PRIVACY

Privacy Policy

Short version: we don't collect anything. No analytics, no cookies, no third-party trackers, no accounts. Long version follows.

What we serve

Hackers Manifest is a static site. Pages are pre-rendered HTML, CSS, JavaScript, images, and fonts. Our hosting provider records standard server logs (IP, timestamp, requested path, user agent) for operational and abuse-prevention purposes. We do not have access to identify individual users from those logs and we do not export or analyse them.

What we do NOT do

• No web analytics (no Google Analytics, Plausible, Fathom, Matomo, or similar).
• No social-media tracking pixels.
• No A/B testing services.
• No accounts, no sign-ups, no comments.

Cookies

We do not set cookies. Browser localStorage is used only to remember your theme preference (dark or light) and, on certain interactive tools, to persist work-in-progress on your device only. None of that data is transmitted to us or any third party.

Third parties

Pages load web fonts from a public font CDN (CSS + woff2). This is the only third-party request the site makes for rendering. If you would prefer fully self-hosted fonts, contact us and we will prioritise it.

Affiliate links

Some outbound links on this site — primarily to books, hardware, and learning resources we recommend — are affiliate links, principally through the Amazon Associates program. If you click one and make a qualifying purchase, we earn a small commission at no additional cost to you. This helps cover hosting and keeps the site ad-free, account-free, and tracker-free.

• We only link to products we have used or independently vetted.
• Affiliate status never influences technical content, methodology recommendations, or rankings.
• Affiliate links are marked with rel="nofollow sponsored noopener" and open in a new tab.
• Once you click through, the destination site (e.g. Amazon) may set its own cookies and apply its own privacy policy — we have no control over that.

As an Amazon Associate, Hackers Manifest earns from qualifying purchases.

Interactive tools

Every interactive tool on the site — threat modelers, payload generators, IOC extractors, report builders, calculators — runs entirely in your browser. The site has no server-side tool execution. Files you load (e.g. for EXIF scrubbing, IOC extraction) never leave your machine. Encrypted local storage uses AES-256-GCM via the Web Crypto API.

Verifying these claims

Open your browser's network panel and load any page. You will see requests only to hackersmanifest.com and the font CDN.

Changes to this policy

If we ever change any of the above, the change will be announced in the changelog and reflected here, with the «last reviewed» date below updated.

Last reviewed: 2026-04-25.