A practical awareness guide against online scams, phishing, and social engineering attacks based on real-world experience.
If you're an IT learner, self-hosting enthusiast, or simply someone who wants to stay safer online, this field guide is for you.
This repository collects documented security and privacy incidents for research and educational purposes. It does not aim to discredit or harm vendors, but to support transparency, awareness, and learning.
Vendor names may appear in case studies, but only under the following conditions:
- Already publicly reported by users (e.g. Reddit, forums, social media), or
- Directly acknowledged by the vendor, or
- Documented as a user-observed incident under investigation, even if not officially confirmed by the vendor.
- Practical explanation of common scam types
- Warning signs and detection checklist
- Psychology behind social engineering
- Prevention tips and hardening steps
- Real anonymized case studies
- Tools: Bitwarden, 2FA, HaveIBeenPwned, etc.
Knowledge = Defense. Awareness = Advantage. Consistency = Protection.
No fluff. No fearmongering. Just real-world protection for real people.
This project is licensed under the MIT License. Free to use, adapt, and share - just don't scam with it.
Maintained by Viktor Halupka, a passionate IT learner and home-lab builder documenting a personal journey into cybersecurity awareness.
If you have a real case, checklist, or tip to share, open a PR or issue. Let's help others stay one step ahead of digital manipulation.