How to be Invisible Online (and the hard truth about it)...
Don't be fooled ... Occupy The Web (OTW) tells us the hard truth about being anonymous online. The brutal truth: Will using your neigbors wifi keep you anonymous? Can you hide from the NSA? Can you hide from Google and other companies? Will Tor help you? Will Proxy Chains help? Which phone do you need to use - Android or iPhone or something else? Which operating system - Windows, macOS or Linux? What is the truth? What do you need to use?
// Mr Robot Playlist //
• Mr Robot
// David's SOCIAL //
Discord: / discord
Twitter: / davidbombal
Instagram: / davidbombal
LinkedIn: / davidbombal
Facebook: / davidbombal.co
TikTok: / davidbombal
KZhead: / davidbombal
// Occupy The Web social //
Twitter: / three_cube
// OTW Discount //
Use the code BOMBAL to get a 20% discount off anything from OTW's website: davidbombal.wiki/otw
// Occupy The Web books //
Linux Basics for Hackers: amzn.to/3JlAQXe
Getting Started Becoming a Master Hacker: amzn.to/3qCQbvh
Top Hacking Books you need to read: • Top Hacking Books for ...
// Other books //
The Linux Command Line: amzn.to/3ihGP3j
How Linux Works: amzn.to/3qeCHoY
The Car Hacker’s Handbook by Craig Smith: amzn.to/3pBESSM
Hacking Connected Cars by Alissa Knight: amzn.to/3dDUZN8
// MY STUFF //
www.amazon.com/shop/davidbombal
// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com
// MENU //
00:00 - Coming up
00:51 - Don't use the nighbour's wifi
03:02 - OccupyTheWeb books
03:44 - How to remain anonymous on the internet // The NSA is watching
09:56 - Be careful of your browser
13:35 - Turn off cookies
15:41 - ProxyChains and Tor demo
22:10 - The FBI story
25:30 - ProxyChains and Tor demo continued
28:36 - How to remain anonymous
33:05 - Using Starlink
36:18 - Recommended operating systems
38:34 - Untraceable phones (burner phones)
40:05 - VPN vs Tor // Don't trust free proxies
42:29 - Don't keep systems together
44:24 - Recommended e-mail service
46:53 - Bitcoin is traceable
47:58 - Anti-forensics // How to clean systems
50:41 - Recommended search engines
51:34 - Have different identities/systems
52:26 - Conclusion
tor
proxy chains
linux
android
iphone
ios
tails
tails linux
invisible online
hide identity
privacy
kali linux
online privacy
internet security
online privacy and security
online privacy tips
online privacy guide
internet security tutorial
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
Disclaimer: This video is for educational purposes only.
#wifi #iphone #android
Don't be fooled ... Occupy The Web (OTW) tells us the hard truth about being anonymous online. The brutal truth: Will using your neigbors wifi keep you anonymous? Can you hide from the NSA? Can you hide from Google and other companies? Will Tor help you? Will Proxy Chains help? Which phone do you need to use - Android or iPhone or something else? Which operating system - Windows, macOS or Linux? What is the truth? What do you need to use? // Mr Robot Playlist // kzhead.info/channel/PLhfrWIlLOoKNYR8uvEXSAzDfKGAPIDB8q.html // David's SOCIAL // Discord: discord.com/invite/usKSyzb Twitter: twitter.com/davidbombal Instagram: instagram.com/davidbombal LinkedIn: www.linkedin.com/in/davidbombal Facebook: facebook.com/davidbombal.co TikTok: tiktok.com/@davidbombal KZhead: kzhead.info // Occupy The Web social // Twitter: twitter.com/three_cube // OTW Discount // Use the code BOMBAL to get a 20% discount off anything from OTW's website: davidbombal.wiki/otw // Occupy The Web books // Linux Basics for Hackers: amzn.to/3JlAQXe Getting Started Becoming a Master Hacker: amzn.to/3qCQbvh Top Hacking Books you need to read: kzhead.info/sun/p9aJesV7fnSYfo0/bejne.html // Other books // The Linux Command Line: amzn.to/3ihGP3j How Linux Works: amzn.to/3qeCHoY The Car Hacker’s Handbook by Craig Smith: amzn.to/3pBESSM Hacking Connected Cars by Alissa Knight: amzn.to/3dDUZN8 // MY STUFF // www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com // MENU // 00:00 - Coming up 00:51 - Don't use the nighbour's wifi 03:02 - OccupyTheWeb books 03:44 - How to remain anonymous on the internet // The NSA is watching 09:56 - Be careful of your browser 13:35 - Turn off cookies 15:41 - ProxyChains and Tor demo 22:10 - The FBI story 25:30 - ProxyChains and Tor demo continued 28:36 - How to remain anonymous 33:05 - Using Starlink 36:18 - Recommended operating systems 38:34 - Untraceable phones (burner phones) 40:05 - VPN vs Tor // Don't trust free proxies 42:29 - Don't keep systems together 44:24 - Recommended e-mail service 46:53 - Bitcoin is traceable 47:58 - Anti-forensics // How to clean systems 50:41 - Recommended search engines 51:34 - Have different identities/systems 52:26 - Conclusion
Pin your comment so it stays on top 👌🔝👀
Could u do an av and other evasion techniques with occupy the web
Best channel on youtube 💪💪💪💪
There is no secure browser or programs that can keep you anonymous if we continue to use the same communication protocols and ports 🥷
@@MegaHax elaborate
Over a decade ago I took a class in network security that was taught by a retired navy intelligence officer. One thing he taught us that has stuck was: "The only secure computer is one that is not connected and can not be physically accessed. Once a machine is accessible, it is no longer secure. The form of access doesn't matter -- physical access, network access, it all compromises the security of the machine. The line you will need to define in your future career is going to be the line between secure and accessible. A machine that can't be accessed can't be used, so while it is secure, it isn't useful. The more accessible a machine, the more usable it becomes -- and the less secure. The policies you write for your company are going to be a negotiation of that line between accessibility and security."
"Air gapped"
That’s a quite a bit of words you remember from a decade ago
He wasn't aware of air-gap techniques used over 10yrs ago to communicate with any device via WiFi or Bluetooth. The device did not need to be connected to the Internet as whatever it was near could report the proximity. If you removed all RF devices and never plugged it in, you might find that people marked as targets would have to use something like USB storage to view files. Depending on the sites they were obtained from depends what was in them and what they did. Your off the shelf firewall will not help. The only decent firewall for stopping NSA and GCHQ was by Kaspersky, but they were also spying on you!
@@Bond2025 Any sources or search terms for these air-gap techniques? Sounds fascinating.
thats so true, just look how the sildroad dude got arrested, social engineering and boom, iirc he had a panic button on his laptop that would normaly brick it but he stand up and helped that woman ... crazy if you think abt it.
What I hate about the NSA the most is that they’re letting too many abusive cybercriminals get away with stuff these days but common people still have suffer online privacy issues.
They no longer have eyes on good cyber criminals. So they bother the rest of us,
That is by design, the constitution is a Joke to those people, they use it like a boy scout metal as they commit crimes.
And rich people can get away with not paying millions in taxes while you and me will get audited for not claiming $700 on our taxes. Best thing to do is accept it and adjust you actions accordingly. Unless you are born into that elite ultra-rich class of people you're screwed. Even if you cold earn or steal enough money to be considered one of the top tenth of a percent of the wealthy they would know you came from outside of their class and not going to be accepted into the club by your wealth alone. The one thing we have to get over the ultra-wealthy elites is something they are doing everything they can to disrupt is our numbers. If we could all just come together as one unified people against these elites then they could not stop us from taking them down. But that's not likely to happen is it? We are kept splintered into little antagonist factions at every level: Politics, race, gender, coke vs pepsi, you name it, the elites are behind all efforts to label us and wall us off from the one thing that is more important that those manufactured labels and unites us all into one massive collection is our status as human, non-elite. Or what I wold call human, if you allow me to consider the "elites" as non-human. They seem to lack humanity so I think it applies. Keep up the fight and don't let the bastards keep down my bother.
Reminds me of some lyrics from dude named Daylyt "Who all up on the deep web? My P.O. , yeah we know" Yk the british empire and its network of financial monopolists were the ones who invented global narco and human traffick. They been laundering money from all that sht before it was even illegal . You best bet their successors the globalists are profiting from and enabling all the criminal sht that goes on on the dark web .
😂 That's what they want
My motivation to keep fighting for my privacy is that shit might not happen now, but in the future when my life is a lot more meaningful to me, they might also be a lot harder on how they control us. I hate being controlled, so I decide to learn and do now so I can be ghost later.
1000%
And this "guru" is not very smart. A lot of gaffes. @bulliontoy. Yup: Doesn't use filename completion. Doesn't know it's not necessarily a bug to not have a (public) IPv4 address when on TOR.
And how exactly are 'they' controlling you? By forcing you to do mainstream things like going to shop, or doctor, or work? 🤣
@fifski exactly what a mind controlled person would say 😂
@@LeeeerrrroooyJennnnnkins LEEEEEEEEROOOOOOOOOOYYYYYYYYYYYYY HHHHHHHHUUUHHJAYYYYYYYYYNKINS
I usually can't sit through long videos but I have to say, listening to OTW kept my attention to the very end. David, you did a great job in allowing him to share his straight forward and easy to follow info on keeping safe online. You asked the right questions and summarized in a succinct manner. Excellent!
“I don't know why people are so keen to put the details of their private life in public; they forget that invisibility is a superpower.” - Banksy
Besides quality content, this really feels like a thriller podcast I'm watching. I absolutely love it.
Absolutely love David's channel and wanted to add to the OPSEC recommendation of not carrying your personal phone with u to buy a burner- even more important than that caveat, one must NEVER carry around both your personal and burner phone with u at the same time. Any 3-letter or law enforcement agency can create a map of date & time where both your devices are pinging the same celltowers at the same time, thus tying u to the burner with circumstantial evidence. I like to think of the personal cell and burner as your wife and mistress, both should not know of each other much less be in the same place at the same time. And no, this wasn't a reference to infidelity...stay safe
Yeah, and leave the burner on airplane mode unless you actively need to use it. IMSI catchers are deployed at most protests these days, if your phone isn't reaching out to cell towers it won't connect to a Stinger either.
What I like about this episode, apart from all the very useful suggestions, is the constant warnings about how how difficult it is to be 'hidden' online! This is so very true. The mention of of having multiple identities and completely different behaviors in the different identities is very important. Note: Having different identities for social media and emails is useful anyway to help protect you from 'trolls' and people who like to 'bully' you online. Thanks for sharing this it really is very useful information indeed. :)
Now you abuse. Harassment on multiple identity
@@Neighborhoodcarpetcleaners You are confusing me with someone else. I only use this userid on YT and similar services. I only reply to people in comments. I don't like harassment or bullying done to me. I don't do it to others. Beware of the 'troll's. They user similar usernames to confuse real people. It is what they do.
If you want ultimate PERSEC where you'll never be caught, then you start here: buy a laptop with a gift card or cash. Giftcard should only be bought with cash and a mask on. Also make sure you made it to the store untraced by any public recording cameras where it wouldn't see your face or a license plate perhaps. The laptop should be used with layers of encryption/VPN, and in a location far from your house. Once you have what you need, your files should be placed in an external harddrive outside the laptop. The laptop should be placed inside a faraday case and hidden away. The location you're at should also be untraced by any public cameras that could see your vehicle or face. But with the layers of encryption, it would take government hackers too long to trace the location. And by the time they do, you will have been gone for days.
@@moshedayan9253 Just buy your hardware used, why go through all that crap with gift cards
Much, MUCH appriciation to the both of you David. As a aspiring Cyber Engineer, it's like you guys answer all the little and big questions I think lol Thank you!
I know who the 'faceless ' man is - he is my neighbor 😭😭😭
Dunno wtf a cyber engineer is supposed to be but heads up OTW is a clown
@@KG-wd1uu He must look dorky to you lol
16:41 16:44 16:45 16:45
what the heck is a cyber engineer
Banger of an interview! We must have more OTW content David. Fulfill your destiny!
lol... glad you enjoyed the video! Definitely want to get him back much more often!
@@davidbombal thanks for what you do. Simply the best. you guys with OTW owe us an interview with a Ukrainian hacktivist that are defending their homeland from russian cyber invasion on top of kinetic invasion. You had an interview with a russian young dev. And this is not fair. Give Ukrainians a chance to speak out.
OTW has spoken about Ukraine a lot in our interviews. Watch a few of the interviews with him like this one: kzhead.info/sun/etmdiZuQkKGrhaM/bejne.html
@@davidbombaloh trust me©️ we watched ALL your videos! Thanks for what you do again. Just would like to head one of many Ukrainian infosec experts from the trenches of World Cyber War 1. I think it will be a hot content. Just pinch it to him he can get someone to agree for the interview.
This episode has confirmed many of my suspicions and opened my eyes to a few more. Thank you for sharing some really good information. Great video from an awesome channel 👏
Man thank you for this interview! Alongside the instructions, I was able to find a far easier way to setup configure and launch firefox and the TOR browser onto a daisy-chain of proxies! One step closer, MY MAN! Liked and subbed, usually don't sub to big channels but you are another Louis Rossmann, big enough but good enough messages to not pay attention to. (R2R 4 Eva!)
I used to work in intelligence over ten years ago, and everything he says checks out. These are all things that were taught to us. I remember reading the public case file that came out after the Silk Road bust and learning that DPR used the same cafe every day to do his browsing and I was like "uhhh, classic mistake..."
This is a lie. Police in the US don't go around knocking on everyone's doors just because someone in the area hacked from a nearby IP. No judge would be able to approve such a warrant.
Yep. Unfortunately, people are creatures of habit. Unless you are willing to go completely off grid in the middle of nowhere and forego nearly all electronics it is nearly impossible to not be traced somehow today. Even if you go off grid I am sure any of the major government intelligence and law enforcement agencies will find you if they want to. Facial recognition still has a ways to go, that we know of, but with cameras everywhere these days who is to say they would find you just because you unknowingly walked by a web cam or came up on a picture someone took where you just happened to be in the background somewhere.
Maybe he stopped caring. There’s really nothing to hide from you megalomaniacs. It’s called freedom you fool
I think doing this is possible, you just need NOT TO sit in the cafe, you can just live in the city with a high population, craft a wifi cannon, decorate it so it looks not like wifi cannon, and here you go!
Yeah I couldn't work out how he thought that was a good idea, especially when he went to extraordinary lengths to keep everything else hidden
great interview. as OCTW said...even he...is not anonymous to some people that have resources,time and skills. great interview Dave. Great presentation. i believe you must create a course for footprinting etc. or even as an end user..if someone attacks you , some basic forensics and if you have a chance to find by yourself this neighbour ...it will be valuable.
You know this guy is really a hacker, because he wears a hoodie. ALL hackers wear hoodies. X D
Another great video... The limitation of this technique, is not being able to use burpsuite for MITM and proxychains... However, adding a SOCKS TOR proxy to burpsuite, diverts outbound traffic through the TOR network... without proxychains
This is my favorite KZhead channel. Most informative and thought provoking hands down.
Wild, I was JUST pondering this very question two nights ago. I've used Tor on and off since maybe around 2007 and since then, I've become a sysadmin. I'm always thinking about cyber security and how I can improve it. I figured the NSA pretty much had a handle on Tor. Good info in this vid, thanks!
I would not be surprised if NSA and every other national spy agency has at least one TOR node.
This was stuff being talked about 3* decades ago in the early 90s. What is being described as anonymity here, is really pseudoanonymity. There is no such thing as actual anonymity online. I like to think of the internet as standing in a conceptual digital square wearing a name tag. You can put a disguise on and cover your name tag, but if someone really wants to know who you are, or someone who already knows you and is paying attention comes along your efforts are for nothing. You are more anonymous in real life than you are online. So if you're looking for privacy, the ultimate hack is to take offline and into the real world everything you can.
30 decades ago, that is 300 years ago 😋
@@askfaisalmuslim Nope.
Glad someone spoke clearly about the use of AI in assessing & using our data. It does seem like AI tries to think ahead for us. It does seem intrusive. Just because I'm thinking about holiday cookies, doesn't mean I want them to pop up in adds everywhere. At first it made me scared that some mind-reader or psychic was harassing or targeting me via my phone. That's just how it can really feel. Especially if "push alerts" are not controlled.
It's funny, how I tried watching Mr. Robot around the time I started my cybersecurity journey and I thought it was a good show but started losing interest during season 2. Fast forward a couple years later and countless hours of studying pentesting, I decided to restart the series a few days ago and its way better than I remember and so many of the small references make sense now lol. Including the exit node scene from episode 1.
Right on man, you watched it on Netflix??
Yea, its funny. Seems like me, 5 years ago first time i watched it. This series is muuuch better if you know what's happen on the screen.
@@prolificseeker4778>Series about hacking and technology >Did you watch it on Netflix? Lol
I tried to watch it since it was techy but it was boring at the time. I'll wait when its on free streaming
Seriously. For me, I'm watching it right now, and the references for Linux, Tor, Phishing, etc, make a lot of sense after 6 + months of training.
Spent my young years finding people, before internet. So Groan.
when bad people exposing themselves out in the open in broad daylight proudly doing bad while people against them has to be shady, creeping, tip toeing in the dark like thieves. upside down world and you comply
This is so interesting and informative! I’d love to hear more about using Linux as I’m a newbie :D this was so interesting and remaining anonymous is definitely not something you can do by purely using a vpn and I’m so glad you touched on that ! 🙌 great video
any vpn you buy is attached to your credit card :P meaning law enforcement can supeanoa it
I really enjoy these podcasts, when i have long drives i always put yours on. Thank you for doing what your doing David. Im really excited about the Pegasus video. All the best!
I would LOVE for this to be a podcast
Thanks for all the great videos. Excellent content and guests, you know who, for example. I’m almost 50 and I regret, every time I log on the a piece of tech, that I didn’t try to learn Linux when it first hit the scene. My concern now, has to do with Microsoft , adding the WSL functionality to the stock options of Windows. When you read the user agreements that are buried along side and pertaining toWSL, it seems that it was not a benevolent decision to allow Windows users to access Linux. I hope someone looks into this because Microsoft doesn’t do anything for free. And the way the new user agreements ( that no one reads and blindly agree to) seem like the position Microsoft to take ownership of anything the may be created under WSL. I hope I’m wrong. If not, I hope someone brings it to light. Thanks again!!
I like the way that you gather things for good purposes and you do. It encourages me to see any video you create, Sir. I highly appreciate your work. Keep going on.😊👍
2 million soon! Can't wait to see what you have planned! Congrats David. You're awesome.
Thank you very much Owen! Hopefully be soon :)
How David still doesn't have 10M subs is beyond me. I subbed when there was like 500k, and I am very happy to see him having nearly 2M, and proud to be part of this community of secure conscious folks. You don't have to be networking engineer or even IT. Just realize that big part of everyone's life today is in the internet and you should be interested in this topic.
Thank you!
@@nieczerwonyhis Udemy courses are actually really good to
Thank you OTW. Fascinating stuff, and very grateful to you.
Another thing that's important is to never mix your hacker life with your public life. That means as an example; If your turner phone is located where your private phone usually is located, that would be a no no, even if your private phone isn't there or off at the time. Treat all of the things you use that can connect to the web or to a phone company as a node and make sure that hacker nodes have never been online in, around, on the way to or together with any of your private nodes. If they have, you can get rid of them at once. This is one of the reasons why there are schools for these kind of government operators. It's also the reason why people who are working under these kind of rules don't do much else than this work. It takes up a lot of the time each day, just to do the smallest thing.
Yes, I'm a little techtarded myself but was always concerned with the blue tooth connecting to local devices possibly showing location.
@@franciscozubillaga3241Same
I love what you do boss , always I have to come to your channel at least once a day , one of the people that making change for the good in this world . I really have an immense respect to you Sir .
Love seeing OTW on the channel! Great interview and information, thanks so much David!
Quality content as usual, Thank you David!
I think we need to shift the conversation from the ideal of anonymity to the practical compromise of pseudonymity, and just use anonymity as a benchmark for evaluating different identity defense systems. Only the designers need to dither about the Philosophy and formal logic. Everyone needs an optimally engineered solution.
Needed all the content that he tells in this video to learn for free. And thanks for uploading the important information for learning. ❤
Thank you David and OTW . I have already received the the books you mentioned. Best teacher and best IT youtuber. Waiting for more episodes like Pegasus. Thanks for your information and knowledge.
Great upload. I was USAF working for NAVY in a Unit voted Best unit in NSA for the year.
Brilliant upload David & OTW. Can people also be traced via their device MAC address ?
A lot of this stuff is very logical if you know a little bit of how the basics of the internet work (ie. DNS, IPv4, ISPs, etc). I'm just a normal IT guy thinking of getting into Cybersecurity and I spent a lot of time thinking of how to stay anonymous and I kept coming up with "nope can't trust that, or that, someone else owns it, so they can probably see it". This video really validated a lot of what I was thinking which is what I kind of needed to hear. Thank you to David and OTW for confirming that becoming anonymous while invaluable is incredibly difficult and is really all about what's it's ultimately worth and to who it's worth considering all the breadcrumbs that become so easy to leave behind. It really takes a lot of effort, intelligence and constant awareness to stay anonymous.
As always good content, I'm impressed with you I really like your videos usually with videos longer than 10 minutes I watch them between days but yours almost always keep me engaged.
Informative! Thanks David and the anonymous guest.
Mr. David I absolutely love your shows and try to do my best in viewing them all. I'm kinda new to this field but have found it to be what you could call an obsession/passion in everything to do with hacking. I've never heard of OTW and find him truly fascinating and informative. I appreciate all your efforts and the things you share with us all. Maybe you could have him or even yourself doing a show on AndroRAT, Android-RAT Hawkshaw, Dendroid, HaxRat, LaRat, Mass-Rat, Teardroid-phprat and WH-RAT. Maybe all the RAT's? I apologize if you've covered these already. As I said, I'm new in this field and to your channel as well. But thank you none the less for all that you do. It's greatly appreciated.
Don't play with RATs if you're new to hacking
I'm torn... On one hand, I understand what the series is trying to do, and the level it is pitched at. On the other, I find myself utterly disappointed in, what I see as, terrible advice and conclusions - but for reasons that _(and I am aware this sounds quite arrogant)_ cannot be discussed easily in either : A) Public, or; B) Via comment exchanges I think the biggest problem is that it attempts to mix two very different levels of, respectively, assurance and methodology... necessarily poorly. Firstly, pitched toward the difficulty of addressing the threat level of highly motivated state-actors... but, then, by only applying simple methods within the grasp of the audience majority. These two things really don't go well together - and lead to suggestions and conclusions that are either patently false at one level - or absurdly weak at the other. But, unfortunately, in the kind of way that evades discussion in a public comment section. The methods suggested in the video are necessarily limited and cannot rise to the threat model which they then measure themselves against. So... forgone conclusion? The other problem, of course, is that actual examples of techniques, devices and toolsets that CAN defeat an unusually well-motivated and highly-resourced state actor - involve methods that are necessarily quite complex to qualify, cannot be discussed too definitely without drawing attention ... and would, if broken down, be seen to unduly benefit the criminal element.. So I find this to be very much a 'closed room' type of discussion. In public we can only ever reach the level of "best practice" or "general safety advice" using OTS tools - and that is always going to leave black-hats chewing their own tongues off in frustration - and the general public, deeply misinformed in one way or another. So, I'm left with... Nice video! I disagree with a lot of what your guest said, but I really don't want to get into it : /
Totally agree, discussing about nation-actors threats and then going "Disable your cookies" while making no efforts to discourage the user from using browsers or search engines is just... It feels almost either sinister, or just pretending he knows what he's talking about with some 10-years old advice he read once on a blog.
David, I am watching both of you with much anticipation and realizing how fast the world is moving away from my limited understanding of the basics of computer science. what brought me here is the frustration state I am in for the past two weeks. I recently discovered that all my social media accounts have been hacked. My inbox is full of warning and threatening emails.!! I need your help if you can please. Looking forward to hearing from you. Nicholas
Dude no, call your police station, they should have a cybercrime unit. Also, call a lawyer, see what he says just in case.
Arguably the best technology and security KZhead channel. You cannot find this much quality content,even if you are ready to pay for some dollars.
hes beter than most of the jerkoffs on youtube dats for sure!!!!
Hey David, thank you. This is good stuff. What is your recomended start point to be an ethical hacker please?
Great interview! Guys the real deal, If you're into hacking, windows should not be your OS of choice
Occupy The Web is a guy I could see myself having a beer with.
But neither of us ever will unfortunately as he is totally anonymous...
If you could find him lol
@@davidbombal Hmmm, well if I were to ever be blessed with a job offer from the NSA... It would be good incentive to accept, if for no other reason than to grab a beer with OTW 😊
@@thedapperturkey I'm nowhere near that good...lol
lol... that's a great comment James!
I'm watching you off video, and i'm thinking i've never joins anyone or paid anyone to hear a see, they're material, but You caught my attention and I so need some wisdom pertaining to security on the net and More. I Have Some Questions And Was Wondering If There's A Way To Communicate Privately? THANKS, I'll Await A Response.
thank you OTW you're awesome, good stuff on here really appreciate it! I'd love to see you on here discussing some wifi hacking info
David Never fails to deliver Great Cybersecurity Knowledge! Thanks
In the uk, a guy gets stung for trying to meet children online, all while another police department are watching and gathering evidence on his neighbour who has stolen his identity, and is posing as him to meet children online - they let the innocent guy's life get demolished because they didnt want to blow their case, he lost everything - so yeah, they know if you use the neighbours wifi
I wonder if they'd know if you use some random other person's wifi some distance away, by using wireless-to-wifi relay. Imagine a battery-powered device with something like a RaspberryPi, the wifi connects to someone's wifi, and a wireless adaptor with a sim card to get on the phone network. Dial that phone number and you're using that other person's wifi from miles away.
Great info. One counter argument - An anon VM is way easier to quickly/cleanly nuke and dispose of than a separate HW rig is.
But your VM still carry your own MAC addr. Therefore your computer.easy to compare. Unless you will flash the network adapter (not all can be changed)
When ever Tor and layers come up I always think about shrek and i was no dissapointed today
I just want to tell you OTW, that you are a great source of information and knowledge. I now understand how dangerous is the web. Please keep giving us more feedback on forensics/wifi hacking/ tracing bitcoins and tracing scammers!!!
Whoever controls the final notes controls the traffic. That's my Golden Nugget
The guest is incredibly intelligent and has great insight! Thank you for having him on the network.
On a dedicated flash drive, run a trimmed OS, custom configured for only the interface you plan to use. Complete with only the drivers for the exact devices installed, and any additional drivers for hardware you might use. Cut the OS to the BONE. Pre config to he is your swap file, set to a second flash drive, yes, a separate drive, not a separate drive volume on the same physical drive. Use Tor or another alternate connection method,, ( if using the neighbor's wifi, use at least 3, hopping thru three different homes, ideally choosing neighbors w/ 3 different ISPs ,)then running the chain link, then, share your connection to a secondary device, connect to the Internet thru the provided link, then , run tor, run chain link...profiles are the key. Create profiles of people who naturally would be searching for what you'll search for. Health- a mother, "how to.." a tinkerer, a 'maker", a jr reporter. Don't forget to make a few with your same name, and build them up on social media. Because they know you exist. You HAVE to be on the internet SOMEWHERE, right? Or dead....
The problem with disabling cookies is some websites will actually limit functionality or even make it impossible to navigate unless you turn on and accept cookies. How do you overcome that?
Can you guys make a video on people search and how to OSINT other people, including yourself? Not like hide from the FBI privacy, but to show the kinds of tools and techniques someone doing the investigation would use. I think it would fill in some gaps.
Nice video Dave. But strange you're not discussing Tails OS. Get a cheap or second hand laptop with 8Gb RAM (the more the better), a bootable USB3 port (almost al laptops from five years or younger have that) and a USB3 thumb-drive and you have a quite quick anonymous machine....
I’m super critical when it comes to seeing how someone “moves” around the file system using the terminal. I hope he was being deliberate about everything just for the sake of being clear to people watching because it was telling if not haha
David's content should be getting at least 10k likes. He is literally giving out paid information for free.
He is actually not giving away much information. He just goes on and on about how "they have other sources than the IP-address and so on". He doesn't get into what other sources - only that you have too understand them. This seems to be more of an hour long ad for his books and him.
@@carstenjensen3123 he's pushing protonmail, that's enough for me to switch off
Nah, this informations arent really that special.
@@atorik1076 *information
I agree with you bro he should have 10k+ views always as his content is amazing! But I gotta ask what is paid information? If you mean that others have taken the information and packaged it into a course to sell. Then he doesn't sell courses it's more like a show. Also, all of the information is available for free, and has been for decades, online. Actually, if you want to learn more in depth dude, continue watching David because he is great! Lol but also, follow some documentation that you have to read and do actions. Make a target and figure out how you can achieve 🙃
I don't try and be invisible, but I do poison my data with many un-me activities anytime monitoring is possible. Exactly the same method for dealing with AI. They use your interactions to further train their models, so take action to break them with inappropriate feedback to the "AI".
Back in the day when email was first practical, people were concerned about NSA, FBI, etc reading their emails, so some percentage of users changed their signatures to include words like bomb, gun, and explosives in order to poison the well and make the scanning machines scan and store worthless emails as well as any that might be interesting.
@@ralphm6901 Yeah, I did that. Lots of fun to be had on mainframes back then.
Recommend any add-ons for brave browser? Does they make u less secure? Great video
Thanks for those amazing infor, David my regards to occupy the web am sure I will be able to build back my workstation and how about when I got a question to ask.
I think that it might be impossible to be anonymous, because at the Hacker conference we talked about a lot of other things, VM's,Screen Size, hardware heuristics, browsers. And the US three letter folks can crack all of these. The speaker was hiding from Russia and other cartels that his jobs was to attribute crimes to. He said he could not defeat the US cyber hounds. Even if you beat them, your traffic is the only one that is Anonymous. You then stick out and they can watch for that traffic. Hiding in plain site is the concept that would be the best chance of obfuscation. And staying on the move. And like the guest mentioned using starlink. And please don't do bad things in cyber space. Thanks for the great content.
Occupy the web is amazing. Listening to the two of you on the stream has been one of the best streams I’ve ever listened to. Great content David.
Ryan doesn't know that there is no agreed standard for encrypting mail sent between ISPs so it all goes as plain text. Protonmail can see everything without the need to decrypt anything after they encrypt it for users. Law Enforcement love it. He confused End2End with Encryption2Server. This is a common mistake.
@Israelisnotourfriend actually, if you missed it or you had already stopped watching, at 50m 50secs on the video timeline you will find them telling what OTW would suggest using as an alternative browser solution@@Israelisnotourfriend
@@Israelisnotourfriend They said the alternatives, you just didnt listen. And its not about "dont use them" Its about "dont use them if you want to remain anonymous" Most people dont care about their anonimity, which is fine.
@Israelisnotourfriend so it really does not matter, when it comes to your privacy. They did say don't use Chrome. As an alternative
The amount of knowledge that I had gain from this video is more than my 2 year of computer information study
So I found that the best way to remain anonymous from the law online is to not do illegal things online or talk about illegal things online. I don’t see the average person doing all this because they think some one is gonna steal there info while buying something on Amazon. But hey some ppl might my neighbor who just moved from Sinaloa he does stuff like this even for simple stuff … he I think just likes safety cuz I helped him install some really cool cctv cameras last week and he got really excited about the motion detectors ..he’s super nice too with some crazy tats .
Thank you two for this interview and the hard "pills". Also, I still stick with FF. Not only for "privacy", to avoid monopoly of "chromium" as well. Use Brave is keep the monopoly of Chromium.
Same, and with some tweaks Firefox is just as anonymous as Brave, but Brave hasn't been around long enough to build up trust with me either.
The mention of Brave feels like an ad lol. Brave has analytics (worse than Firefox). This guy seems to have pretty juvenile understanding of opsec, but a juvenile understanding is plenty enough if all you're doing is talk shows and hiding your commercial identity
@@luphoria It's good say "I use Brave" but actually I use a Chromium self-compiled by me"
@@luphoriaok.... so direct to something better.
Librewolf is the Brave of FF
All the REAL hackers would be laughing right now if they watched this old man pretending to be one of them.
No True Scotsman fallacy
This stuff is interesting.really knowing this allows u to understand how easy it is for ppl to get you so protect ur info
I love your programm David. Thank You so much😊😊
Yes, really appreciate your work guys. Please bring all those topics starting with Bitcoin tracing/anonymity.
One thing I've kind of been concerned about (although I personally don't have anything to hide, but stay anonymous anyway) is communication analysis. Especially with how much more more work on AI is occurring recently (but even really before that), it seems quite easy to have a bot go through vast amounts of scraped data (be that on a relatively private chatroom, or public website) and analyze their writing style (or voice when applicable) and tie it to other accounts which would otherwise be impossible to tie together (due to taking extreme privacy measures). I would expect that government orgs would have this tech, but I'm surprised that I've never heard about it, because we've had this capability for well over a decade, easily. I'm wondering when it might become more common and/or when privacy-minded or paranoid people start using AI scramblers to re-word every single thing they say.
All the same: you can train AI to re-write your text as if someone else (say, a celebrity) wrote it. Needless to say they won't be able to reverse what you wrote at that point, nor would they assume the celeb you trained on wrote it. 😗
Tell me that you use an ad blocker, without telling me that you use an ad blocker. Hello, never heard of Grammarly? It's pointless for you to do all this 'hidden but not hiding' schtick if it's gonna make you draw the whole 'ACKSTUALLY...' crowd right to your door stoop.
@@DxBlack Until the time they write AI to filter out the influence of AI rewriting.
@@HighestRank well, all i'm picturing now is Americans in the 1938 running of "War of the worlds", scared of Alien invasion, only to turn out, it was a "British radio broadcast" 😆 The similarities with that ,and privacy is uncanny.
every American should hide every single byte of info from those demons at Google & the nsa!
U have to take out the back up battery that pings ur GPS, it can turn ur phone back on if u turn it off and listen in to anything in its audio recieving area
Very informational as always 💖
I think it would be a good idea ro invite some of these scammer hunters, and ask them few question on how you can really try to track them. These guys are really like the cancer of the internet, and unfortunately most often are placed in countries with corrupter gov and police. I think if more people would know some basic tools and techniques to make their life litrlebit harder, it would benefit everyone.
David, you should be proud for putting out such content!
hes good , beter than most
It was detailed that the GUID of a user account is embedded into Office files. Does the same thing occur on LibreOffice files?
Thank you so much David 🙏 and the Gentleman 🤠
I had wondered about something based on the burner phone. A wifi style device that can be located far enough from your physical location to confuse your location, buried or sited somewhere remote(on a roof?). You would wifi to the device using the biggest security key possible. I'd say that if you were geo-static then if someone wanted to badly enough, then they could still get you by electo-magnetic techniques, so you'd want to keep moving. A lot of trouble for the average person whose not in fear or up to no good. But the concept of presenting a moving target has got to be the best solution. I also wondered if it would be possible to just tag random cars with a network of wifi-style devices. Of course then there is the issue of the car(s) driving out of range. Moving target and no financial traceability to me are the concepts to develop on. Interesting topic just from a technical puzzle perspective.
"Electro magnetic techniques?" lol
These statements about whoever controls the last node on a Tor circuit, controls the network, is in sharp contrast with Dr. Mike Pound's(who appeared on this channel) video on the Tor network. Dr. Mike Pound states that if you control the last node and the Guard node(the first node), yes it's possible but VERY VERY hard to work your way back to the originator of the traffic sent. Occupy the Web makes it sound like it's could all be done from the exit node. This is blatant hyperbole and sensationalism. Dr. Mike Pound is one of the premier professors on the subject. I'm more encouraged to believe him over anyone else. Also, If the Tor network was that easy to compromise the identify of people just by controlling the last node, it would be useless.
100 % bro. OTW bends the facts a fair bit. Like all his facts
I worked for a security company for a while. Some of the guys there used to host tor nodes specifically to monitor the traffic in order to see what hackers were doing now. Just to keep ahead of the game. In fairness to this video. He didn't claim that controlling the exit node gives you the user's IP. But like he said, that's only one way to find you.
@@hunglikeahamster How does hosting a Tor Node allow someone to see what "hackers are doing"? The traffic is encrypted and those people would NOT be able to descrypt anything since they don't host the node before or after the one they are monitoring. What information are they going to decipher from that monitoring??
New subscriber! Thank you for this video!!
I bet the NSA felt very proud when they figured out who OTW was.
What is your opinion on the theory that the more you try to “hide” (no social networks, no unencrypted traffic and alike) will actually make you pop up in certain surveillance monitors and makes you a special target? According to this theory it would be better to simulate a “normal life” and hide only specific traffic in there…
Well, if we include the IOT Internet of things , you could mask highly sensitive data in what looks to be FOB/ GPS tracker / babycam type of traffic, e.g. mimic the packet size and frequency of transmission to match such devices. Depending on how much of telemetry you can disable from sending then not actually connecting to social media or Google ID trackers would be in line with IOT devices comunicating over the web. But yeah, if you don't know how to fully disable windows and browser telemetry AND it appears you're generating traffic that avoids connecting to Google & Facebook servers then that in itself could be considered highly suspicious because most people wouldn't know how to disable traffic to these platforms
I think that's absolutely true. And this will only become more relevant as AI and surveillance increases.
@@picketfThey have loads of experience detecting and breaking steganography. People have been trying that one for decades.
Its too late... any change to it NOW is not gonna make it better. Info is already on the internet... That is not gonna get rid of Even if you go to the extreme and change names, address and what ever else could be changed in reality (excludes DOB), it still won't change anything that is online before the change was made... I guess, it would limit finding out, but these days if the governments want to profile bits and pieces of people, they will have no problem doing that. There will always be some ''key' piece of info and evidence they can get hold of "Peron X just changed their name to Y" so there is a link we can use.. You really only get one chance, and from then on it will never be the same.
thats the point with ppl tweaking their browsers to be "absolute anonymous" meanwhile EVERY website says bro just use the STANDARD browser settings with some addons and thats it.
I don't buy FBI's neighbour's WI-FI argument for several reasons. Instead the claim is constructed to spread fear, uncertainty and doubt. This is often enough to deter criminals from doing nefarious things. Moreover if suspicious activity is emerging from an IP, they have to thoroughly test the theory that it's not actually the IP's owner who did the malicious thing. With that aside, sure, it's a nice idea to knock on doors. But if the police knocked on _your_ door checking on "nefarious internet activity," would you tell them outright that, "Ya, sure, it was me! I hacked into the neighbours Wifi. Here are muh hands, just cuff me nauw pls!" Not very likely.
Ive seen special antennas that can reach WiFi routers 5 miles away only for 300 dollars. Not a bad distance at all and definitely not next door radius.
you should look at what a device does when looking for wifi networks.
They likely have additional information already they are trying to match. Aka, someone uploading inappropriate stuff and they find the subjects depicted at one of those nearby homes and the content has interior footage that can be matched to the home. I doubt it is a matter of just asking people to confess to crimes.
I have wasted several minutes trying to find someone who would think the same way as I do. The moment they say "it's 100% certain they will catch you," it already demonstrates how false it's being. If you're going to live in a city with tall buildings resembling beehives and you get yourself a good antenna, I'll bet you whatever you want that it stops being 100%. Furthermore, I don't know where this person lives, but in my country, without a judicial order, they can't enter your house. Do you know how much time they would waste searching everything? It's true that many people have committed cybercrimes, but you don't need to be intelligent to do it either. The people who are truly intelligent continue committing crimes and they haven't been caught. So, getting back to the topic, that 100% is completely false.
@@GerardSalvathere is no anonymity in the internet, Tor is not anonymous, most exit and entry nodes are controlled by fbi.
You know the same info that is designed to help educate your own network, can also be used to educate bad people as well , so in fact, your not not helping the good guys, your just fueling the bad guys.. by much more. That's some figures to put on right there. "Really hard to stay anonymous" THANK YOU.. this person. tells the truth..
Is it safer to set the exit node of TOR in a country like Iceland or Switzerland because of the data laws there?
We must have more OTW content David.
Not a topic that is talked a lot about, but what about researching the possibility to tap data from PtP radio links? In many cases I would guess this would be similar to WiFi hacking, since the same encryption techniques is often used. Tapping data from cell towers could also be a interesting topic (if it is possible).
Point to point? Like wireless backhaul?
@@thewhitefalcon8539 Yes, or point to multipoint systems that are used by many wisps
Yeah
Great show... More Mr. Robot and wifi info would be helpful.
Something that (OTW) said doesn't make sense. if you don't take your normal phone to get your burner phone. when you come back home you're gonna have the phone side by side/same location eventually so wouldn't that give the metadata away?
He addresses this at 39:32
Oh, OccupyTheWeb, amazing dude! Love his content. I'm now reasing his Linux basics for hackers book and learning from it, definitely a must read. Thank you David for giving us the oportunity to again listen to him.
Agreed! He's amazing. You're welcome! Hopefully we'll have him back more often!
@@davidbombal I hope so, would be quite cool to see him more on these kinds of shows
I would love to see more content like this but also discussing stingrays... Because stingrays play a huge role with the government tracking cellphone data... A burner phone may make no difference if being monitored by a stingray
Never heard of such term. Mind explain the term to someone who hasn't coded a single line in life?
@@axolotl2494 it's a device the size of a radio that can mimic a cell tower. Anyone nearby with a phone using the carrier they are mimicking would go through it first and then they can extract information such as the phones IMSI numbers. They can also force your phone to do a number of things such as using an older protocol that's less secure by pretending to be unable to accept the new more secure one. There's a lot they can do. But like everything it's about layers of effort and resources. Someone would need to know your general location and pay someone to sit near you in a van and know what carriers to mimic etc.
@@1three7 Huh, never thought about such possibility as simple as it is. Thanks for the answer!
We cover stingrays and other cell phone hacking in this Mr Robot video: kzhead.info/sun/iL2tYNZtialomn0/bejne.html
Also you can consider running a DPN over a VPN for that extra layer. I build and mange my own network with this method. I basically hijack another ISP although this can be risky due to it been virtually impossible to control the hijacked ISP’s DATA but my own ISP is receiving nothing of my own traffic. I would consider looking into a DPN from deeper network if you want to keep it simple stupid. This technology is slowly been adopted by people such as my self. Although and this is true your never 100% secure no matter your OPSEC there is always that 1 little bit of evidence you will leave. But if you run a DPN through VPN and bridge though your own DNS and access through a secure day 1 windows 7 VM you will have very good security no matter what you do unless you forget to delete metadata from any uploaded photos or videos such as on a marketplace. That’s when you will get unstuck. Again it goes way deeper then this and I may consider writing a book
love this content. thank you for making it.
Hi David, First of all, many thanks for this interview. I would have been interested about stay anonymous while webhosting a web platform. Does a webhosting service exist allowing anonimity of the owner of a website ?
an IP address has to be known... That is the way it works.. It would be like trying to find someone's house but not knowing their address. That by itself, may not mean much, but the rest is up to you... how much info is givin' up by the user resolves to "now we have something we can piece together" The more info givin up, the more can be linked to the IP address. Get the picture ?? All of a sudden, you get to a point, where so much more info is online about an individual, you don't need to go at the user anymore. Its more convenient, and direct, but you don't have to. As now there is a better alternative to do it, (without your knowledge). Which is even more of a scare afterthought...