OPSEC

1. OPSEC
2.  
3. Non-profit and free for redistribution
4. Written on October 29th | 2015
5. Published on October 29th | 2015
6.  
7. For entertainment and research purposes only
8.  
9. =================================================
10.  
11. DISCLAIMER
12. The Paranoid's Bible and its writers hold no responsibility for the acts of others.
13.  
14. The Paranoid’s Bible is for research and entertainment purposes only.
15.  
16. Please visit our blog for more PDFs and information: https://www.paranoidsbible.tumblr.com/
17.  
18. =================================================
19.  
20. Contents
21. DISCLAIMER 2
22. Preface 4
23. What is OPSEC 5
24. Simple Guidelines to Follow 6
25. Afterword 8
26.  
27. =================================================
28.  
29. Preface
30. The who:
31. People that have decided to combine their resources to create a repository of information.
32.  
33. The what:
34. Operations security (OPSEC)
35.  
36. The where:
37. Everywhere
38.  
39. The why:
40. To give people the tools to keep themselves safe and secure.
41.  
42. =================================================
43.  
44. What is OPSEC
45.  
46. OPSEC is a term that, like many others used in cybersec, originated in the U.S. military. It originally meant whether or not a friendly’s actions could be observed by the enemy and if what they observed and the information obtained could be useful to them (the enemy), and then execute selected measures that eliminate and/or reduces the enemy’s possible exploitation of the critical information that they’ve obtained.
47.  
48. OPSEC, though, is also about protecting minuscule pieces of information that, when grouped, could be used to form a bigger picture of things. Similar to removing and preventing “meta-data,” OPSEC is about taking several preventative measures to ensure no-one is listening, spying or simply happen upon information that you, yourself, carelessly given away.
49.  
50. In the more modern use of the term, it now includes protecting information from not only unfriendly eyes, but also preventing industrial espionage, hackers, crackers, law enforcement, social engineering, and also mass surveillance catching or finding the aforementioned information.
51.  
52. This is why many now state that if you’re not using the same protection and guidelines as criminals and terrorists to protect yourself and your information, then you’re doing it wrong.
53.  
54. =================================================
55.  
56. Simple Guidelines to Follow
57. This chapter will, truthfully, be a simple set of rules and guidelines you should try to follow when acting both online and offline. To make this easier, we’ll include a list for offline OPSEC and a list for online OPSEC.
58.  
59. We also won’t be dwelling into encryption or other similar items, as those will be discussed in other guides/PDFs.
60.  
61. Online OPSEC
62. 1. The less people know, the less you have to worry
63. 2. Compartilization is key to safety and privacy
64. 3. Be alert
65. 4. Be cautious
66. 5. Be aware of your surroundings
67. 6. Be aware of the background
68. 7. Be aware of what you post at all times
69. 8. All information is critical information
70. 9. Never use the same e-mail address for an account
71. 10. Never use the same username for an account
72. 11. Never use the same password for an account
73. 12. Never post detailed information (Real name, age, birth date, location, school, marital status…etc)
74. 13. Avoid posting images of yourself and/or your location
75. 14. Scrub any and all meta-data that you can (Pictures, PDFs…etc)
76. 15. Don’t use social media/networking
77. 16. Be cautious of anyone asking you anything personal (Detail information, sex, gender, sexual preferences…etc)
78. 17. Transactions should never be discussed(recent purchases, taxes, bills…etc)
79. 18. Don’t brag about any recent successes or accomplishments, especially concerning recent “operations” or “missions”
80. 19. Avoid discussing your online life offline
81. 20. Avoid discussing your offline life online
82. 21. Avoid using certain words or catchphrases that you’re known for
83. 22. Avoid clicking on links from strangers that you aren’t familiar with
84. 23. Avoid clicking on links that have shortened with a link/URL shortener
85. 24. Avoid playing MMOs and/or PVP styled games (can leak your IP)
86. 25. Avoid using P2P services and programs (skype, chats, pirating, torrents…etc)
87. 26. If in doubt, lie
88.  
89. Offline OPSEC
90. 1. The less people know, the less you have to worry
91. 2. Compartilization is key to safety and privacy
92. 3. Be alert
93. 4. Be cautious
94. 5. Be aware of your surroundings
95. 6. Be aware of the background
96. 7. Be aware of what you post at all times
97. 8. All information is critical information
98. 9. Your desk and rig(s) should be several hallways and doors away from any and all entrances to and from the outside
99. 10. Always ensure your devices, when not in use, are stored out of sight and aren’t easily found
100. 11. Keep your rig elevated so you can reach it easily and quickly, just in case
101. 12. Any and all mail and packages must be collected ASAP to ensure no theft can happen
102. 13. Any and all documents and papers should be marked with a permanent black marker, shredded and mixed into garbage and waste
103. 14. Credit cards, gift cards, pre-paid cards and similar items should not only be thoroughly cut and shredded, but also microwaved for five to ten seconds to ensure all chips and strips are destroyed
104. 15. All important documents and papers should be organized, stored safely and locked within a vault or safe
105. 16. Never discuss your home security
106. 17. Never discuss your weapons
107. 18. Never discuss your pets’ names
108. 19. Never post detailed information (Real name, age, birth date, location, school, marital status…etc)
109. 20. Be cautious of anyone asking you anything personal (Detail information, sex, gender, sexual preferences…etc)
110. 21. Transactions should never be discussed(recent purchases, taxes, bills…etc)
111. 22. Don’t brag about any recent successes or accomplishments, especially concerning recent “operations” or “missions”
112. 23. Avoid discussing your online life offline
113. 24. Avoid discussing your offline life online
114. 25. Always make it seem as if someone is home
115. 26. Always carry your wallet in your front pocket
116. 27. Ensure you always unplug and locked up before leaving
117.  
118. =================================================
119.  
120. Afterword
121. There’s so much to discuss when on the topic of OPSEC, however due to the nature of the Paranoid’s Bible and the literature it publishes… we’d only be rehashing what’ll be discussed and explained in other guides/PDFs. So as a way to touch upon OPSEC without rehashing several things from other guides/PDFs, we decided to give a quick bit of information that many amateur privacy enthusiasts need to know.