Category

OPSEC

11 publications

Comms OPSEC: Signal, SimpleX and Session Technically Compared

Technical breakdown of protocols, metadata and threat models for Signal, SimpleX and Session, with practical selection criteria per scenario.

Read →

Anti-Doxxing Personal Security: Removing Data from Brazilian Data Brokers

Hands-on technical procedure to cut your exposure on Brazilian data brokers, social media and public records before a doxxer does it for you.

Read →

STRIDE Threat Modeling in Sprints: A Full Microservice Walkthrough

How to apply STRIDE to a real payments microservice inside a two-week sprint, with a clean DFD, prioritized threats, and actionable mitigations.

Read →

Personal Security for High-Visibility Targets: Journalists, Activists, and Executives

Defensive playbook for people with public profiles: from threat modeling to digital hygiene, with tools battle-tested in the field.

Read →

Threat Hunting with Sigma and Elastic: From Indicator to Detection Rule

How to turn attack hypotheses into Sigma rules tested in Elastic, with a reproducible lab validation pipeline.

Read →

Real Anonymity with Tor: What Works and What is Myth in 2026

Tor is not an invisibility cloak. Where the network truly protects, where traffic correlation breaks anonymity, and how to use it sensibly in 2026.

Read →

Metadata Hygiene: Stripping EXIF, PDF and Office Before You Publish

How to remove metadata that leaks identity, GPS and authorship from images, PDFs and Office documents before publishing online.

Read →

Digital Compartmentalization: Separate Identities Without Leaking Metadata

How to keep personas, browsers and devices actually isolated by closing the metadata leaks that destroy any separation within minutes.

Read →

DFIR on Linux: Live Triage with UAC and Velociraptor

How the Basilisk team runs live triage on compromised Linux hosts using UAC and Velociraptor without destroying volatile evidence.

Read →

Tails, Whonix or Qubes OS: Which to Pick for Each OPSEC Scenario

Technical comparison of Tails, Whonix and Qubes OS with objective criteria around threat model, compartmentalization and operational cost to pick the right OS.

Read →

OPSEC for Security Researchers: Building a Personal Threat Model

Before you install Tails, Qubes or Signal, draw your individual threat model. Skip it and you are just stacking tools and burning effort in the wrong place.

Read →