I would like to briefly add a few thoughts to this thread as it is one that is of particular interest to me and the main reason why I found myself giving Parrot OS a try. I am really concerned about my home office security and want to be more prepared to both detect IF I have been comprimised and even better WHO is doing it.
So you know my perspective on this subject here is a brief self-introduction: I am a programmer by background and have been using Linux since kernel 0.12. I’ve done work ranging from end user applications through to automated building and publishing of deb’s then over to iPXE booting under UEFI for my own custom OS installer. My preferred language is Ruby and I’m doing a bunch of C++ for Arduinos. I’m ditching MacOS as my desktop and migrating completely over to Linux.
Back to the matter at hand…
The non-security-aware-user (i.e. 99.9% of the world) will disover some of the best practices they were supposed to follow after they have been comprismised. Comprimised or not, any of these users that want to boslter their security face a daunting array of options, none of which are straight forward to use, none are a ‘silver bullet’, and there’s a whole new realm of acronynms and jargon.
I am exactly one of these types of users. I was comprimised and went from solo e-health developer working in his home office to a guy who was really lost and confused and had no black, white or other hat coloured hackers in my circle of friends. I thought I was " pretty good" with maintaining my security - I was totally not. So I am painfully aware of a huge gap that I believe is going to start to eat a lot more smart highly techincal, but highly specialized in non-security matters, people just like myself.
I have some thoughts on what could really help someone just like this reduce the their vulnerabilities, and improve their resiliency given that we are facaing a growing threat of attack evry day.
Before going into greater detail I would like to inquire what is the best way to proceed and am putting myself out there as a resource who’s personally motivated to get involved in addressing this very issue.