Anonymity tools: “whonix”(first impressions)

Just started trying “whonix”, an anonymity-hardened Linux distribution.

“whonix” is based on Debian Linux and uses TOR for all external connections.

Interestingly, it consists of two separate virtual machines, “whonix workstation” and “whonix gateway”. That machine where the user can perform anonymous tasks  (“whonix workstation”) is isolated from the external physical network and can only communicate with the internet via the “whonix gateway”, which relays TOR traffic to the TOR network and the internet.

The main design decision for “whonix” is that the user’s physical IP should not be disclosed even if the “whonix workstation” is compromised with some types of malware. Indeed, the “whonix workstation” does not have access to the external network, which is a very interesting concept.

I’ll be writing more about “whonix”, TOR and Anonymity soon.

Why Anonymity Matters (quoted from https://www.torproject.org/)

Tor protects you by bouncing your communications around a distributed network of relays run by volunteers all around the world: it prevents somebody watching your Internet connection from learning what sites you visit, and it prevents the sites you visit from learning your physical location.

Screen Shot 06-30-16 at 07.26 PM.PNG

Screen Shot 06-30-16 at 07.33 PM

References:

Advertisements

“vsockets-tools” for VMware hypervisors

I have developed a new open source project: “vsockets-tools”

You may check it out at:

Source repository + pre-compiled binaries:

Paper:

Abstract:
VMware guest machines are able to communicate with their host using a special kind of sockets called “vsockets”. These sockets can be used even if the typical TCP/IP network protocols are not available at the guest. Since “vsockets” don’t use the TCP/IP protocol stack, they are not “visible” to common network testing and penetration testing tools.In this paper we present a set of tools designed to provide a bridge between TCP/IP tools and the “vsockets”. These tools can also be useful for learning “vsockets” behavior and concepts.

Paper Preview:

Screen Shot 06-29-16 at 12.00 PM.PNG