How to buy Hacks, Leaks, and Revelations, and how to get it for free

Posted January 9, 2024 in hacks-and-leaks

Today, my book Hacks, Leaks, and Revelations: The Art of Analyzing Hacked and Leaked Data is available for sale wherever books are sold! My goal with this book is to teach journalists, researchers, and activists all the skills they need to download and analyze any datasets they get their hands on, finding all of the juicy revelations they might contain. No prior experience is required. You can think of following along with my book as taking a complete course where you'll download real leaked datasets, and then (by following alongside the exercises) learn the tools and coding required to analyze them.

The paperback costs about $50 and the ebook costs about $40. However, I don't want the price to be a barrier to access to anyone who needs this information. For this reason, I also decided to release the book for free under the Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) license. In other words, I'm giving away the book online for free.

Continue reading →


Hacks, Leaks, and Revelations: The Art of Analyzing Hacked and Leaked Data

Posted December 5, 2023 in hacks-and-leaks

After just about two years of writing, hacking, analyzing data, writing some more, and editing, I'm ridiculously excited to announce that I'm now a published author! As of today, my book Hacks, Leaks, and Revelations is for sale.

Technically, the official release date is January 9, 2024, but it ships today if you order it directly from the publisher, No Starch Press (the physical book includes the DRM-free ebook too). If you order it from anywhere else, like bookshop.org to support independent bookshops, or Amazon if you want the Kindle version, it will be available January 9.

Continue reading →


CASE STUDY: Extracting data from ADL's "Antisemitic Incidents and Anti-Israel Rallies" map

Posted November 13, 2023 in hacks-and-leaks social-justice

On Saturday, I published an article for The Intercept about how the Anti-Defamation League has included dozens of Gaza ceasefire protests that were organized by progressive Jews in its map of "antisemitic incidents and anti-Israel rallies," alongside genuine antisemitic vandalism, harassment, and assault by neo-Nazis.

ADL doesn't publish its raw data, but I managed to get it anyway while doing this reporting. In the spirit of sharing data journalism skills, I will show you exactly how I extracted it from the map.

Continue reading →


Why we shouldn't use the slogan "from the river to the sea"

Posted November 5, 2023 in social-justice

In the 1970s, some wingnuts founded a UFO cult called Raëlism. It's an atheistic religion that believes that aliens called the Elohim created humanity on Earth using advanced technology. Raëlism was started in France but has since became an international cult. They proposed building an embassy for the Elohim, complete with a spaceship landing pad, in Israel. However, the Israeli government wasn't too keen on the idea because the Raëlism symbol includes a swastika in it -- a hate symbol mostly widely associated with Nazi Germany, though the symbol first originated in ancient religions like Hinduism in India.

Continue reading →


What goes into making an OnionShare release: Part 3

Posted October 20, 2023 in code onionshare

About a month ago I started working on an OnionShare release, documenting the entire arduous process. It's always a painful process, but it's absolutely bonkers how much work has gone into this release.

Continue reading →


What goes into making an OnionShare release: Part 2

Posted September 29, 2023 in code onionshare

A few weeks ago I intended to make an OnionShare release, documenting the entire arduous process. I made a lot of progress, but then ran into endless problems getting the Flatpak packaging working and so decided to delay the release. Now I'm back at it. In this post I will finish tackling Flatpak and start tackling the Windows and macOS releases.

Continue reading →


Hacks, Leaks, and Revelations: Pandemic Profiteers and COVID-19 Disinformation

Posted September 26, 2023 in journalism code hacks-and-leaks

I've spent the last two years writing Hacks, Leaks, and Revelations: The Art of Analyzing Hacked and Leaked Data, a book that teaches journalists, researchers, and hacktivists how to report on leaked datasets! Datasets like these get dumped online literally every day (much of it published by DDoSecrets), but few people have the technical skills to download it and uncover its secrets. I'm hoping to change that.

In August, I gave a talk at the DEF CON 31 Misinformation Village about one of the case studies from my book called Pandemic Profiteers and COVID-19 Disinformation, where I explain in detail how I analyzed hacked data from the anti-vax group America's Frontline Doctors ("the horse paste peddlers" that were "hilariously easy to hack," according to my source). They raked in millions of dollars selling ivermectin and hydroxychloroquine, all while telling their supporters that COVID-19 vaccines are deadly and convincing them that things like wearing masks during a pandemic was a violation of their rights. My reporting led to a Congressional investigation into them.

Continue reading →


What goes into making an OnionShare release: Part 1

Posted September 11, 2023 in onionshare code

In the nine years (!) that I've been working on OnionShare, a growing community of contributors have taken on more and more of the work, but I'm still the only one who has actually made any releases. I'm hoping to change that. Even though OnionShare is established open source software, making a release is an extremely cumbersome process. This blog post (and the ones after) documents all the work I'm doing to make the OnionShare 2.6.1 release. This way others who will take over making releases in the future (and anyone interested in releasing open source desktop software) can see what goes into it.

Continue reading →


Elon banned me from Twitter for doing journalism. Good riddance.

Posted May 4, 2023 in twitter-threads

It's been nearly six months since Elon Musk threw one of his first tantrums as the King of Twitter and banned me (along with a bunch of other journalists) for tweeting about him censoring Mastodon. A few days later he "reinstated" my account but I was still locked out until I agreed to delete my forbidden tweet that the billionaire didn't like. And I've been locked out ever since.

Continue reading →


Capturing the Flag with GPT-4

Posted April 23, 2023 in ai ctf

This weekend I went to BSides SF 2023 and had a blast. I went to some really interesting talks (including an excellent one about adversarial machine learning), but mostly I spent my time solving CTF hacking challenges. And this time, I did it with the help of GPT-4, the latest generation of OpenAI's ChatGPT generative language model. GPT-4 straight up solved some challenges for me, which blew my mind. There were definitely several flags I got that I wouldn't have gotten without the help of GPT-4. For challenges that GPT-4 didn't solve on its own, it provided incredibly helpful tips, or quickly wrote scripts that would have been tedious or time consuming for me to write myself. Good thing there's (almost) no such thing as cheating in CTF!

Continue reading →