This is a repost from a 1337 forum, share similar tutorials/tips/tricks/whatnot about staying anonymous on the interwebz
Becoming Undoxable / Fully Anonymous In Depth Tutorial
Contents
About & Introduction
What Is Doxing?
Having A Fake Identity Online
Being Safe & Securing Firefox
Being Safe & Using FakeMailGenerator
Being Safe & Using Jabber
Proxies | VPN's
Packet Steganography
Footprint Removing
How To Prevent Getting Doxed
Credits & Special Thanks
About & Introduction
Being on the internet is not as safe as you may think it is. There are many people out there, who is thirsty for your information. Some examples would be pedos and/or people that hate you. In this big tutorial, I'll provide you many tactics that I've learned from my experiences, and hopefully, you will be safer in the cyber world. I know there are many tutorials about this, but maybe you'll see something interesting inside this one. Enjoy your reading.
What Is Doxing?
Doxing is a way of researching and gathering personally identifiable information of someone online and using it for own reasons. If someone gets you address, he/she can put you in trouble with some methods. In this tutorial, you'll understand more about what doxing is and how you can prevent it happening to you.
Having A Fake Identity Online
One of the nice methods of being safe online is having your own fake identity online. How would this work? For example, lets say your real info is (all the info is fake-random):
Name: Josh Milton
DoB: 15/2/1993
Address: 5948 North Street - Lewis Center, OH 43035
Phone: +1 505 133 71 69
Age: 22
Skype: JoshMilton1993
Mail: Josh@miltonmail.org
You need to hide this information. Make your self a fake identity, use that while registering for sites, meeting new people, etc. For example, a fake identity:
Name: Blake Delta
DoB: 12/21/1991
Address: 2766 2nd Street - Hopewell, VA 23860
Phone: +1 425 212 13 37
Age: 24
Skype: goodluckdoxing
Mail: blake_delta@protonmail.ch
Do not ever give people your real name, even though you trust them. If you give them your real info, you may be under risk. Always use the fake identity for sites while registering. As mail, use this mail generator.
Being Safe & Securing Firefox
Firefox is my favorite browser, and many people like it as well. But how secure it is? Who knows... I'll tell you how to secure it tho. First of all I'd suggest using Firefox Portable. After downloading portable, download extensions:
Code:
HTTP Nowhere
BetterPrivacy
Adblock Plus
NoScript
1) HTTP Nowhere helps blocking unencrypted web traffic.
2) BetterPrivacy lets you remove or manage a new and uncommon kind of cookies, better known as LSO's. The BetterPrivacy safeguard offers various ways to handle Flash-cookies set by Google, YouTube, Ebay and many other sites.
3) Adblock Plus blocks unwanted ads.
4) NoScript allows active content to run only from sites you trust, and protect yourself against XSS and Clickjacking web-attacks.
After you're done with the extensions, go ahead and visit about:config. Set your browser configuration like below:
geo.enabled = false
geo.wifi.uri = localhost (Linux users just leave blank)
privacy.donottrackheader.enabled = true
network.http.sendRefererHeader = 0
network.http.sendSecureXSiteReferrer = false
network.http.referer.spoofSource = true
browser.send_pings = false
browser.send_pings.max_per_link = 0
network.cookie.cookieBehavior = (1 accept but not from 3rd) (2 do not accept)
network.cookies.lifetimePolicy = 2
network.cookie.lifetime.days = 0
network.prefetch-next = false
network.dns.disablePrefetch = true
network.IDN_show_punycode = false
browser.cache.disk.enable = false
browser.cache.disk.capacity = 0
browser.cache.offline.enable = false
browser.cache.offline.capacity = 0
network.http.use-cache = false
plugins.enumerable_names = (leave blank)
dom.event.clipboardevents.enabled = false
clipboard.autocopy = false
dom.storage.enabled = false
dom.storage.default_quota = 1
network.http.pipelining = true
network.http.pipelining.maxrequests = 8
media.peerconnection.enabled = false
At last, as an extra, you can add a proxy to firefox aswell by going to Open Menu > Advanced > Network > Settings.
Being Safe & Using FakeMailGenerator
As many of you know, many email providers log stuff. You can use mails that do not log anything, like proton-mail. But I'd suggest using Fake Mail Generator. FMG is a really nice and simple service for faking registrations, and keeping your self safe in the databases which can be compromised.
Being Safe & Using Jabber
As a chat program, I'd suggest using Jabber. My favorite jabber client is Pidgin. To safely use it, download Pidgin and OTR. While chatting with people, always turn on OTR, which means off the record. It'll encrypt your messages and you'll have a safe chat client.
Proxy Servers & Virtual Private Networks
What is a proxy?
"A proxy or proxy server is basically another computer which serves as a hub through which internet requests are processed. By connecting through one of these servers, your computer sends your requests to the proxy server which then processes your request and returns what you were wanting. In this way it serves as an intermediary between your home machine and the rest of the computers on the internet. Proxies are used for a number of reasons such as to filter web content, to go around restrictions such as parental blocks, to screen downloads and uploads and to provide anonymity when surfing the internet." - WMI
This proxy guy helps you a lot for keeping your anonymity online. You can use proxies almost everywhere, to hide your home IP.
What is a VPN?
A VPN, also knows a virtual private network or a virtual private nigr is a network that is constructed by using public wires — usually the Internet — to connect to a private network, such as a company's internal network. VPN's are for hiding your home IP and keeping your anonymity online. However, many of vpn's log your IP address, and many may be leaking your real ip address, which is not good. You can simple not let it leak your IP tho, buy disabled WebRTC. If you've secured your firefox reading this tutorial, you should not have a problem. Check if you're safe from here. For a good vpn, I would suggest checking this.
Packet Steganography
For this part, I'd suggest this awesome tutorial by Crazyycast13. Packet Steganography is counted as an advanced anonymity and can be used for botnets and key transfers.
Footprint Removing
Footprint removal is removing your old information from the internet, for example, your old aliases, your main mail address, your name, etc. To remove your footprints, firstly, head to google.com and start searching up yourself and your aliases. For e.g, if this is your info;
Code:
Name: Michael Gordon
Aliases: mgordon, creeperkill3r, wasteguy432, m.gordon1, michael_g
search all of those in google in quotes, like this:
"Michael Gordon"
"mgordon"
"creeperkill3r"
"wasteguy432"
"m.gordon1"
"michael_g"
And remove all the search results or log into the site and change all the information to random shit or something else. You can also use some sites to see if you have more footprint. An example site list would be:
Code:
SSN | DOB | ADDRESS:
http://ssndob.so
Misc. Search Sites:
https://www.peoplesmart.com/
http://www.spokeo.com
http://www.pipl.com
http://www.peekyou.com/
http://www.ipeople.com
http://www.yasni.com
http://www.skipease.com
http://www.peekyou.com
http://www.soople.com
http://411.com
http://Abika.com
http://freeality.com
http://radaris.com
http://www.isearch.com/
http://www.keotag.com/
http://yahoo.intelius.com/
http://www.findermind.com/free-people-search-engines/
http://www.192.com/ (UK)
http://www.phoneebook.co.uk/ (UK)
http://exifdata.com/ (viewing information behind a picture)
http://verify-email.org/
WhitePages Search:
http://www.whitepages.com
http://www.zabasearch.com/
Archives Search:
http://aad.archives.gov/aad/series-list.jsp?cat=GS29
http://www.archive.org/web/web.php
Social Network Searches:
http://www.facebook.com/directory/people/
http://topsy.com/
http://monitter.com/ (Monitor twitter convos)
http://socialmention.com/
http://knowem.com/
http://twoogel.com/
http://www.yacktrack.com
http://www.samepoint.com/
http://www.whostalkin.com/
Passwords!:
https://haveibeenpwned.com/
https://www.hacked-db.com/
http://www.hashkiller.co.uk/md5-decrypter.aspx
Phone Information & Lookups:
http://www.freecellphonedirectorylookup.com
http://www.numberway.com/
http://www.fonefinder.net
http://www.infobel.com
Public & Criminal Records Search:
http://publicrecords.onlinesearches.com
http://www.jailbase.com/en/sources/fl-lcso/
IP Address:
http://whatstheirip.com
http://resolver.in/resolve (skype2IP + IP2skype)
http://resolvethem.com/ (another resolver)
https://www.hanzresolver.com/ (a third resolver)
http://ipaddress.com/ (IP lookup)
Website:
http://whois.com/whois
http://who.is
(Some sites can be country-specific)
Prevent Getting Doxed
Now, if you've read until here, you should be safe. Although you think you are 100% safe, it doesn't mean you can't be doxed. If someone gets your IP somehow, you may get fucked up. You're probably thinking "LOOL, my ip is static so i can't be ddosed xd xd xd" but however people can ISP dox you.
What's ISP Doxing?
ISP doxing is calling someones internet service provider and acting like a police or working there to get information about the IP. This can contain your name, address, ssn and more personal information. So hiding your IP is really important.
As I said before, if you've followed the steps until here, you should be fine. The only problem is leaked database entries of your aliases - we sadly can't remove them!