I wouldn’t really say these are cybersecurity tools, but it’s sure as shit not Brave.
this post was submitted on 21 Oct 2023
109 points (100.0% liked)
Privacy Guides
14845 readers
30 users here now
In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.
This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.
You can subscribe to this community from any Kbin or Lemmy instance:
Check out our website at privacyguides.org before asking your questions here. We've tried answering the common questions and recommendations there!
Want to get involved? The website is open-source on GitHub, and your help would be appreciated!
This community is the "official" Privacy Guides community on Lemmy, which can be verified here. Other "Privacy Guides" communities on other Lemmy servers are not moderated by this team or associated with the website.
Moderation Rules:
- We prefer posting about open-source software whenever possible.
- This is not the place for self-promotion if you are not listed on privacyguides.org. If you want to be listed, make a suggestion on our forum first.
- No soliciting engagement: Don't ask for upvotes, follows, etc.
- Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
- Be civil, no violence, hate speech. Assume people here are posting in good faith.
- Don't repost topics which have already been covered here.
- News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
- Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
- No help vampires: This is not a tech support subreddit, don't abuse our community's willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
- No misinformation: Extraordinary claims must be matched with evidence.
- Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
- General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.
Additional Resources:
- EFF: Surveillance Self-Defense
- Consumer Reports Security Planner
- Jonah Aragon (YouTube)
- r/Privacy
- Big Ass Data Broker Opt-Out List
founded 1 year ago
MODERATORS
Yeah Firefox isn't a cybersecurity tool either. It's just a browser that happens to be free of the chromium cancer.
And Duck Duck Go is a search engine lol
Edit: and apparently a browser now too
A few of those are not shown on the picture, but this is my personal list of favorites:
- GrapheneOS
It's just the best, most private and secure mobile OS.
- Signal
End-to-end encrypted messenger with great history and track record
- LibreWolf
A Firefox-based browser with out-of-the-box privacy improvements and pre-installed ad-blocker
- Mull
Firefox for Android with privacy improvements
- SearXNG
Self-hostable meta-search engine
- Whoogle
Proxy for Google search
- Piped
Private YouTube frontend
- LibreTube
Piped client for Android
- Notesnook
End-to-end encrypted notes app
- Aegis
Good 2FA app for Android
- Bitwarden
Secure, FOSS password manager
Edit:
- NextDNS
Private DNS service with customizable filters
- SimpleLogin
Email aliasing service allowing you to create a new email address for every service you want to sign up for
You've given me a lot to look into this weekend! Thank you
Have fun! Don't hesitate to ask me via DM if you have a question or encounter any problems as I'd say I'm quite experienced with all the tools I listed.
🔥
Please do not tell me you use Mull over Vanadium
I use Vanadium for high-security tasks, but Mull is my default browser for standard browsing. It has better privacy, because it has built-in anti-fingerprinting mechanisms and you can actually install proper adblockers like uBlock Origin. Also, I don't want to support Google's monopoly on browser rendering engines by using a Chromium-based browser, so I prefer Mull which is based on Gecko.
Please do not tell me you use Vanadium over Mulch.
In terms of security, Vanadium is better than Mulch. Mulch uses some of the patches of Vanadium, but it lacks many security improvements that are present in Vanadium. My current setup is Vanadium for tasks where high security is very important, and Mull for just standard browsing.
half of these are not even barely security related.
and if you meant privacy, well, definitely none of the images either. SimpleX, SearXNG, Tor and I2P
PS: I find it hilarious that you include proprietary software like Vivaldi or Obsidian. That is how flawed this post is.
Brave is far from being a cybersecurity tool
My favorites tools in this image is Aegis and Signal
I have to say my faith in signal has been shattered since I got crosstalk on a signal conversation. I still can't imagine how that's possible but it was there, clear as day.
Please elaborate?
Explain more I didn't undestand you.
that seems like a pretty random selection of things honestly, what qualifies as a cybersecurity tool? hows vivaldi a part of that? or openotp?
Joplin, a note taking app… and is that obsidian icon under it? The picture is so dumb.
Ublock Origin as ads have lots of malware these days and browsing the internet is a normal occurance. I think looking at it that way it gets used far more than any other tool.
Why is Obsidian on the list?? How is a closed source electron app for editing markdown files a good cybersecurity tool/privacy respecting? I could use nano to do the same job with much more confidence for my privacy.
I’m not sure I follow the closed source bit. For example, Virus Total is closed source but a something used by cybersecurity professionals across the world. Most of the software that powers cloud giants is closed source and security professionals everywhere accept the shared security model.
Closed source matters for encryption, not necessarily tooling. It’s a red herring unless you’re talking about a tool’s ability to encrypt/decrypt.
Tbh I don't think that's a list. I think that's just their website's graphic banner thing and they slapped it on.
GrapheneOS, Signal, Vanadium, Mullvad VPN, extremely strict permissions. I don't do much with my phone, but I still need to know I'm in control of my privacy.
my favourite "Cyber-Security-Tool"? None of those logos up there qualify for that descrption... well... Authy perhaps...
yet, my favourite "Cyber-Security-Tools" would be
Configs:
environment:
- PUID=110XX
- PGID=110XX
- UMASK=002
PasswordAuthentication no
PermitRootLogin no
Software:
- Restic
- Bitwarden
A hammer
Also these are privacy apps, not cyber security
I use Firefox, Proton everything, Signal (for the 4 contacts who have it). I guess that's it.
I try to use Plex as much as possible instead of streaming services...?
Sadly Plex collects some data about its users. I remember opting out of some telemetry stuff but I can't remember where that was. If you want a self-hosted streaming service like Plex that completely respects your privacy, Jellyfin is what you're looking for. I tried it and it's okay but not as good as Plex imo. But if your main focus is privacy then you should definitely check it out. It's FOSS.
Edit:
I found where I had to opt out some data collection for Plex. Open this site, scroll halfway down the page. You'lle see two checkboxes for "Send playback data to Plex" and "Advertising Consent".
Yeah I tried Jellyfin too but Plex is much better. I just threw it in the list because I figured it was better than having a bunch of video and music streaming services.
Signal and Joplin. Truly awesome projects!
Signal using Molly
I’m not really seeing much in the way of cybersecurity tools in this thread. These are all FOSS and usable without extra cost (although some have paid upgrades)
- Zed Attack Proxy is something I use pretty regularly.
- Snort is a great IPS.
- Metasploit works great with some extra tooling.
- ClamAV is the Linux standard.
- Fail2ban is great for hardening.
- Crowdsec has replaced Fail2ban for a lot of folks.
For security: aegis (totp manager) , keepassxc/dx (password manager), veracrypt (local encryption) and cryptomator (cloud/mobile encryption). Thats it pretty much everythng else I use is more for privacy Edit: cant believe I forgot about ublock origin. it's like a condom for the internet
My favorite cybersecurity tool is the clue-by-four. I apply it directly to Layer 8 problems.
I see you know how to deal with ID-10t errors.
nmap
ffuf, hashcat, burpsuite and linpeas
Browser: Firefox + uBlockOrigin
Passwords: https://www.passwordstore.org/
Instant messaging: https://joinjabber.org/
DNS: https://mullvad.net/en/help/dns-over-https-and-dns-over-tls/