Tails 3.0 - Live System to Preserve Your Privacy and Anonymity

Tails is a live system that aims to preserve your privacy and anonymity. It helps you to use the Internet anonymously and circumvent censorship almost anywhere you go and on any computer but leaving no trace unless you ask it to explicitly.

It is a complete operating system designed to be used from a DVD, USB stick, or SD card independently of the computer's original operating system.

Tails 3.0 is the first version of Tails based on Debian 9 (Stretch). It brings a completely new startup and shutdown experience, a lot of polishing to the desktop, security improvements in depth, and major upgrades to a lot of the included software.

Changes

New features

New startup and shutdown experience

• Tails Greeter, the application to configure Tails at startup, has been completely redesigned for ease of use:
• All options are available from a single window.
• Language and region settings are displayed first to benefit our international audience.
• Accessibility features can be enabled from the start
• The shutdown experience has also been redesigned in order to be:

• More reliable. It was crashing on various computers with unpredictable results.
• More discrete. The screen is now totally black to look less suspicious.

Polishing the desktop

• Switch to the default black theme of GNOME which has a more modern and discrete look.
• Tails 3.0 benefits from many other small improvements to the GNOME desktop
• Files has been redesigned to reduce clutter and make the interface easier to use. Several new features have been added, such as the ability to rename multiple files at the same time and the ability to extract compressed files without needing a separate application. 
• The notification area has been improved to allow easy access to previous notifications. Notification popups have also been repositioned to make them more noticeable. 
• Shortcut windows have been added to help you discover keyboard shortcuts in GNOME applications.

Security improvements in depth

• Tails 3.0 works on 64-bit computers only and not on 32-bit computers anymore. Dropping hardware support, even for a small portion of our user base, is always a hard decision to make but being 64-bit only has important security and reliability benefits. For example, to protect against some types of security exploits, support for the NX bit is compulsory and most binaries are hardened with PIE which allows ASLR.

• Update Tor Browser to 7.0 (based on Firefox 52 ESR) which is multiprocess and paves the way to content sandboxing. This should make it harder to exploit security vulnerabilities in the browser.

Download Tails 3.0

Read More

pymultitor - Python Multi Threaded Tor Proxy

Did you ever want to be at two different places at the same time?
While performing penetration tests there are often problems caused by security devices that block the "attacking" IP.
With a large number of IP addresses performing the attacks, better results are guaranteed - especially when attempting attacks to bypass Web Application Firewalls, Brute-Force type attacks and many more.

[Blackhat Asia] https://www.blackhat.com/asia-17/arsenal.html#pymultitor
[Owasp-IL Presentation] https://www.owasp.org/images/3/3d/OWASPIL-2016-02-02_PyMultiTor_TomerZait.pdf
[DigitalWhisper Article (Hebrew)] http://www.digitalwhisper.co.il/files/Zines/0x2E/DW46-3-PyMultitor.pdf

Installation

Prerequisites

• Python 2.7+.
• A C compiler, Python headers, etc. (are needed to compile several dependencies).
  • On Ubuntu, sudo apt-get install -y build-essential libssl-dev python-setuptools python-pip python-wheel python-dev
  • On Fedora, sudo dnf install -y redhat-rpm-config gcc gcc-c++ make openssl-devel python-setuptools python-pip python-wheel python-devel
  • On Windows, install http://aka.ms/vcpython27
  • On MacOS,
    • install xcode command line tools: xcode-select --install
    • install homebrew(brew): $(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)"
• mitmproxy dependencies.
  • On Ubuntu, sudo apt-get install -y libffi-dev libssl-dev libxml2-dev libxslt1-dev libjpeg8-dev zlib1g-dev
  • On Fedora, sudo dnf install -y libffi-devel openssl-devel libxml2-devel libxslt-devel libpng-devel libjpeg-devel
  • On Windows,
    • download lxml: http://www.lfd.uci.edu/~gohlke/pythonlibs/#lxml
    • install lxml: pip install lxml-*-cp27-cp27m-win*.whl
  • On MacOS, brew install mitmproxy
• tor.
  • On Ubuntu, sudo apt-get install -y tor
  • On Fedora, sudo dnf install -y tor
  • On Windows,
    • download tor expert bundle: https://www.torproject.org/download/download.html.en
    • insert tor to your path environment: {tor-win32-*_path}\Tor
    • if you don't know how remember tor.exe path and use --tor-cmd argument on pymultitor (for example: pymultitor --tor-cmd "c:\Pentest\Web\tor-win32-0.2.9.9\Tor\tor.exe")
  • On MacOS, brew install tor

From pip

pip install pymultitor
# On MacOs (it's Easier To Use Python 3):
# pip3 install pymultitor

You may need to use sudo, depending on your Python installation.

From Source

git clone https://github.com/realgam3/pymultitor.git
cd pymultitor

# Install python dependencies.
# Depending on your setup, one or both of these may require sudo.
pip install -r requirements.txt
python setup.py install

# On MacOs (it's Easier To Use Python 3):
# pip3 install -r requirements.txt
# python3 setup.py install

# Confirm that everything works
pymultitor --help

Bug reports on installation issues are welcome!

Usage

Basic Usage

1. Run pymultitor --on-string "Your IP Address Blocked".
2. On your script use proxy (http://127.0.0.1:8080).
   When the string Your IP Address Blocked will present in the response content, you will exit from another IP address.

Command Line Flags
See --help for the complete list, but in short:

Usage: pymultitor [-h] [-v] [-lh LISTEN_HOST] [-lp LISTEN_PORT] [-s] [-i] [-d]
                  [-p PROCESSES] [-c CMD] [--on-count ON_COUNT]
                  [--on-string ON_STRING] [--on-regex ON_REGEX] [--on-rst]

# When To Change IP Address
--on-count    Change IP Every x Requests (Resources Also Counted).
--on-string   Change IP When String Found On The Response Content.
--on-regex    Change IP When Regex Found On The Response Content.
--on-rst      Change IP When Connection Closed With TCP RST.

Download pymultitor

Read More

autovpn - Easily connect to a VPN in a country of your choice

autovpn is a tool to automatically connect you to a random VPN in a country of your choice. It uses openvpn to connect you to a server obtained from VPN Gate.

Compiling
First clone the repo and cd into the directory:

$ git clone https://github.com/adtac/autovpn
$ cd autovpn

Then run this to generate the executable:

$ go build autovpn.go

It's Go. What do you expect?

Requirements
This requires openvpn . To install this on a yum -based distro:

$ sudo dnf install openvpn

If you're on a apt -based distro:

$ sudo apt-get install openvpn

Tested and works on Fedora 23. Dunno about Windows. Patches welcome.

Usage
Simply run:

$ ./autovpn

and you're done. You'll be connected to a server in the US. Welcome to the US!
You can give a country if you want. For example, if you want to connect to a server in Japan:

$ ./autovpn JP

You may need superuser privileges. Don't worry, I'm not running rm -rf --no-preserve-root / underneath. It's for openvpn.

Download autovpn

Read More

Tor 0.2.5.10 - Anonymity Online (Tor 0.2.3.x is deprecated!)

Tor 0.2.5.10 is the first stable release in the 0.2.5 series.

It adds several new security features, including improved denial-of-service resistance for relays, new compiler hardening options, and a system-call sandbox for hardened installations on Linux (requires seccomp2). The controller protocol has several new features, resolving IPv6 addresses should work better than before, and relays should be a little more CPU-efficient. We've added support for more OpenBSD and FreeBSD transparent proxy types. We've improved the build system and testing infrastructure to allow unit testing of more parts of the Tor codebase. Finally, we've addressed several nagging pluggable transport usability issues, and included numerous other small bugfixes and features mentioned below.

This release marks end-of-life for Tor 0.2.3.x; those Tor versions have accumulated many known flaws; everyone should upgrade.

Below we list all changes in 0.2.5.10 since the 0.2.4.x series; for a list of changes in individual alpha releases, see the ChangeLog.

Download Tor 0.2.5.10

Read More

Tails 1.2 - Privacy for anyone anywhere

Tails is a live operating system, that you can start on almost any computer from a DVD, USB stick, or SD card. It aims at preserving your privacy and anonymity, and helps you to:

• use the Internet anonymously and circumvent censorship;
  all connections to the Internet are forced to go through the Tor network;
• leave no trace on the computer you are using unless you ask it explicitly;
• use state-of-the-art cryptographic tools to encrypt your files, emails and instant messaging.

Changes
Notable user-visible changes include:

• Major new features
  • Install (most of) the Tor Browser, replacing our previous Iceweasel-based browser. The version installed is from TBB 4.0 and is based on Firefox 31.2.0esr. This fixes the POODLE vulnerability.
  • Upgrade Tor to 0.2.5.8-rc.
  • Confine several important applications with AppArmor.
• Bugfixes
  • Install Linux 3.16-3 (version 3.16.5-1).
• Minor improvements
  • Upgrade I2P to 0.9.15, and isolate I2P traffic from the Tor Browser by adding a dedicated I2P Browser. Also, start I2P automatically upon network connection, when the i2p boot option is added.
  • Make it clear that TrueCrypt will be removed in Tails 1.2.1 (ticket #7739), and document how to open TrueCrypt volumes with cryptsetup.
  • Enable VirtualBox guest additions by default (ticket #5730). In particular this enables VirtualBox's display management service.
  • Make the OTR status in Pidgin clearer thanks to the formatting toolbar (ticket #7356).
  • Upgrade syslinux to 6.03-pre20, which should fix UEFI boot on some hardware.

See the online Changelog for technical details.

Download Tails 1.2

Read More

Tails - The Amnesic Incognito Live System Released

Tails, The Amnesic Incognito Live System,  is a live system that aims to preserve your privacy and anonymity. It helps you to use the Internet anonymously and circumvent censorship almost anywhere you go and on any computer but leaving no trace unless you ask it to explicitly.

It is a complete operating system designed to be used from a DVD, USB stick, or SD card independently of the computer’s original operating system. It is Free Software and based on Debian GNU/Linux.

Download Tails

Read More

Onionshare - Securely and anonymously share a file of any size

OnionShare lets you securely and anonymously share a file of any size with someone. It works by starting a web server, making it accessible as a Tor hidden service, and generating an unguessable URL access and download the file. It doesn't require setting up a server on the internet somewhere or using a third party filesharing service. You host the file on your own computer and use a Tor hidden service to make it temporarily accessible over the internet. The other user just needs to use Tor Browser to download the file from you.

Download Onionshare

Read More

[Orbot] Mobile Anonymity + Circumvention

Orbot is a free proxy app that empowers other apps to use the internet more securely. Orbot uses Tor to encrypt your Internet traffic and then hides it by bouncing through a series of computers around the world. Tor is free software and an open network that helps you defend against a form of network surveillance that threatens personal freedom and privacy, confidential business activities and relationships, and state security known as traffic analysis.

Orbot is the only app that creates a truly private internet connection. As the New York Times writes, “when a communication arrives from Tor, you can never know where or whom it’s from.” Tor won the 2012 Electronic Frontier Foundation (EFF) Pioneer Award.

Download Orbot

Read More

Tor Browser Bundle 3.5

The 2.x stable series of the Tor Browser Bundle has officially been deprecated, and all users are encouraged to upgrade to the 3.5 series.

Packages are now available from the Tor download page as well

as the Tor Package archive.

For now, the Pluggable Transports-capable TBB is still a separate package, maintained by David Fifield.

For people already using TBB 3.5rc1, the changes are not substantial, and are included below.

However, for users of TBB 2.x and 3.0, this release includes important security updates to Firefox. All users are strongly encouraged to update immediately, as we will not be making further releases in the 2.x or 3.0 series.

In terms of user-facing changes from TBB 2.x, the 3.x series primarily features the replacement of Vidalia with a Firefox-based Tor controller called Tor Launcher. This has resulted in a vast decrease in startup times, and a vast increase in usability. We have also begun work on an FAQ page to handle common questions arising from this transition -- where Vidalia went, how to disable JavaScript, how to check signatures, etc.

The complete changelog for the 3.x series describes the changes since 2.x.

The set of changes since the 3.5rc1 release is:

• All Platforms
• Update Tor to 0.2.4.19
• Update Tor Launcher to 0.2.4.2
  • Bug 10382: Fix a Tor Launcher hang on TBB exit
• Update Torbutton to 1.6.5.2
• Misc: Switch update download URL back to download-easy    

Download Tor Browser Bundle 3.5

Read More

[AnonTwi 1.0] Twittea Anónimanente

AnonTwi es un software gratuito diseñado para navegar anónimamente en las redes sociales. Es compatible con Identi.ca y Twitter.com. Puedes aprovechar la aleatorización de proxy, enviar datos falsos geolocalización, y más.

+ Cifrado AES + HMAC-SHA1 en Tweets y Mensajes Directos --> [Más Info]

      + Secure Sockets Layer (SSL) para interactuar con la API
      + Proxy Socks (por ejemplo, para conectar a la red TOR)
      + Valores aleatórios para las cabeceras HTTP
      + Enviar mensajes largos que divide de forma automática
      + Descifrado automático a partir de urls de tweets o código cifrado
      + Copia de seguridad de mensajes a disco (máx: 3200)
      + Enviar falsas geolocalizaciones
      + Borrar datos y cerrar cuenta (suicidarse)
      + Ver los Trending Topics globales
      + Soporte UTF-8 + Unicode (chino, árabe, símbolos, etc)
      + Multiplataforma: GNU/Linux, MacOS, Win32
      + Resultados con colores  
      + Generar herramientas y módulos
      + Interfaz visual GTK+
      + Un bot de irc     

Y otras muchas más opciones que puedes ver detalladas aquí                                                  

hg clone http://hg.code.sf.net/p/anontwi/code anontwi-code

Descargar AnonTwi 1.0

Read More

[GNUnet P2P Framework] v 0.9.4

GNUnet is a framework for secure peer-to-peer networking that does not use any centralized or otherwise trusted services. A first service implemented on top of the networking layer allows anonymous censorship-resistant file-sharing. Anonymity is provided by making messages originating from a peer indistinguishable from messages that the peer is routing. All peers act as routers and use link-encrypted connections with stable bandwidth utilization to communicate with each other. GNUnet uses a simple, excess-based economic model to allocate resources. Peers in GNUnet monitor each others behavior with respect to resource usage; peers that contribute to the network are rewarded with better service. GNUnet is part of the GNU project.

We're happy to announce the release of GNUnet 0.9.4. Key new features in GNUnet 0.9.4 include:

• flow- and congestion-control for GNUnet's multicast subsystem
• support for exit policies and exit discovery for the GNUnet VPN
• support for reverse-proxies for HTTP and HTTPS transports
• GNUnet Naming System, an initial implementation of the GNU Alternative Domain System (GADS)
• gnunet-auto-share for automatically sharing a directory is available again
• gnunet-download now has a progress bar
• new API for ultra large-scale testing and benchmarking
• new API for reliable, ordered bidirectional communication between peers
• reductions in memory consumption (about 25%)
• performance improvements, especially on W32

Platform: 

Source Code (TGZ) 

Download link: 

ftp://ftp.gnu.org/gnu/gnunet/gnunet-0.9.4.tar.gz

ftp://ftp.gnu.org/gnu/gnunet/gnunet-0.9.4.tar.gz.sig

Read More