secure delete files. Use it on your laptop pc to prevent data crawling also after deleting files. WEB PAGE.
  • BCWipe  [NT]
    It’s a privacy suite, expecially for wiping out unallocated memory. It’s used also by Bruce Schneier… so it has a really good sponsor 😀 – WEB PAGE
  • Off the record messaging  [NT]
    OTR is a protocol to encrypt Instant Messaging communications. You can configure many clients to use OTR. More informations here: WEB PAGE.
  • TOR BROWSER
    A browser to surf the web anonymously with the tor protocol. WEB PAGE.
  • Antivirus
    Choose your favorite privacy suite, from the Microsoft security essential to any antivirus you trust.

 

FIREFOX BROWSER (and many others)

  • HTTPS Everywhere
    This is a plugin to force the browser using always the https protocol instead of http when possible. This may drastically reduce Man In The Middle and sniffing attacks: WEB PAGE.
  • AdBlock Edge
    This plugin blocks some annoying advertising. WEB PAGE.
  • Disconnect
    This plugin blocks tracing mechanics of many sites. For examples block the twitter widget you see on the right of this blog. 🙂 WEB PAGE.

 

GNU/LINUX

  • GNU/Linux ships most of security by default. Just check tutorials on how to encrypt root, swap or at least home partition. Check how to use gpg or the tool you want (I use gpg raw but try KGpg… it’s easy!).
  • Apply plugins for firefox and perform updates periodically.
  • If you take security in a serious way, when using a distro like Ubuntu, take care of stopping indicization and remote backup services.
  • secure delete
    Secure delete or the command srm is a tool to secure delete files with multiple overwrite passes. Check in you software repository.
  • GnuPG
    gpg program is the main implementation of OpenPGP released in GNU systems. You can use it via terminal or you can count on several graphic frontends, like KGPG for kde4.
  • OpenSSL
    OpenSSL may be used to encrypt files with a symmetric cypher too. YOUTUBE TUTORIAL
  • TorBrowser
    A secure browser to surf the web anonymously with onion proxy network TOR. You can download the latest version here: LINK
  • KMail and Thunderbird
    once you configured your gpg keypair you can use these softwares to manage encrypted email communications. They have an integrated frontend for cryptography.
  • Pidgin
    Pidgin can be configured to use the OTR plugin to manage encrypted Instant Messaging conversations.
  • Gufw
    Gufw is a user friendly interface for setting up netfilter firewall. Pratically a frontend for iptables.
  • ClamAV
    ClamAV is an antivirus you can use to protect your system or to scan malware on thumb drives also for windows.
  • RKHunter and chkrootkit
    these are rootkit protection softwares. Configure them on every brand new installation of the system to stay away from rootkits.
  • LUKS and ecryptfs
    Implemented by default on your system, check how to use them to learn how to encrypt folders and partitions.
  • Two Cents Cryptography Frontend
    A compilation of shell scripts I’ve written to make easy to use GNU/Linux crypto tools: LINK
  • Eyefinder
    A small shell script I’ve written to notify when a program uses the webcam: LINK
  • Cryptnews
    A shell script I’ve written to manage an encrypted newsletter: LINK

 

ANDROID

  • Protect the system using SD and memory encryption. It’s a feature implemented in the system, available from the security settings. Just google a tutorial that is better for you.
  • APG
    The PGP android implementation. It allows to use OpenPGP encryption and digital signature. Important to start private encrypted communications and also for verify message and software authenticity. It’s unofficial, so if you trust this app download it from this link: WEB PAGE.
  • App Locker
    An app locker adds a layer of security, locking the app you desire with a password. Useful to lock the contacts and email app when you give temporary your phone to a friend or an unknown for some reason. Choose the app you want, can’t say if it’s trusty but I use this: WEB PAGE.
  • Orbot  [NT]
    The TOR anonymous web surfing and other protocols to use on your android. WEB PAGE.
  • Droidwall
    For anyone who have root access to his android device and desire to setup a firewall to lock data communications of some apps, Droidwall is a quite good firewall. It’s an advanced program and from a simple user security perspective is far better not to use a rooted device. WEB PAGE.

 

WINDOWS PHONE 8

  • OpenPGP
    Could not say if this software is trusty but it’s very good and it’s the only one that provides a costs-free implementation of the openPGP protocol. It’s well integrated with gpg4win and gpg from the 2.0.19 version. Older versions of gpg has a bug in decoding uncompressed data, so you can not decrypt WP OpenPGP encrypted messages with a gpg program down to 2.0.19 version. Important: the program ships with German language, change it in the settings and all will be ok. When the team will add support to compressed messages you will also use OpenPGP WP for interaction with gpg 1.4.* . WEB PAGE.
  • Keeper [NT]
    Keeper provides data vault and password management. Selected by Kaspersky in a recent article about Windows Phone 8 security Apps. WEB PAGE
  • AVG Family Safety [NT]
    Secure browsing App, provides also security from phishing and other threats. Selected by Kaspersky in a recent article about Windows Phone 8 security Apps. WEB PAGE

 

MAC OSX [NT]

  • TrueCrypt
    TrueCrypt is an encryption software that cypher your disk, a partition or a folder using many strong cryptography algorithms. Use it on your laptops to prevent data theft in the case of stolen or lost computer.  WEB PAGE
  • BCWipe
    It’s a privacy suite, expecially for wiping out unallocated memory. It’s used also by Bruce Schneier… so it has a really good sponsor 😀 – WEB PAGE
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s