List of Privacy, Security and Encryption Tools - For Business Email, FileHosting, etc

Victor John

New member
Joined
Feb 10, 2020
Messages
8
Security and Privacy are important concerns. Your communications, habits and general day-to-day life need to be shielded from occasionally hostile outside influences and the modern public. When you need to protect your Family or yourself these are the Tools I have found useful.

The Fabulous Five - The Must Haves

Get and use all of these. If you aren't using these, you should be.

Texting and Calls - Signal

Email (Simple) - ProtonMail OR TutaNota

Password Bank - BitWarden

VPN - ProtonVPN OR Mullvad

Browsing the Internet - Firefox with uBlock Origin (Adblocker)

The Basics

Hardware

iPhone's

Encrypted Text Messaging and Voice Calls

Signal - Preferred

Whatsapp

Encrypted Email - Hosted by Someone Else

https://www.fastmail.com/

https://mailbox.org

https://mailfence.com/

ProtonMail

TutaNota
Web Browsing
Firefox - I never use anything else.
Search Engines
https://duckduckgo.com/
Habit Building and Tracking
https://habitica.com
Task Assignment and Management
https://trello.com
AdBlockers
https://github.com/gorhill/uBlock/#installation - Use this one.
https://adnauseam.io/ - Harder to use. Blocks ads from being visable, but it clicks all ads in the background to mess up Google and Facebooks tracking of you by creating a huge volume of fake date. Fun.
http://trackmenot.io/ - Creates fake Web Searches to throw off Google and Facebook. Preferred and Highly Recommended.
https://www.purify-app.com/
https://pi-hole.net/ - Intermediate to Advanced level. Redirects all home DNS queries from all network devices and blackholes all the advertisements. Blocks ads in everything, though a little complex to set up.
Password Managers and 2 Factor Authentication (2FA)
https://bitwarden.com/ - Get a Family Account
VPN Services
https://mullvad.net/en/ - The best, by far. Highly Recomended.
https://www.tunnelbear.com/
https://protonvpn.com/ - A little easier to use than MullVad.
Two-Factor (2FA) Authentication
https://bitwarden.com/ - Get a Family Account
Not as Good, but still alright - https://authy.com/, https://www.yubico.com/
Secure Notetaking Apps
https://standardnotes.org/
https://www.protectedtext.com/
https://turtlapp.com/
https://privnote.com/#
The Extras - Not As Important but Still Good to Have
Running Multiple Identities to fool Advertisers

https://mysudo.com/
Sending Large Files Securely
https://send.tresorit.com/
https://send.firefox.com/
https://filesend.standardnotes.org/
Large Scale Encrypted, Anonymous Group Chat
https://about.riot.im/
https://briarproject.org
https://mattermost.com/download/ - Not Anonymous
Self Destructing, Read Once, Anonymous Messaging
https://privnote.com/#
Encrypted Email - Hosted by You
https://lavabit.com/
https://mailinabox.email
https://yunohost.org
VPN - Hosted by You
https://github.com/StreisandEffect/streisand
Tracking Family Members Phones and Locations for Safety
https://www.life360.com/
https://famisafe.wondershare.com/
GPS Tracking Lost or Stolen Devices
https://preyproject.com/download/
https://www.lookout.com/products/personal
Security Focused Cloud Storage Services
https://mega.nz/
https://spideroak.com/one/
https://www.pcloud.com
Full Disk Encryption Software
https://www.grc.com/misc/truecrypt/truecrypt.htm
Checking if your Service has been Hacked
https://monitor.firefox.com/
https://haveibeenpwned.com/
 

Papi Knox

Papi Knox
Staff member
Joined
Mar 11, 2019
Messages
369
BitWarden is new to me... I'll take a look

Everything else I'm doing

Looking forward to hearing more about you and your background
 

Victor John

New member
Joined
Feb 10, 2020
Messages
8
Whatever system we use to do the work we do, it can always be incrementally improved and refined.

Sounds like you're ahead of the curve.

Bitwarden is the best-in-class, everything on that list has been painstakingly and thoroughly tested and researched.

I have a few more lists of resources. I'll post them up in the appropriate areas.
 

Nis

New member
Joined
Jan 11, 2020
Messages
2
I generally agree with your choices in the different categories, but do have some suggestions on my own and one major disagreement.

For Firefox I recommend getting the Facebook container. It will isolate FB from whatever else you're doing online.
Multi-Account Containers is a more general container add-on, that can be super useful.

Password Managers
Bitwarden is also what I generally recommend to others, even if the UX could be better. If you don't mind a bit of DIY, however, I do think KeePass is probably the better choice.
My setup is KeePassXC on my PC and KeePass2Android on my Android phone. The database is synced using Nextcloud.

2FA
If you're paying for Bitwarden you may as well use that for TOTP 2FA code storage and generation. If not, Authy is probably the best option. KeePass can also be set up to support TOTP codes.
Prefer locally generated TOTP codes over receiving them by SMS, whenever possible. SMS can be hijacked in various ways. The best is using a hardware dongle such as a YubiKey.
Choosing 2FA authenticator apps can be hard. Ars did it so you don’t have to

Email
If you might be the target of law-enforcement, don't use email at all. Stick to Signal. Otherwise you'll probably be just fine with whatever provider you have. As long as your connection to the server is encrypted, you really have nothing to worry about (apart from random hackers).
Email, by design, is horribly insecure and content encryption (as opposed to connection encryption) can't really do anything about that. If you use S-MIME or GPG to encrypt the content, all the headers are still plain-text - only the body will be encrypted. Very few providers encrypt at-rest emails on their servers, and even if they do they will have to decrypt when sending to a different server which means they would need to store the keys anyway, and thus can be compelled by law to hand over anything they have.

VPN
This is where I disagree rather strongly. Simply put: A VPN is (almost) always a waste of money. There are very few instances where a VPN makes sense. Most people recommending using a VPN don't seem to understand what it is and/or have been paid by a VPN company to spread FUD.
Others have already explained it better than I can, so I'll just link them here:
VPN - a Very Precarious Narrative
VPN Companies Are Lying To You
If you need a VPN for something, I recommend you go with one based on the WireGuard protocol.

DNS
DNS is one of the few pieces of the internet infrastructure that still isn't encrypted by default. That is however changing with both DNS over HTTPS and DNS over TLS getting close to mainstream adoption. There are still some wrinkles to iron out, but you can use it today if you want.
Apart from that, I recommend using Cloudflare DNS. They have some apps to help you set it up, but here are the IPs to do it manually:
  • For IPv4: 1.1.1.1 and 1.0.0.1
  • For IPv6: 2606:4700:4700::1111 and 2606:4700:4700::1001
 
Top