roll-your-own - Jacob Salmela

Roll-your-own Anonymizing Email Server

This post isn’t about a specific security breach, but rather a post to educate you on how to better protect your online identity. The term “anonymize” is used loosely for lack of a better word.TL;DRCreate a unique email address that forwards to your real email for every

automation

Automatically Change .om to .com To Prevent Malware

Malcontents are sneaky. In their latest ploy, they are counting on you misspelling “.com” so they can send you to one of their fake domains. So instead of going to netflix.com, you end up at netflix.om–a phony site determined to infect you with malware. If you are

hazel

Prevent Ransomware By Automatically Finding The Checksum Of Downloaded Files

Apple has already shut down the ransomware found in the Transmission torrent client. You can easily prevent this from happening to you in the future by adding a Hazel rule to your downloads folder, which will automatically determine the checksum, so you can compare it with the one the legitimate

roll-your-own

If You Like The Pi-hole, You Will Like Rolling-your-own DNSthingy (Netbender)

Yes, a DNSthingy (the consumer-facing name is Netbender). It’s an (ASUS) router running some custom firmware (based on asuswrt-merlin) that does cool stuff using DNS, such as: blocking adsblocking malware, phishing, and trackingvirtual relocation for viewing different content via streaming services such as Netflix, Hulu, and Pandoraspeeding up downloadsspeeding

shell-scripts

Detecting Wirelurker Malware

[UPDATE] It appears the command and control infrastructure has been neutralized. Palo Alto has already written a script that will detect the Wirelurker malware. It basically scans for the files known to be malicious. Just download the script and run it from Terminal: curl -O https://raw.githubusercontent.com/PaloAltoNetworks-BD/

shell-scripts

Roll-you-own Ventir Trojan Detector for OS X

Get Alerted If Your Computer Gets Infected With The Ventir TrojanWith this trick, you can get alerted if your system gets infected and then take steps to manually neutralize it. The Ventir Trojan is a keylogger, which means all of your keystrokes are recorded. How To Set This UpAccording to

automation

Folder Actions On Yosemite Broken? Use launchd Instead

My roll-your-own malware detection has been having troubles in OS X Yosemite. It appears that it increases CPU usage to abnormal amounts. I have come up with two alternative solutions that you may want to try. To detect many pieces of malware, you will want to monitor these folders: /Library/

hacks

Roll-your-own LastPass Premium

Use your LastPass usernames and passwords in Safari on your iOS device without paying for a LastPass Premium subscription. Using a bit of scripting, you can roll-your-own Last Pass freemium without paying a dime! That said, it is far from perfect (see caveats below), but it is a great way

hazel

Roll-your-own Defense Against Mac.BackDoor.iWorm

[UPDATE]: Advanced settings added below Get Alerted If Your Computer Gets InfectedWhen the Mac.BackDoor.iWorm malware gets installed via pirated software, your computer and becomes part of a botnet. While you may not be able to stop it from getting there, you can be alerted when it does and

pihole

Pi-hole: Raspberry Pi Ad-Blocker [Advanced Setup]

Automated InstallRun this command only on a clean install of the Raspberry Pi running Raspbian. curl -s "https://raw.githubusercontent.com/jacobsalmela/pi-hole/master/automated%20install/basic-install.sh" | bashPoint your devices to use the Raspberry Pi as their DNS server and you are all set! Advanced SetupThis guide assumes you

malware

Roll-your-own Protection From A New Malware Called XSLCmd

A nasty piece of malware on OS X is XSLCmd. Using a neat trick, you can get alerted if your computer gets infected. This malware can open a reverse shell, list and transfer files, and install additional malware. Definitely not something you want. The problem with some malware–especially zero-day

shell-scripts

How To Tell If Someone Is Spying On Your Computer Using GeekTool

[UPDATE]: An even better solution is the ScreenSharingMonitor, which provides a “native” feel thanks to the Notification Center messages. Ever wonder if your employer is watching your computer or connected to it remotely? The method below isn’t foolproof, but you can get an indication that someone is connected to

pihole

Pi-hole: A Raspberry Pi Ad-Blocker with DNS Caching (Ultra-fast)

This version of the Pi-hole is outdated Click the image below to read about the new version. Inspired by the AdTrap, I wanted to make a low-cost, roll-your-own alternative that would neutralize ads before they reach your device. The Raspberry Pi fit this need. Unfortunately, the Pi only has 100BaseT

raspberrypi

Raspberry Pi and Routing: Turning a Pi into A Router

The Raspberry Pi can be used as a router–great if you need a pocket-sized device to share an Internet connection. It can also be used in conjunction with a cantenna. Requirements For This Walkthrough MaterialsLocal networkMac or PCRaspberry Pi running Raspbian “wheezy”Wireless USB AdapterHDMI Cable (*optional)Keyboard (*optional)

roll-your-own

OS X: Roll-your-own Malware Detection

[UPDATE 2014-10-20]: This tricks seems to cause high CPU usage in Yosemite, try using launchd instead. [UPDATE 2014-10-02]: defend yourself from becoming a zombie courtesy of Mac.BackDoor.iWorm [UPDATE]: Use this trick to fend off the new malware XLSCmd Macs are not immune to malware. Authors of malicious software

cantenna

Wi-Fi Cantenna (2.4GHz): How-to Make a Long-range Wi-Fi Antenna

Create a cantenna to drastically extend your Wi-Fi signal! Works great with a router that has external antennas, like the old-school classic WRT54G. Requirements For This WalkthroughMaterialsA wireless router with external, removable antennas, preferably with custom firmware or a wireless USB dongle with a removable antenntaMac or PCEmpty 1qt baby