Android Apps for Privacy and Security
Open source apps.
Encryption All of your one-time passwords are stored in a vault. If you choose to set a password, which is highly recommended, the vault will be encrypted using AES-256. If someone with malicious intent gets a hold of the vault file, it’s impossible for them to retrieve the contents without knowing the password.
Fingerprint unlock Entering your password each time you need access to a one-time password can be cumbersome. Fortunately, you can also enable fingerprint unlock if your device has a fingerprint scanner.
Compatibility Aegis supports the HOTP and TOTP algorithms. These two algorithms are industry-standard and widely supported, making Aegis compatible with thousands of services. Some examples are: Google, GitHub, Dropbox, Facebook and Instagram.
It is also compatible with Google Authenticator. Any website that shows a QR code for Google Authenticator also works with Aegis.
Groups Have a lot of one-time passwords? Add them to custom groups for easier access. Personal, Work and Social can each get their own group.
Backups To make sure you will never lose access to your online accounts Aegis Authenticator supports exporting your vault which you can import onto a new device. Aegis Authenticator also allows you to import AndOTP and FreeOTP databases so switching to Aegis is made easier for you.
Open source and license Aegis Authenticator is open source (licensed under GPL v3) and the source code can be found here: http://github.com/beemdevelopment/Aegis
SnoopSnitch is an Android app that collects and analyzes mobile radio data to make you aware of your mobile network security and to warn you about threats like fake base stations (IMSI catchers), user tracking and over-the-air updates. With SnoopSnitch you can use the data collected in the GSM Security Map at gsmmap.org and contribute your own data to GSM Map.
This application currently only works on Android phones with a Qualcomm chipset and a stock Android ROM 4.1 or higher (or a suitable custom ROM with Qualcomm DIAG driver). It requires root priviliges to capture mobile network data.
SnoopSnitch uses data contributed by other users. By choosing to upload your measurements or security events, you can improve this data and support future research. SnoopSnitch will ask for confirmation whenever any information is uploaded to our servers. All uploads are encrypted.
Shelter is a Free and Open-Source (FOSS) app that leverages the “Work Profile” feature of Android to provide an isolated space that you can install or clone apps into.
Shelter comes with absolutely no advertisement / statistics / tracking SDKs bundled with it. All source code is available in at https://git.angry.im/PeterCxy/Shelter or mirror https://github.com/PeterCxy/Shelter and the sources are licensed under WTFPL.
This app depends on your Android system’s implementation of Work Profile. Some vendor / custom ROMs may have a broken implementation that may cause crashes and even bricking of your device. One such example is MIUI from Xiaomi. I currently provide no support for such ROMs because I personally do not own any of these devices. If you are running Shelter on these ROMs, you are on your own. If any developer out there own these devices and could make Shelter run on these ROMs, please send pull requests and I’ll be happy to merge them.
Features / Use Cases
- Run apps inside the isolated profile so they cannot access your data outside the profile
- “Freeze” (disable) background-heavy or seldom-used apps when you don’t need them. This is especially true if you use apps from "some company".
- Clone apps to use two accounts on one device
Caveats
Shelter is not a full sandbox implementation. It cannot protect you from:
- Security bugs of the Android system or Linux kernel
- Backdoors installed in your Android system (so please use an open-source ROM if you are concerned about this)
- Backdoors installed into the firmwares (no way to work around this)
- Any other bugs or limitations imposed by the Android system.
Also, Shelter cannot create more than 1 work profile on one Android device, and cannot co-exist with any other apps that manages a Work Profile. This is due to the limitations of the Android system, and I can do nothing about this.
What is “Island” “Island” is a sandbox environment to clone selected apps and isolate them from accessing your personal data outside the sandbox (including call logs, contacts, photos and etc) even if related permissions are granted. Device-bound data (SMS, IMEI and etc) is still accessible.
Isolated app can be frozen on demand, with launcher icon vanish and its background behaviors completely blocked.
How does it work Island takes advantage of the “managed profile” feature on Android 5.0+, which is also the base of “Android for Work”, to create an isolated sandbox for apps with their data.
App needs to be cloned in Island first. Afterwards, the clone can run parallel aside from the original one. (even with different accounts signed-in) It can be frozen on demand by Island. (NO ROOT REQUIRED)
If Greenify is also installed, apps can be frozen automatically by “Auto-freeze with Greenify” action (in the overflow menu), just like normal app hibernation in Greenify.
Secure Android built for encrypted and secure phones by a privacy focused company. Available as security-centric and privacy focused Google-free Android for the latest Pixel devices.
Currently supported on the Pixel 2, Pixel 3, Pixel 3a, Pixel 4 and Pixel 4a series. Available through the Copperhead Partner network via hardware and software downloads.
Develop or include a secure phone in your businesses mobile security program. CopperheadOS integrates with the latest and greatest mobile security solutions.
- Protection from zero-days and exploits
- Security-centric, non- technical user experience
- Highest level of encryption by default
- No Google or any tracking analytics
- Sandboxing and application isolation
- Source code available for review and auditing
- Zero-touch on-premises CopperheadOS deployment available
- Integrates with the latest Mobile Device Management and Intrusion Detection System mobility software
Bromite is a Chromium fork with support for ad blocking and enhanced privacy.
Bromite aims at providing a no-clutter browsing experience without privacy-invasive features and with the addition of a fast ad-blocking engine. Minimal UI changes are applied to help curbing the idea of "browser as an advertisement platform".
Bromite is only available for Android Marshmallow (v6.0, API level 23) and above.
Haven is for people who need a way to protect their personal spaces and possessions without compromising their own privacy. It is an Android application that leverages on-device sensors to provide monitoring and protection of physical spaces. Haven turns any Android phone into a motion, sound, vibration and light detector, watching for unexpected guests and unwanted intruders. We designed Haven for investigative journalists, human rights defenders, and people at risk of forced disappearance to create a new kind of herd immunity. By combining the array of sensors found in any smartphone, with the world’s most secure communications technologies, like Signal and Tor, Haven prevents the worst kind of people from silencing citizens without getting caught in the act.
Safety through Sensors
Haven only saves images and sound when triggered by motion or volume, and stores everything locally on the device. You can position the device’s camera to capture visible motion, or set your phone somewhere discreet to just listen for noises. Get secure notifications of intrusion events instantly and access the logs remotely or anytime later.
The follow sensors are monitored for a measurable change, and then recorded to an event log on the device: • Accelerometer: phone’s motion and vibration • Camera: motion in the phone’s visible surroundings from front or back camera • Microphone: noises in the enviroment • Light: change in light from ambient light sensor • Power: detect device being unplugged or power loss
FreeOTP is a two-factor authentication application for systems utilizing one-time password protocols with support for Android (6 or later) and iOS (11 or later). Tokens can be added easily by scanning a QR-code or by manually entering in the token configuration.
FreeOTP implements open standards. This means that no proprietary server-side component is necessary: use any server-side component that implements these standards. We personally recommend FreeIPA, which uses TOTP. However, any standards-compliant implementation will work. Currently, FreeOTP provides implementations of HOTP and TOTP.
OpenKeychain helps you communicate more privately and securely. It uses high-quality modern encryption to ensure that your messages can be read only by the people you send them to, others can send you messages that only you can read, and these messages can be digitally signed so the people getting them are sure who sent them. OpenKeychain is based on the well established OpenPGP standard making encryption compatible across your devices and operating systems.
Modern encryption is based on digital “keys”. OpenKeychain stores and manages your keys, and those of the people you communicate with, on your Android. It also helps you find others’ keys online, and interchange keys by touching devices. But its most frequent use is in using those keys to encrypt and decrypt messages.
Firewall (iptables frontend), based on DroidWall which is no longer being developed. A paid "donate"-version with more features it advertised within the app.
Import/Export Rules to external storage Search Applications Multiple profiles with custom names Highlights system applications with custom color Notify on new installations VPN Support Device Admin support to protect against being uninstalled
Requires root: Yes. iptables must run as root.
An ad blocker that uses the hosts file. The hosts file contains a list of mappings between hostnames and IP addresses. When an app requests an ad, that request is directed to 127.0.0.1 which does nothing. There are options to run a web server to respond to blocked hostnames and to direct requests to the IP address of your choosing. You can automatically download hosts files from the app but it is possible to use your own and to add certain sites to the white- and black-lists.
Open Camera is an Open Source Camera app for Android phones and tablets. Features:
Option to auto-stabilise so your pictures are perfectly level no matter what. Expose your camera's functionality: support for focus modes, scene modes, color effects, white balance, ISO, exposure compensation/lock, face detection, torch. Video recording (supports all available resolutions including HD). Handy remote controls: timer (with optional voice countdown), auto-repeat mode (with configurable delay). Option to take photo remotely by making a noise (e.g., voice, whistle), or by voice command "cheese". Configurable volume keys. Optimise GUI for left or right-handed users. Zoom via multi-touch gesture and single-touch control. Ability to lock orientation to portrait or landscape for photo or video. Choice of save folder (including support for Lollipop's Storage Access Framework). Disable shutter sound. Overlay a choice of grids (including "rule of thirds") and crop guides. Optional GPS location tagging (geotagging) of photos and videos; for photos this includes compass direction (GPSImgDirection, GPSImgDirectionRef). Apply a date and timestamp, location coordinates, and custom text to photos; store date/time and location as video subtitles (.SRT). Yes you can take a selfie (also known as front camera), includes support for "screen flash". Support for (some) external microphones. Widget to automatically take a photo after launching. Support for Android 5 Camera2 API: manual focus distance; manual ISO; manual exposure time; RAW (DNG) files. Support for HDR and Exposure Bracketing (Camera2 only). Dynamic range optimisation mode for better quality photos. Small file size. Completely free, and no ads in the app. Open Source.
Protect your communication in transit and on your phone. Silence is a full replacement for the default text messaging application: all messages are encrypted locally and messages to other Silence users are encrypted over the air.
Orbot is a freely licensed open-source application developed for the Android platform. It acts as a front-end to the Tor binary application, and also provides an HTTP Proxy for connecting web browsers and other HTTP client applications into the Tor SOCKS interface.
Orbot is a component of the Guardian Project, an effort to develop a secure, anonymous smartphone for use by human rights activists, journalists and others around the world. Learn more: https://guardianproject.info/
Tor protects your privacy on the internet by hiding the connection between your Internet address and the services you use. We believe Tor is reasonably secure, but please ensure you read the instructions and configure it properly. Learn more at https://torproject.org/
Tor Frequently Asked Questions: https://support.torproject.org/faq/
Secure email with absolutely no compromises, brought to you by MIT and CERN scientists.
Swiss Based ProtonMail is incorporated in Switzerland and our servers are located in Switzerland. We are outside of US and EU jurisdiction and all user data is protected by strict Swiss privacy laws.
Zero Access Because of our end-to-end encryption, your data is already encrypted by the time it reaches our servers. We have no access to your messages, and since we cannot decrypt them, we cannot share them with third parties.
Backwards Compatible ProtonMail works out of any modern web browser, there is nothing to install. We are also backwards compatible with other email providers so you can continue sending and receiving emails from friends who are not using ProtonMail.
Forever Free We believe privacy is a fundamental human right and should be available for everyone. That's why we offer multi-tiered pricing including a free version that anyone can use. Let's bring privacy back to the people!
Fully Anonymous We do not log IP addresses or require any personal information to sign up. We accept bitcoin and cash payments for paid accounts to ensure even paid account users have complete privacy.
Cross Platform ProtonMail works on all devices, including desktops, laptops, tablets, and smartphones. It's as simple as visiting our site and logging in. There are no plugins or apps to install - simply use your favorite web browser.
Using Signal, you can communicate instantly with your relatives without making a compromise on privacy or security. Make video calls, send messages, pictures, videos, documents, voice recordings, GIFs, contacts & location, create groups so that you can chat in real time with all your friends at once and react to their messages with emojis -all with complete privacy-. Signal servers never have access to any of your communications and never store any of your data.
- Say Anything - Share text, voice messages, photos, videos, GIFs and files for free. Signal uses your phone's data connection so you can avoid SMS (No longer supports SMS or MMS) and MMS fees.
- Speak Freely - Make crystal-clear voice and video calls to people who live across town, or across the ocean, with no long-distance charges.
- Make Privacy Stick - Add a new layer of expression to your conversations with encrypted stickers. You can also create and share your own sticker packs.
- Get Together with Groups - Group chats make it easy to stay connected to your family, friends, and coworkers.
- No ads. No trackers. No kidding. - There are no ads, no affiliate marketers, and no creepy tracking in Signal. So focus on sharing the moments that matter with the people who matter to you.
- Remain Connected - Push notifications let you know when new messages have arrived, and they'll be waiting for you even if your battery dies or you temporarily lose service.
- View Source - All of our code is free, open, and available on GitHub (https://github.com/signalapp).
- Join Movements - Technology developed by Open Whisper Systems is trusted and used by millions of people around the world every day.
Transportr is the public transport companion that respects your privacy and your freedom. Transportr is a non-profit app developed by people around the world to make using public transport as easy as possible wherever you are. Currently, it works best in Europe, but also supports many places world-wide. If you live in an unsupported area, consider adding it to Transportr. It finds directions from your home, your current position or a given station to wherever you want to go. You can also save entire trips as favorites and find next trips with one click. Discover nearby stations and show upcoming departures including the delays (if there are any).
