Stopped using librewolf as updating it was a really cumbersome and also it being downstream from firefox meant it received all the security patches and updates later. I have been using arkenfox user.js as my primary with a regular profile in cases where arkenfox breaks the website.

Taxi Driver

I haven’t used mullvad but I do use protonvpn. On my android phone icici banking app doesn’t work even while being whitelisted. Prime video needs to be whitelisted but functions. Didn’t find an issue with Netflix. Haven’t tested other platforms.

Fantastic writeup. I wonder, how does a threat actor get access to a signing key like this? There was no mention of how the key got leaked in the first place.

I use FF with arkenfox/user.js

Yes. My company has a certification drive where it provides a voucher for free of cost.

AWS SAA was a prerequisite for the security speciality in the certification drive but I cleared my exam after the nomination window and it doesn’t look like I can change it at this point.

I had to clear the AWS SAA before nominations started for the certification drive. Unfortunately I cleared my exam after the nomination window. Otherwise would have opted for Security speciality or SAP.

I had to clear the AWS SAA before nominations started for the certification drive. Unfortunately I cleared my exam after the nomination window. Otherwise would have opted for Security speciality or SAP.

Cleared my AWS SAA cert now working on AZ-104!

Thanks! I will look into my VPN client and see if it provides this feature.

None of my banking apps work with VPN even with a spoofed Indian IP. UPI works without issue for me as well.

The vaults created on your device are stored in clear-text. I have seen discussions about encrypting the vault yourself using cryptomator or veracrypt.

I believe they have E2EE for the remote vaults if you subscribe to Obsidian Sync.

You can use cryptomator to encrypt your vault if you are storing it on your cloud drive but i couldn’t find out an easy way to enable sync that with my android device.

How do you access banking apps/websites with always-on VPN and permanent kill switch?

Obsidian looks great. Too bad it doesn’t let you encrypt your vault via the application.

I have around 6 years of experience in different fields like vulnerability management, web penetration testing, SAST, DAST, secure architecture reviews and threat modeling.

What is a career path suitable for someone with this background? Security architect? Principal security engineer? I am not sure what steps I should be taking to progress. I am considering taking CISSP or CCSP as a major cert in the coming year.

I was using librewolf prior to arkenfox but found it tedious. The updates are always lagging behind the official releases which makes it inherently less secure. You also need to manually check for updates and reinstall the browser every time.

I have kept the ResistFingerprinting enabled for now. It doesn’t impact 90% of my browsing experience.

Do you need to regularly check for updates on the GitHub for the user.js or should I not bother once I have configured it to my liking?

I appreciate the info. Thanks!

People who are using a custom ROMs. Are you able to use apps like banking apps and work apps (outlook, teams, InTune, etc.)?

This is a big hurdle for me and I don’t wish to carry two phones.

So goddamn heavy