JustToThePoint English Website Version
JustToThePoint en español
JustToThePoint in Thai

Advanced Security: Pass and KeePassXC

This article is about other actions that you could take to protect yourself:

PhoneInfoga is one of the most advanced tools to scan phone numbers using only free resources.

  1. Installation. # Download latest release in the current directory: curl -sSL https://raw.githubusercontent.com/sundowndev/phoneinfoga/master/support/scripts/install | bash
  2. Use. phoneinfoga scan -n “telephone_number”
  1. Installation: sudo apt install keepassxc
  2. Export LastPass Vault’s data. A. Using Firefox, go to LastPass: Advanced, Export, LastPass CSV File and save it as a CSV file. B Import it in KeePassXC: Database, Import, CSV File. Database Name: Passwords. Save it (Passwords.kdbx) in Google Drive/Dropbox/etc. Import CSV Fields. Check column association (Username: Column3, Password: Column 4, URL: Column 5, etc. it may vary).
  3. Use it in your favorite browser. Launch KeePassXC, select the Settings option or the cog wheel icon from the Tools menu, and then, Browser Integration, Enable browser integration. In the General tab: Enable integration for these browsers: Chrome, Firefox, Brave, etc. Open your browser, install the extension KeePassXC-Browser, and connect it to KeePassXC. Give the connection a unique name, then click on Save and allow access.
  4. Use KeePassXC in your phone, too. Install app Keepass2Android Password Safe. Open file…, Google Drive/Dropbox/etc., Select Passwords.kdbx, Type Master Key.
  1. sudo apt install openssh-server libpam-google-authenticator.
  2. sudo vi /etc/pam.d/sshd: auth required pam_google_authenticator.so (it makes SSH use the Google Authenticator PAM module).
  3. Restart the sshd daemon using: sudo systemctl restart sshd.service.
  4. sudo vi /etc/ssh/sshd_config:
    ChallengeResponseAuthentication yes 
    PasswordAuthentication no (Disable Password Authentication because a lot of people with SSH servers use weak passwords) 
    Banner /etc/issue.net (Display warning message) 
    PermitRootLogin no (Disable root SSH login) 
  5. vi /etc/ssh/sshd-banner:

    WARNING: Unauthorized access to this system is forbidden and will be prosecuted by law. By accessing this system, you agree that your actions may be monitored if unauthorized usage is suspected.

  6. google_authenticator: Do you want authentication tokens to be time-based, select y(es).
    Use Google Authenticator, scan the QR code, and enter the code from the app.
    Do you want me to update your $HOME/.google_authenticator file? y(es).
    Do you want to disallow multiple uses of the same authenticaation token? y(es)
    Do you want to do so?(Increase the original generation time limit) n(o).
    Do you want to enable rate-limiting? y(es, it limits attackers to no more than 2 login attempts every 30s).
  1. Installation: sudo apt install clamav clamtk (graphical front-end for ClamAV).
  2. Updating the ClamAV Signature Database: sudo systemctl stop clamav-freshclam.service (stop the clamav-freshclam.service service), sudo freshclam (update the signature database manually), sudo systemctl start clamav-freshclam.service (start the clamav-freshclam.service service).
  3. Scan: clamtk, scan a file/directory using its graphical interface or open a terminal and type: clamscan ‐‐infected (print infected files) ‐‐remove (remove infected files) ‐‐recursive (all the subdirectories in the directory will be scanned) /home/user/.

Tron is a glorified collection of batch files that automate the process of cleaning up and disinfecting Windows machines.

  1. Install Kali Linux Raspberry Pi 2, 3, 4 and 400 (img.xz).
  2. Use Raspberry PI Imager, Choose OS: Use custom.
  3. Start the Raspberry Pi (Username and Password: kali) and update the system: sudo apt update && sudo apt upgrade.
  4. Put the internal card into wireless monitor mode: iw phy `iw dev wlan0 info | gawk ‘/wiphy/ {printf “phy” $2}’` interface add mon0 type monitor, ifconfig mon0 up, test it (airodump-ng mon0).
  5. Wifite Requirements: sudo apt install hcxdumptool hcxtools libpcap-dev python2.7-dev libssl-dev zlib1g-dev libpcap-dev. git clone https://github.com/JPaulMora/Pyrit.git​, cd Pyrit, sudo python setup.py clean, sudo python setup.py build, sudo python setup.py install.
  6. sudo wifite –kill
Bitcoin donation

JustToThePoint Copyright © 2011 - 2022 PhD. Máximo Núñez Alarcón, Anawim. ALL RIGHTS RESERVED. Bilingual e-books, articles, and videos to help your child and your entire family succeed, develop a healthy lifestyle, and have a lot of fun.

This website uses cookies to improve your navigation experience.
By continuing, you are consenting to our use of cookies, in accordance with our Cookies Policy and Website Terms and Conditions of use.