Cypherpunk 101 Curriculum

12 weeks. Zero to crypto-capable. All hands-on.

Current Status: Weeks 1-4 are live. Start now. New weeks release as completed.

Quick Start

Week	Topic	Parts	Status
Week 1	Cypherpunk Ideals & Threat Modeling	1a 1b 1c	🟢 Available
Week 2	Cryptography Fundamentals	2a 2b 2c	🟢 Available
Week 3	GnuPG & Digital Signatures	3a 3b 3c 3d	🟢 Available
Week 4	Encrypted Filesystems & Containers	1 part	🟢 Available
Week 5	SSH Deep Dive	1 part	🔵 Coming Soon
Week 6	Messaging, Email & Metadata	1 part	🔵 Coming Soon
Week 7	Tor & Onion Routing	2 parts	🔵 Coming Soon
Week 8	Compartmentalization & VMs	2 parts	🔵 Coming Soon
Week 9	Physical Security & Airgaps	3 parts	🔵 Coming Soon
Week 10	Bash Scripting & Automation	2 parts	🔵 Coming Soon
Week 11	System Hardening	4 parts	🔵 Coming Soon
Week 12	Capstone Projects	3 parts	🔵 Coming Soon

→ Start Week 1 Now

📚 Course Overview

Total Duration: 12 weeks
Time Commitment: 4-6 hours per week
Skill Level: Beginner-friendly (basic Linux CLI knowledge required)
Cost: Free forever
Format: Self-paced, hands-on labs

📊 Learning Path

Week 1-3:  Foundations (philosophy, crypto, GPG)
           ↓
Week 4-5:  Secure everything (communications, storage)
           ↓
Week 6-8:  Network like a ghost (Tor, SSH, identity)
           ↓
Week 9-10: Automate and integrate (scripting, projects)
           ↓
Week 11-12: Advanced concepts (distributed systems, protocols)

Week-by-Week Details

✅ Week 1: Cypherpunk Ideals & Threat Modeling

Status: 🟢 Available Now | Difficulty: Beginner | Time: 4-5 hours

Parts:

Week 1a: Cypherpunk Philosophy & The Manifesto
Week 1b: Threat Modeling & Environment Setup
Week 1c: Journal, Culture & Course Overview

What You’ll Learn:

The cypherpunk manifesto and philosophy
Building your personal threat model
Setting up a secure development environment
Understanding adversaries and attack vectors

What You’ll Build:

Your personal threat model document
Secure Linux workspace

→ Start Week 1

✅ Week 2: Cryptography Fundamentals

Status: 🟢 Available Now | Difficulty: Beginner | Time: 5-6 hours | Prerequisites: Week 1

Parts:

Week 2a: Hash Functions & Cryptographic Fingerprints
Week 2b: Symmetric Encryption & Key Derivation
Week 2c: Entropy, Encoding & Encrypted Workflows

What You’ll Learn:

Hash functions (SHA-256) and why MD5 is broken
Symmetric encryption with AES-256-GCM
Encryption modes (why ECB leaks, why GCM is recommended)
Key Derivation Functions (Argon2, scrypt, PBKDF2)
Entropy, randomness, and Linux RNG sources
Base64/hex encoding for binary data

What You’ll Build:

File integrity verification with SHA-256
Encrypted file workflows with OpenSSL
Complete encrypt-hash-verify pipeline

✅ Week 3: GnuPG & Digital Signatures

Status: 🟢 Available Now | Difficulty: Beginner | Time: 5-6 hours | Prerequisites: Week 2

Parts:

Week 3a: GPG Introduction & Key Generation
Week 3b: Encryption, Decryption & Digital Signatures
Week 3c: Key Distribution & Web of Trust
Week 3d: Key Management & Modern Alternatives

What You’ll Learn:

GPG keypair generation and management
Encrypting, decrypting, and signing files
Web of trust and key distribution
Modern alternatives (age, Minisign)

✅ Week 4: Encrypted Filesystems & Containers

Status: 🟢 Available Now | Difficulty: Intermediate | Time: 5-6 hours | Prerequisites: Week 3

What You’ll Learn:

Full disk encryption with LUKS
Encrypted filesystems (gocryptfs)
Secure containers and encrypted backups
Key management strategies

🔜 Week 5: SSH Deep Dive

Status: 🔵 Coming Soon | Difficulty: Intermediate | Estimated Time: 5 hours | Prerequisites: Week 4

What You’ll Learn:

SSH key authentication and hardening
SSH tunnels and port forwarding
Jump boxes and bastion hosts
Certificate-based SSH authentication

🔜 Week 6: Messaging, Email & Metadata

Status: 🔵 Coming Soon | Difficulty: Intermediate | Estimated Time: 5-6 hours | Prerequisites: Week 5

What You’ll Learn:

Private messaging (Signal, Element/Matrix)
Encrypted email with GPG
Metadata hygiene and what it reveals
Communication protocol analysis

🔜 Week 7: Tor & Onion Routing

Status: 🔵 Coming Soon | Difficulty: Intermediate | Estimated Time: 6 hours | Prerequisites: Week 6

Parts: 7a (Intro to Tor & Onion Routing) · 7b (Advanced Tor, VPNs, Bridges & Relays)

What You’ll Learn:

Tor network architecture and usage
VPNs vs. Tor (when to use each)
Bridges, relays, and running a relay
Correlation attacks and limitations

🔜 Week 8: Compartmentalization & VMs

Status: 🔵 Coming Soon | Difficulty: Intermediate | Estimated Time: 5-6 hours | Prerequisites: Week 7

Parts: 8a (Compartmentalization & Virtual Machines) · 8b (Whonix, Tails & Practical Compartmentalization)

What You’ll Learn:

Operational security (OpSec) principles
Virtual machines for identity isolation
Whonix and Tails for anonymous computing
Practical compartmentalization strategies

🔜 Week 9: Physical Security & Airgaps

Status: 🔵 Coming Soon | Difficulty: Intermediate | Estimated Time: 6 hours | Prerequisites: Week 8

Parts: 9a (Physical Security & Airgap Architecture) · 9b (Building Airgapped Systems) · 9c (USB Threats & Field Kit)

What You’ll Learn:

Physical security fundamentals
Airgapped system design and data transfer
USB threat vectors and defenses
Building a field security kit

🔜 Week 10: Bash Scripting & Automation

Status: 🔵 Coming Soon | Difficulty: Intermediate | Estimated Time: 6 hours | Prerequisites: Week 9

Parts: 10a (Bash Scripting for Security & GPG Automation) · 10b (Cron Scheduling & Security Maintenance)

What You’ll Learn:

Bash scripting for security tasks
GPG automation workflows
Cron jobs and systemd timers
Security maintenance automation

🔜 Week 11: System Hardening

Status: 🔵 Coming Soon | Difficulty: Advanced | Estimated Time: 6-8 hours | Prerequisites: Week 10

Parts: 11a (Why Hardening Matters) · 11b (MAC Systems & Auditing) · 11c (Kernel Hardening & AppArmor) · 11d (Firejail & Defense Framework)

What You’ll Learn:

Linux system hardening principles
Mandatory Access Control (SELinux, AppArmor)
Kernel hardening with sysctl
Application sandboxing with Firejail
Security auditing with Lynis

🔜 Week 12: Capstone Projects

Status: 🔵 Coming Soon | Difficulty: Advanced | Estimated Time: 6-8 hours | Prerequisites: Weeks 1-11

Parts: 12a (Choose Your Path) · 12b (Project Planning & Integration) · 12c (Example Capstone & Final Checklist)

What You’ll Learn:

Combining all previous weeks’ skills
End-to-end encrypted system design
Building your personal privacy infrastructure
Your complete cypherpunk toolkit

🎓 After Completion

Once you’ve mastered Cypherpunk 101, explore:

Privacy 101 (Week 1 live now!) - Beginner-friendly, GUI-first privacy fundamentals
Advanced Cypherpunk (coming later) - Post-quantum crypto, zero-knowledge proofs, advanced protocols

💬 Questions or Feedback?

Found an error? Report it here (GitHub Issues coming soon)
Need help? Questions answered as community grows
Want updates? New weeks are announced as they release

← Back to Home

Week 4: Encrypted Filesystems & Secure Containers

🎯 Goal Learn how to protect local data at rest using encrypted filesystems and containers. Explore tools like LUKS, cryptsetup, gocryptfs, and veracrypt, and practice encrypting backups using tar and rsync over SSH. 1. Why Encrypt Data at Rest? Prevent access if your device is lost, stolen, or seized Protect sensitive logs, identity files, password stores Essential for laptops, USB drives, and backups 2. Full-Disk and Partition Encryption with LUKS What Is LUKS? Standard for Linux disk encryption Uses cryptsetup to manage encrypted partitions Key benefits: strong encryption, passphrase support, keyslots WARNING The following examples will erase data. Only do this on test devices or virtual machines. ...

Week 5: SSH Deep Dive & Secure Shell

🎯 Goal Master SSH for secure remote access, authentication hardening, port forwarding, and tunneling. Learn to configure SSH servers securely, use key-based authentication, and leverage SSH tunnels for accessing internal networks. 1. SSH Fundamentals & Key-Based Authentication Why SSH Keys Over Passwords? Passwords are weak: Vulnerable to brute force attacks Can be keylogged or phished Easily forgotten or reused SSH keys are strong: 4096-bit RSA or ed25519 provide cryptographic security Private key never leaves your machine Cannot be brute forced in reasonable time Generate an SSH Key Pair Recommended: Ed25519 (modern, fast, secure) ...

Week 1a: Cypherpunk Philosophy & The Manifesto

Goal Understand the ethos, purpose, and mindset of a cypherpunk. Learn why privacy matters in the digital age and why “cypherpunks write code.” Prerequisites: Basic Linux CLI familiarity This is Part 1 of 3 - Covers philosophy, history, and the manifesto. 1. What Is a Cypherpunk? “Privacy is necessary for an open society in the electronic age. Privacy is not secrecy. A private matter is something one doesn’t want the whole world to know, but a secret matter is something one doesn’t want anybody to know. Privacy is the power to selectively reveal oneself to the world.” ...

Week 1b: Threat Modeling & Environment Setup

Goal Create your personal threat model identifying what you’re protecting and from whom, then set up your secure development environment for the rest of the course. Prerequisites: Week 1a (Cypherpunk Philosophy) This is Part 2 of 3 - Covers threat modeling and environment setup. 1. What Is Threat Modeling? Threat modeling is the process of identifying what you need to protect, who you’re protecting it from, and how you’ll defend it. ...

Week 1c: Journal, Culture & Course Overview

Goal Start your learning journal, discover cypherpunk culture and resources, and set clear expectations for success in this course. Prerequisites: Week 1b (Threat Modeling & Environment Setup) This is Part 3 of 3 - Covers journaling, culture, and course roadmap. 1. Start Your Learning Journal Create Your Journal cd ~/cypherpunk-journal nano journal.md First entry template: # Cypherpunk School 101 - Learning Journal ## Week 1: Cypherpunk Ideals & Threat Modeling **Date:** [Today's date] ### What I Learned Today - Read *A Cypherpunk's Manifesto* by Eric Hughes - Learned about the cypherpunk movement's history - Created my first threat model - Set up my cypherpunk development environment - Encrypted my first file with GPG ### Key Insights - Privacy is not the same as secrecy - it's selective revelation - Cryptography empowers individuals against powerful institutions - "Cypherpunks write code" - action over talk - My primary threats are [list your Tier 1-3 threats] ### Aha Moments - [What surprised you?] - [What challenged your assumptions?] - [What excited you about this path?] ### Questions for Further Exploration - How does GPG actually work under the hood? - What makes one encryption algorithm stronger than another? - How can I verify if my current tools are actually private? ### Action Items - [ ] Review threat model weekly - [ ] Practice CLI tools daily - [ ] Start Week 2 exercises - [ ] Recommend one cypherpunk tool to a friend ### Personal Reflection [Your thoughts on why privacy matters to you personally] --- Save and close (Ctrl+X, Y, Enter) ...

Week 2a: Hash Functions & Cryptographic Fingerprints

Goal Understand cryptographic hash functions: what they do, how they differ from encryption, why some are broken (MD5), and how to use SHA-256 for file integrity verification. Prerequisites: Week 1 (Cypherpunk Ideals & Threat Modeling) This is Part 1 of 3 - Covers hashing fundamentals and integrity verification. Introduction: Why Cryptography Matters Before we dive into algorithms, let’s understand what we’re building toward: Cryptography is mathematics applied to privacy. It transforms the abstract right to privacy into concrete protection through proofs, not promises. ...

Week 2b: Symmetric Encryption & Key Derivation

Goal Master symmetric encryption with AES: understand encryption modes (and why ECB is broken), use OpenSSL for file encryption, and learn how Key Derivation Functions transform weak passwords into strong keys. Prerequisites: Week 2a (Hash Functions) This is Part 2 of 3 - Covers symmetric encryption and key derivation. 1. Symmetric Encryption: Shared Secrets What Is Symmetric Encryption? Symmetric encryption uses the same key for both encryption and decryption. Alice Bob | | | "Meet at midnight" + Key123 | |---------> AES Encrypt --------------> | | f8a3b2c1d4e5f6 (ciphertext) | | | | <-------- AES Decrypt <-------------- | | f8a3b2c1d4e5f6 + Key123 | | "Meet at midnight" (plaintext) | Key challenge: How do Alice and Bob agree on “Key123” without anyone else learning it? (Solved in Week 3 with asymmetric crypto) ...

Week 2c: Entropy, Encoding & Encrypted Workflows

Goal Understand entropy and randomness as the foundation of cryptographic security, learn binary encoding (Base64, hex), and combine everything into practical encrypted workflows with best practices. Prerequisites: Week 2b (Symmetric Encryption) This is Part 3 of 3 - Covers entropy, encoding, workflows, and best practices. 1. Entropy and Randomness: The Foundation of Security What Is Entropy? Entropy is a measure of unpredictability (randomness). In cryptography: High entropy = Truly random, unpredictable Low entropy = Patterns, predictable Why it matters: ...

Week 3a: GPG Introduction & Key Generation

Goal Understand the public-key cryptography revolution and generate your first GPG keypair. This is the foundation for everything else in the course. Prerequisites: Week 2 (Cryptography Fundamentals) This is Part 1 of 4 - Covers history, concepts, and key generation. Introduction: The Public Key Revolution Week 2 taught you symmetric encryption - Alice and Bob share the same secret key. But how do they exchange that key securely? The problem: ...

Week 3b: Encryption, Decryption & Digital Signatures

Goal Master practical GPG operations: understanding your keyring, encrypting files for yourself and others, and creating digital signatures that prove authorship and integrity. Prerequisites: Week 3a (GPG Introduction & Key Generation) This is Part 2 of 4 - Covers keyring management, encryption operations, and signatures. 1. Understanding Your GPG Keyring List All Keys # List public keys gpg --list-keys # Output: pub rsa4096 2025-10-14 [SC] [expires: 2027-10-14] ABCD1234ABCD1234ABCD1234ABCD1234ABCD1234 uid [ultimate] Alice Cypherpunk <[email protected]> sub rsa4096 2025-10-14 [E] [expires: 2027-10-14] Key anatomy: ...

Cypherpunk 101 Curriculum#

Quick Start#

📚 Course Overview#

📊 Learning Path#

Week-by-Week Details#

✅ Week 1: Cypherpunk Ideals & Threat Modeling#

✅ Week 2: Cryptography Fundamentals#

✅ Week 3: GnuPG & Digital Signatures#

✅ Week 4: Encrypted Filesystems & Containers#

🔜 Week 5: SSH Deep Dive#

🔜 Week 6: Messaging, Email & Metadata#

🔜 Week 7: Tor & Onion Routing#

🔜 Week 8: Compartmentalization & VMs#

🔜 Week 9: Physical Security & Airgaps#

🔜 Week 10: Bash Scripting & Automation#

🔜 Week 11: System Hardening#

🔜 Week 12: Capstone Projects#

🎓 After Completion#

💬 Questions or Feedback?#

Cypherpunk 101 Curriculum

Quick Start

📚 Course Overview

📊 Learning Path

Week-by-Week Details

✅ Week 1: Cypherpunk Ideals & Threat Modeling

✅ Week 2: Cryptography Fundamentals

✅ Week 3: GnuPG & Digital Signatures

✅ Week 4: Encrypted Filesystems & Containers

🔜 Week 5: SSH Deep Dive

🔜 Week 6: Messaging, Email & Metadata

🔜 Week 7: Tor & Onion Routing

🔜 Week 8: Compartmentalization & VMs

🔜 Week 9: Physical Security & Airgaps

🔜 Week 10: Bash Scripting & Automation

🔜 Week 11: System Hardening

🔜 Week 12: Capstone Projects

🎓 After Completion

💬 Questions or Feedback?