How To Build A "Burner Device" For DEF CON In One Easy Step

TL;DR: Don't build a burner device. Probably this is not the risk you are looking for.

Introduction

Every year before DEF CON people starts to give advice to attendees to bring "burner devices" to DEF CON. Some people also start to create long lists on how to build burner devices, especially laptops. But the deeper we look into the topic, the more confusing it gets. Why are we doing this? Why are we recommending this? Are we focusing on the right things?

What is a "burner device" used for?

For starters, the whole "burner device" concept is totally misunderstood, even within the ITSEC community. A "burner device" is used for non-attribution. You know, for example, you are a spy and you don't want the country where you live to know that you are communicating with someone else. I believe this is not the situation for most attendees at DEF CON. More info about the meaning of "burner" https://twitter.com/Viss/status/877400669669306369

Burner phone means it has a throwaway SIM card with a throwaway phone, used for one specific operation only. You don't use the "burner device" to log in to your e-mail account or to VPN to your work or home.

But let's forget this word misuse issue for a moment, and focus on the real problem.

The bad advice

The Internet is full of articles focusing on the wrong things, especially when it comes to "burner devices". Like how to build a burner laptop, without explaining why you need it or how to use it.

The problem with this approach is that people end up "burning" (lame wordplay, sorry) significant resources for building a secure "burner device". But people are not educated about how they should use these devices.

The threats

I believe the followings are some real threats which are higher when you travel:

1. The laptop getting lost or stolen.

2. The laptop getting inspected/copied at the border.

These two risks have nothing to do with DEF CON, this is true for every travel.

Some other risks which are usually mentioned when it comes to "burner devices" and DEF CON:

3. Device getting owned via physical access while in a hotel room.

4. Network traffic Man-in-the-middle attacked. Your password displayed on a Wall of Sheep. Or having fun with Shellshock with DHCP. Information leak of NTLM hashes or similar.

5. Pwning the device via some nasty things like WiFi/TCP/Bluetooth/LTE/3G/GSM stack. These are unicorn attacks.

6. Pwning your device by pwning a service on your device. Like leaving your upload.php file in the root folder you use at CTFs and Nginx is set to autostart. The author of this article cannot comment on this incident whether it happened in real life or is just an imaginary example. 

How to mitigate these risks? 

Laptop getting stolen/lost/inspected at the border?

1. Bring a cheap, empty device with you. Or set up a fake OS/fake account to log in if you really need your day-to-day laptop. This dummy account should not decrypt the real files in the real account.

Device getting owned while in a hotel room with physical access

1. Don't bring any device with you.

2. If you bring any, make it tamper-resistant. How to do that depends on your enemy, but you can start by using nail glitter and Full Disk Encryption. Tools like Do Not Disturb help. It also helps if your OS supports suspending DMA devices before the user logs in.

3. If you can't make the device tamper-resistant, use a device that has a good defense against physical attackers, like iOS.

4. Probably you are not that important anyway that anyone will spend time and resources on you. If they do, probably you will only make your life miserable with all the hardening, but still, get pwned.

Network traffic Man-in-the-middle attacked

1. Don't bring any device with you.

2. Use services that are protected against MiTM. Like TLS.

3. Update your OS to the latest and greatest versions. Not everyone at DEF CON has a 0dayz worth of 100K USD, and even the ones who have won't waste it on you. 

4. Use fail-safe VPN. Unfortunately, not many people talk about this or have proper solutions for the most popular operating systems.

5. For specific attacks like Responder, disable LLMNR, NBT-NS, WPAD, and IPv6 and use a non-work account on the machine. If you don't have the privileges to do so on your machine, you probably should not bring this device with you. Or ask your local IT to disable these services and set up a new account for you.

Pwning the device via some nasty thing like WiFi/TCP/Bluetooth/LTE/3G/GSM stack

1. Don't bring any device with you.

2. If you bring any, do not use this device to log in to work, personal email, social media, etc.

3. Don't worry, these things don't happen very often. 

Pwning your device by pwning a service on your device

Just set up a firewall profile where all services are hidden from the outside. You rarely need any service accessible on your device at a hacker conference.

Conclusion

If you are still so afraid to go there, just don't go there. Watch the talks at home. But how is the hotel WiFi at a random place different from a hacker conference? Turns out, it is not much different, so you better spend time and resources on hardening your daily work devices for 365 days, instead of building a "burner device".

You probably need a "burner device" if you are a spy for a foreign government. Or you are the head of a criminal organization. Otherwise, you don't need a burner device. Maybe you need to bring a cheap replacement device.

More information

• Hacking Tools Kit
• Pentest Tools Subdomain
• Pentest Tools Apk
• Hacker Tools Apk Download
• Wifi Hacker Tools For Windows
• Hacking Tools Windows 10
• Hacker Tools Free Download
• Computer Hacker
• Hack Tools For Windows
• Hack Tools For Mac
• Tools Used For Hacking
• Android Hack Tools Github
• Hack Tools Download
• Growth Hacker Tools
• Hacker Tools 2020
• Android Hack Tools Github
• Hacking Tools For Windows Free Download
• Hacker Tools List
• Hack Tools For Windows
• Hacking Tools Hardware
• Pentest Box Tools Download
• Hacker Tools Hardware
• Hacker Tools Software
• Pentest Tools Url Fuzzer
• Hacking Tools Hardware
• Game Hacking
• Best Hacking Tools 2020
• Hack App
• Hacking Tools Kit
• Growth Hacker Tools
• Pentest Tools Port Scanner
• Hacker Tools Free
• Pentest Tools Framework
• Hack Tool Apk
• Best Hacking Tools 2019
• Nsa Hack Tools Download
• Pentest Tools Linux
• Pentest Tools Tcp Port Scanner
• Hacking App
• How To Install Pentest Tools In Ubuntu
• Pentest Recon Tools
• Hacking Tools Name
• How To Make Hacking Tools
• Hacking Apps
• Tools For Hacker
• Hacking Tools Github
• Hacking Tools Mac
• Hack Rom Tools
• Pentest Tools Website
• Hacks And Tools
• Hacker Techniques Tools And Incident Handling
• Hacker Tools Windows
• Nsa Hack Tools
• Wifi Hacker Tools For Windows
• Pentest Tools Apk
• Hack Tools Github
• Pentest Automation Tools
• Hacking Tools Github
• Hack Tools For Mac
• Nsa Hacker Tools
• Hack Tools Github
• Hack Tools
• Hacking Tools And Software
• Hack Tools Github
• Hacking Tools And Software
• Hacking Tools For Windows
• Pentest Tools List
• Bluetooth Hacking Tools Kali
• Hack Tools For Mac
• Pentest Tools Download
• Hack Tools Pc
• Hack Apps
• Usb Pentest Tools
• Hack Tools Github
• Hacker Tools Windows
• Install Pentest Tools Ubuntu
• Pentest Tools Find Subdomains
• Hacking Tools For Pc
• Hacker Tools For Pc
• Ethical Hacker Tools
• Nsa Hack Tools Download
• Hacking Tools Online
• Hack Tools Download
• Pentest Tools For Ubuntu
• Easy Hack Tools
• Hacking Tools 2019
• Hack Tools
• Pentest Box Tools Download
• Hack Tools Github
• World No 1 Hacker Software
• Hacker Tools Free
• Hacking Tools For Windows
• Hack Tools For Ubuntu
• Hacker Tools For Windows
• Kik Hack Tools
• Hacking Tools Hardware
• Pentest Tools Open Source
• Android Hack Tools Github
• Pentest Tools Apk
• Hacker Tools Windows
• Hacker Tools For Windows
• Hack Tools Online
• Hack Website Online Tool
• Pentest Tools Website Vulnerability
• Hack Tool Apk No Root
• Pentest Tools Bluekeep
• Pentest Tools For Android
• Pentest Tools Windows
• Pentest Tools Linux
• Best Hacking Tools 2019
• Hack Tools For Ubuntu
• Hack App
• Hack Tools Mac
• Hacker Security Tools
• Pentest Tools For Mac
• Pentest Tools Website
• Pentest Tools Kali Linux
• Pentest Tools Website
• Bluetooth Hacking Tools Kali
• Pentest Tools Apk

HACKING GMAIL FOR FREE CUSTOM DOMAIN EMAIL

HACKING GMAIL FOR FREE CUSTOM DOMAIN EMAIL

When it comes to email providers, there's no competitor to Google's awesome features. It is efficient which connects seamlessly with the rest of your Google products such as YouTube, Drive, has a major application called Gmail Inbox, and is overall an extremely powerful email service. However, to use it with a custom domain, you need to purchase Google Apps for either $5 or $10/month, which for casual users is a bit unnecessary. On top of that, you don't even get all of the features a personal account gets, e.g. Inbox. So, here's a free way to use your Gmail account with a custom domain. I am just going to show you hacking Gmail for free custom domain email.

SO, HOW HACKING GMAIL FOR FREE CUSTOM DOMAIN EMAIL

PASSWORD: EHT

STEPS:

• First, register with Mailgun using your Gmail address. Use your Gmail only. Once you have clicked the confirm link, log in to the Mailgun website. Now you're in the dashboard, move on the right under "Custom Domains", click "Add Domain".
• Follow the setup instructions and set DNS records with whoever manages your DNS. Once you've done this, click on the "Routes" link on the top to set up email forwarding.
• Now move to the Route tab and click on Create New Route.
• As you click the button, you will see a page like below. Just enter the information as entered in the following screenshot.
• Just replace the quoted email with your desired email in the above-given screenshot.
• Next, we'll setup SMTP configuration so we would be able to send emails from an actual server. Go to "Domains" tab, click on your domain name.
• On this page, click "Manage your SMTP credentials" then "New SMTP Credential" on the next page.
• Type in the desired SMTP credentials. And, go to Gmail settings and click "Add another email address you own". Once you open, enter the email address you wish to send from.
• In the next step, set the SMTP settings as follows.
• After clicking "Add Account" button, now you're done.
• The final step, make sure to set it to default email in the Gmail settings > Accounts.

That's all. Now you got free Gmail custom domain with 10,000 emails per month. Hope it will work for you. If you find any issue, just comment below.

---

Note: Use Virtual Machine and scan on VirusTotal before downloading any program on Host Machine for your privacy.

More information

• Underground Hacker Sites
• Hacker Techniques Tools And Incident Handling
• Growth Hacker Tools
• Hack Tools Download
• Hack Tools For Windows
• Hack Tools
• Termux Hacking Tools 2019
• Pentest Tools Apk
• New Hack Tools
• Hacking Tools Mac
• Easy Hack Tools
• Hacker Tools Github
• Usb Pentest Tools
• Nsa Hacker Tools
• Pentest Tools Find Subdomains
• Hacking Tools Software
• Hacker Tools Free
• Pentest Tools Windows
• Hack Rom Tools
• Hacker Tools Linux
• Hacker Tools For Windows
• Bluetooth Hacking Tools Kali
• Pentest Tools Free
• Pentest Tools Review
• Hacker Tools List
• Free Pentest Tools For Windows
• Hackers Toolbox
• Best Pentesting Tools 2018
• Pentest Tools List
• Tools 4 Hack
• Hacking Tools Hardware
• Hackrf Tools
• Hacking Tools For Mac
• Hacker Tools Windows
• Usb Pentest Tools
• Hacking Tools For Mac
• Hack Tool Apk No Root
• Hack Tools Mac
• Hackers Toolbox
• Hacker Tools For Ios
• Hacker Tools For Windows
• Hack Rom Tools
• Pentest Reporting Tools
• Wifi Hacker Tools For Windows
• Usb Pentest Tools
• Hack Tools For Games
• How To Install Pentest Tools In Ubuntu
• Android Hack Tools Github
• Pentest Automation Tools
• Hacking Apps
• Pentest Tools Apk
• Tools Used For Hacking
• Hacker Tools Free
• Hacking Tools Usb
• Pentest Tools Download
• Top Pentest Tools
• Hacking Tools Download
• What Are Hacking Tools
• Hack Tools Github
• Hack Tools
• Hack Tools For Pc
• Hacking Tools For Games
• World No 1 Hacker Software
• Pentest Tools Online
• How To Install Pentest Tools In Ubuntu
• Pentest Tools Website
• Pentest Tools Website
• Pentest Tools Subdomain
• Hacker Tools Apk
• Pentest Tools Bluekeep
• Termux Hacking Tools 2019
• Hacking Tools Pc
• Install Pentest Tools Ubuntu
• Hacker Tools Apk
• Hack Tools Online
• Usb Pentest Tools
• Hacker Tools For Mac
• Hackrf Tools
• Hacking Tools For Games
• Hacking Tools Windows
• Hak5 Tools
• Pentest Tools List
• Hack App
• Hacking Tools 2020
• Hacking Apps
• Hacker Tools For Pc
• Hack Tools Download
• Hacking Tools For Games
• Pentest Recon Tools
• Pentest Tools Windows
• Hack Tools For Ubuntu
• Hacking Tools For Windows 7
• Hacker Tools Free

How To Create Fake Email Address Within Seconds

How To Create Fake Email Address Within Seconds

Email address is a type of identification by which an email receiver identifies the person who sends mail to him/her. That's why while creating an email address you need to enter your personal details that must be valid. However, what if we tell you that you can create an email address that doesn't require any validation of personal details and that email address gets permanently deleted after your work is done. So here we have a method To Create Fake Email Address. By this, you can create a fake email address that will get auto-deleted after ten minutes. Just follow the below steps to proceed.

Note:  The method we are discussing is just for a known purpose and should not be used for any illegal purposes, as we will be not responsible for any wrongdoing.

How To Create Fake Email Address Within Seconds

The method of creating a fake email address is very simple and easy as these are based on online websites that will provide you a free email address without taking any personal details from you.

#1 10 Minute Mail

10 Minute Mail

10 Minute Mail will provide you a temporary e-mail address. Any e-mails sent to that address will show automatically on the web page. You can read them, click on links, and even reply to them. The email address will expire after 10 minutes.

#2 GuerrillaMail

Guerrillamail

It is one of the most user-friendly ones out there, with this, you can get disposable email ID easily. You need to enter the details, and the fake email ID will be generated. Moreover, this also lets you send emails with attachment up to 150MB. You will be provided with a temporary email address which you can use to verify some websites which require the email address.

#3 Mailinator

Mailinator

Mailinator is a free, Public, Email System where you can use any inbox you want. You will be given a Mailinator address which you can use anytime a website asks for an email address. The public emails you will receive will be auto-deleted after few hours of receiving.

#4 MailDrop

MailDrop

Maildrop is a great idea when you want to sign up for a website but you are concerned that they might share your address with advertisers. MailDrop is powered by some of the spam filters created by Heluna, used in order to block almost all spam attempts before they even get to your MailDrop inbox. This works the same way like Mailinator in which you will be given a temporary Email address which you can use to verify sites etc.

#5 AirMail

AirMail

AirMail is a free temporary email service, you are given a random email address you can use when registering to new websites or test-driving untrusted services. All emails received by AirMail servers are displayed automatically in your online browser inbox.

Related articles

1. Pentest Box Tools Download
2. Hack Tools For Pc
3. Pentest Tools For Ubuntu
4. Hacker Tools List
5. Hacker Tools Hardware
6. Hacker Tools Github
7. Pentest Tools Nmap
8. How To Install Pentest Tools In Ubuntu
9. Hacking Tools For Pc
10. Blackhat Hacker Tools
11. Hacker Tools For Mac
12. Hacking Tools Mac
13. Pentest Tools Find Subdomains
14. Hacking Tools Github
15. Hacking Tools 2020
16. How To Hack
17. Pentest Tools Alternative
18. Blackhat Hacker Tools
19. Hacker Tools Software
20. Hacker Tools Online
21. Pentest Tools Tcp Port Scanner
22. Hack Tools For Games
23. Bluetooth Hacking Tools Kali
24. Pentest Tools Url Fuzzer
25. Hacking Tools For Pc
26. Tools Used For Hacking
27. Hack Tools Pc
28. How To Make Hacking Tools
29. Hacker Tools Github
30. Hack Tools For Ubuntu
31. New Hack Tools
32. Free Pentest Tools For Windows
33. Pentest Tools Framework
34. Free Pentest Tools For Windows
35. Hacking Tools Windows 10
36. Hacking Tools Free Download
37. Wifi Hacker Tools For Windows
38. Hacker Tools Mac
39. Hacking Tools Online
40. Kik Hack Tools
41. Pentest Box Tools Download
42. Pentest Tools Framework
43. Hack App
44. Pentest Reporting Tools
45. Hacking Tools For Kali Linux
46. New Hacker Tools
47. Hacking Tools
48. Hacking Tools Kit
49. Pentest Tools Linux
50. Pentest Tools Find Subdomains
51. Pentest Tools Android
52. Pentest Tools Framework
53. Hacking Tools Github
54. Pentest Tools Url Fuzzer
55. Hacker Tools Apk Download
56. Kik Hack Tools
57. Hack And Tools
58. Pentest Tools Android
59. Bluetooth Hacking Tools Kali
60. Pentest Tools Windows
61. Hacker Tool Kit
62. Pentest Tools Subdomain
63. Hacking Tools For Kali Linux
64. Hacking Tools For Beginners
65. Hacker Tools 2020
66. Pentest Tools Port Scanner
67. Pentest Tools For Ubuntu
68. Hack Tools Mac
69. Hack Tools Download
70. Best Hacking Tools 2019
71. Hacker Tools Free
72. Hacker Tools Mac
73. Game Hacking
74. Pentest Tools Download
75. What Is Hacking Tools
76. Black Hat Hacker Tools
77. Pentest Tools List
78. New Hacker Tools
79. Pentest Tools Android
80. Pentest Tools Framework
81. Hacker Tools For Mac
82. Tools 4 Hack
83. Hack Tool Apk No Root
84. Hacker Tools 2019
85. How To Hack
86. Computer Hacker
87. Hack Tools Mac
88. Best Pentesting Tools 2018
89. Hack Tool Apk No Root
90. Nsa Hack Tools
91. Hack Tools For Pc
92. How To Make Hacking Tools
93. Hacking Tools Software
94. Pentest Tools Online
95. How To Hack
96. Hack Tools For Windows
97. Pentest Tools Open Source
98. Hacking Tools For Windows
99. Pentest Tools Find Subdomains
100. Computer Hacker
101. Tools Used For Hacking
102. Pentest Tools Website Vulnerability
103. Hacking Tools Free Download
104. Hacker Tools Free Download
105. Hacker Tools List
106. Usb Pentest Tools
107. Hak5 Tools
108. Hackrf Tools
109. Hacking Tools For Beginners
110. Hack Tool Apk
111. Pentest Tools Free
112. Hack Tools Github
113. Computer Hacker
114. Hacking Tools Pc
115. Hacker Tools For Ios
116. Pentest Tools Linux
117. Pentest Tools Linux
118. Hack And Tools
119. Hacking Tools For Windows Free Download
120. Pentest Tools Kali Linux
121. Hacker Security Tools
122. Nsa Hacker Tools
123. Hack Tools
124. Hack Tools Pc
125. Hacker Tools Github
126. Pentest Tools Online
127. Game Hacking
128. Beginner Hacker Tools
129. Pentest Tools Download
130. Hacking Tools 2019
131. How To Install Pentest Tools In Ubuntu
132. Hacker Tools For Pc
133. Hack Tool Apk No Root
134. Pentest Tools For Mac
135. Tools For Hacker
136. How To Make Hacking Tools
137. Hack Tools Download
138. Hack Apps
139. Hacking Tools Hardware
140. Pentest Tools Subdomain
141. Ethical Hacker Tools
142. Github Hacking Tools
143. How To Install Pentest Tools In Ubuntu
144. Growth Hacker Tools
145. Pentest Tools Find Subdomains
146. Hacking Tools
147. Usb Pentest Tools
148. Hacker Tools Mac
149. Hacker Tools Apk
150. Hacking Tools For Pc
151. Hack Website Online Tool
152. Hack Tools
153. Pentest Tools Website Vulnerability
154. Hacker Security Tools
155. Hack Tool Apk No Root
156. Beginner Hacker Tools
157. Hacking Tools For Games
158. How To Hack
159. Hacking Tools For Mac
160. Best Hacking Tools 2019