Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Making (and Securing) Your Second Brain

James Wickett
PRO
January 28, 2025
Technology
0
3

Making (and Securing) Your Second Brain

This presentation explores why having a “Second Brain” matters, how Tiago Forte’s PARA and CODE frameworks help you organize information, and why Obsidian is an excellent tool to implement these ideas. It highlights Obsidian’s local-first design, powerful linking features, and customizability—and then dives into how to keep your vault secure, from full-disk encryption and cloud-sync strategies to Apple’s new Advanced Data Protection (ADP) for end-to-end encrypted iCloud storage. By the end, you’ll see how to build a future-proof digital system for capturing, organizing, and safeguarding everything you learn.

This is for the January 2025 Austin Cryptoparty for OWASP Austin

James Wickett
PRO

January 28, 2025
Tweet

More Decks by James Wickett

See All by James Wickett
The AI Future of Information Security @ ADDO
wickett
PRO
0
33
The AI Future of AppSec
wickett
PRO
0
68
The Probable Future of AI and Security
wickett
PRO
0
100
A Talk about DevOps, Security, and AI
wickett
PRO
2
190
Context Over Mandate Where Developers and Security Meet
wickett
PRO
0
60
Context Over Control: Security's New Path @ DeveloperWeek
wickett
PRO
0
220
DevSecOps Lessons Learned – How to Shift Left & Shift Right?
wickett
PRO
0
100
Context Over Control: Delivering Security Value to the Team
wickett
PRO
0
200

Other Decks in Technology

See All in Technology
プロダクト観点で考えるデータ基盤の育成戦略 / Growth Strategy of Data Analytics Platforms from a Product Perspective
yamamotoyuta
0
370
地方企業がクラウドを活用するヒント
miu_crescent
PRO
1
120
CNAPPから考えるAWSガバナンスの実践と最適化
nrinetcom
PRO
1
370
private spaceについてあれこれ調べてみた
operando
1
200
ソフトウェアアーキテクトのための意思決定術: Software Architecture and Decision-Making
snoozer05
PRO
17
4.2k
RevOpsへ至る道 データ活用による事業革新への挑戦 / path-to-revops
pei0804
3
840
20250130_『SUUMO』の裏側!第2弾 ~機械学習エンジニアリング編
recruitengineers
PRO
0
360
パフォーマンスとコスト改善のために法人データ分析基盤をBigQueryに移行した話
seiya303
1
110
教師なし学習の基礎
kanojikajino
4
370
これからSREになる人と、これからもSREをやっていく人へ
masayoshi
0
340
Agentic AI時代のプロダクトマネジメントことはじめ〜仮説検証編〜
masakazu178
3
440
アンチパターンのアーキテクチャと組織 / Anti-Pattern Software Architecture and Organization
oztick139
0
120

Featured

See All Featured
We Have a Design System, Now What?
morganepeng
51
7.4k
Into the Great Unknown - MozCon
thekraken
34
1.6k
Bash Introduction
62gerente
610
210k
Building Better People: How to give real-time feedback that sticks.
wjessup
366
19k
Six Lessons from altMBA
skipperchong
27
3.6k
How to Think Like a Performance Engineer
csswizardry
22
1.3k
Intergalactic Javascript Robots from Outer Space
tanoku
270
27k
Code Review Best Practice
trishagee
65
17k
Imperfection Machines: The Place of Print at Facebook
scottboms
267
13k
The Cost Of JavaScript in 2023
addyosmani
47
7.3k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.4k
Side Projects
sachag
452
42k

Transcript

  1. MAKING (& SECURING) YOUR SECOND BRAIN ! /in/wickett || @wickett

    [email protected]

  2. ! Hi, I'm James Wickett, founder of DryRun Security. We're

    solving incredibly hard AppSec problems, like IDOR, using Contextual Security Analysis. It's really amazing, especially if you're tired of the pain of SAST. Because I've seen the power of context, I'm currently on a journey of building a second brain for my whole life.

  3. ! SLEEP ON THIS, IF

  4. ! SLEEP ON THIS, IF • You think that AI

    knows all, so why try

  5. ! SLEEP ON THIS, IF • You think that AI

    knows all, so why try • You don't like learning

  6. ! SLEEP ON THIS, IF • You think that AI

    knows all, so why try • You don't like learning • You trust companies to steward your data

  7. THE BENEFITS

  8. THE BENEFITS • Reduced Mental Overload

  9. THE BENEFITS • Reduced Mental Overload • Enhanced Creativity

  10. THE BENEFITS • Reduced Mental Overload • Enhanced Creativity •

    Increased Efficiency

  11. THE BENEFITS • Reduced Mental Overload • Enhanced Creativity •

    Increased Efficiency • Future Ready for your personal AI
  12. None

  13. THE PARA FRAMEWORK

  14. THE PARA FRAMEWORK • Projects: Short-term efforts with a clear

    goal and a deadline.

  15. THE PARA FRAMEWORK • Projects: Short-term efforts with a clear

    goal and a deadline. • Areas: Ongoing responsibilities that need maintenance (e.g., health, finances, relationships).

  16. THE PARA FRAMEWORK • Projects: Short-term efforts with a clear

    goal and a deadline. • Areas: Ongoing responsibilities that need maintenance (e.g., health, finances, relationships). • Resources: Topics or interests that don’t have a specific deadline but hold value

  17. THE PARA FRAMEWORK • Projects: Short-term efforts with a clear

    goal and a deadline. • Areas: Ongoing responsibilities that need maintenance (e.g., health, finances, relationships). • Resources: Topics or interests that don’t have a specific deadline but hold value • Archives: Inactive or completed items you want to keep for reference but don’t need in your main workspace anymore.

  18. THE CODE PROCESS

  19. THE CODE PROCESS • Capture: Gather articles, books, conversations, emails...

  20. THE CODE PROCESS • Capture: Gather articles, books, conversations, emails...

    • Organize: Sort and label captured items into your PARA categories.

  21. THE CODE PROCESS • Capture: Gather articles, books, conversations, emails...

    • Organize: Sort and label captured items into your PARA categories. • Distill: Review and condense notes to their most essential parts.

  22. THE CODE PROCESS • Capture: Gather articles, books, conversations, emails...

    • Organize: Sort and label captured items into your PARA categories. • Distill: Review and condense notes to their most essential parts. • Express: Write an article, creating a presentation, or planning a project.

  23. WHY OBSIDIAN IS A GOOD SECOND BRAIN CANDIDATE?

  24. MARKDOWN & LOCAL Obsidian stores your notes as plain text

    Markdown files on your local machine, giving you true ownership over your data. There’s no proprietary lock-in, and Markdown is text, and text is forever (except YAML ).

  25. POWERFUL LINKING Bi-directional links let you easily connect concepts, and

    the built-in graph view visualizes your notes as an interconnected web. This networked approach fosters insights you might miss in a strictly linear setup. !

  26. HIGHLY CUSTOMIZABLE From third-party plugins (task management, spaced repetition) to

    custom themes and CSS tweaks, Obsidian offers a vast ecosystem for tailoring your workspace. Including slides! !

  27. OFFLINE & PRIVATE By default, Obsidian works entirely offline. Combine

    that with tools like full-disk encryption so you get total control over how (and where) your notes are stored. !

  28. BYOC BRING YOUR OWN CLOUD Use Obsidian's Sync service or

    use your own, like Apple iCloud. ☁

  29. SPEED Obsidian is designed for lightning-fast note creation and navigation.

    You can quickly add links, tags, or nested folders on the fly, while the advanced search keeps your growing vault responsive and easy to explore. !

  30. ADAPTABLE Whether you follow PARA, GTD, or your own system,

    Obsidian’s flexible structure and linking capabilities let you evolve your knowledge base over time—without ever losing track of your ideas. !

  31. Securing Your Second Brain Securing Obsidian Securing a bunch of

    markdown files !

  32. FULL-DISK ENCRYPTION FIRST !

  33. FULL-DISK ENCRYPTION FIRST • macOS: Use FileVault to encrypt your

    entire drive. !

  34. FULL-DISK ENCRYPTION FIRST • macOS: Use FileVault to encrypt your

    entire drive. • Every OS has easy-to-setup full disk encryption !

  35. FULL-DISK ENCRYPTION FIRST • macOS: Use FileVault to encrypt your

    entire drive. • Every OS has easy-to-setup full disk encryption • Protects against: physical access lost laptop/SSD, ... !

  36. But, You Have Multiple Devices Because It's not the 90s

    !

  37. OBSIDIAN VAULT IN ICLOUD By default, iCloud encrypts data in

    transit (between your device and Apple’s servers) and at rest (on Apple’s servers). However, in most cases, Apple also holds the decryption keys. !

  38. ADVANCED DATA PROTECTION (ADP)

  39. ADVANCED DATA PROTECTION (ADP) • You control the encryption keys

    on your devices, not Apple.

  40. ADVANCED DATA PROTECTION (ADP) • You control the encryption keys

    on your devices, not Apple. • Apple no longer has the technical ability to decrypt those services’ data—even under subpoena or other legal demands.
  41. None

  42. A Secure, Fully-Synced, Second Brain * Obsidian * iCloud *

    Advanced Data Protection (ADP) !"

  43. NEXT STEPS !

  44. NEXT STEPS 1. Set up your first vault: Start small—create

    a new Obsidian vault and organize it with PARA. !

  45. NEXT STEPS 1. Set up your first vault: Start small—create

    a new Obsidian vault and organize it with PARA. 2. Enable security: Turn on full-disk encryption and ADP for iCloud to lock down your notes. !

  46. NEXT STEPS 1. Set up your first vault: Start small—create

    a new Obsidian vault and organize it with PARA. 2. Enable security: Turn on full-disk encryption and ADP for iCloud to lock down your notes. 3. Tweak and grow: Add plugins or adapt workflows over time. !

  47. QUESTIONS OR IDEAS? Let's chat: - [email protected] - X: @wickett

    - LinkedIn: /in/wickett !