Threats on Stepperbox /threats/ Recent content in Threats on Stepperbox Hugo en-us Adversaries /threats/adversaries/ Mon, 01 Jan 0001 00:00:00 +0000 /threats/adversaries/ <p>Who the threats come from — nation-states, corporations, criminal organizations, and local actors. Understanding adversary capabilities, motivations, and resources as the basis for any threat model.</p> Surveillance /threats/surveillance/ Mon, 01 Jan 0001 00:00:00 +0000 /threats/surveillance/ <p>State and corporate surveillance — network monitoring, metadata collection, device tracking, IMSI catchers, and the infrastructure of mass observation. Understanding what is collected and how.</p> Forensics /threats/forensics/ Mon, 01 Jan 0001 00:00:00 +0000 /threats/forensics/ <p>Digital forensics techniques — disk imaging, file recovery, memory analysis, network traffic reconstruction, and mobile device extraction. What investigators can find and how to understand the threat model.</p> Firewalls /threats/firewalls/ Mon, 01 Jan 0001 00:00:00 +0000 /threats/firewalls/ <p>State-level firewalls and deep packet inspection — the Great Firewall, Iran&rsquo;s filtering infrastructure, and how nation-states block, throttle, and inspect internet traffic at scale.</p> Moderation /threats/moderation/ Mon, 01 Jan 0001 00:00:00 +0000 /threats/moderation/ <p>Platform content moderation — automated filtering, hash matching, AI classifiers, deplatforming, and the mechanisms by which speech and content are controlled on centralized services.</p> Censorship /threats/censorship/ Mon, 01 Jan 0001 00:00:00 +0000 /threats/censorship/ <p>Censorship beyond the firewall — DNS poisoning, search delisting, app store removal, payment processor bans, domain seizures, and the many layers at which information can be suppressed.</p> Supply Chain /threats/supply-chain/ Mon, 01 Jan 0001 00:00:00 +0000 /threats/supply-chain/ <p>Supply chain compromise — backdoored hardware, tampered firmware, malicious dependencies, and interdiction of components in transit. How adversaries insert themselves between manufacturer and end user.</p> Software Attacks /threats/software-attacks/ Mon, 01 Jan 0001 00:00:00 +0000 /threats/software-attacks/ <p>Software exploitation — malware, zero-days, phishing, side-channel attacks, and remote code execution. The attack surface of operating systems, browsers, and networked applications.</p> Hardware Attacks /threats/hardware-attacks/ Mon, 01 Jan 0001 00:00:00 +0000 /threats/hardware-attacks/ <p>Physical and electrical attacks on hardware — JTAG extraction, bus sniffing, fault injection, chip decapping, and side-channel analysis. What an adversary with physical access can do to your devices.</p>