5 Android Apps to turn you into a Ghost
1. ClassyShark3xodus
ClassyShark3xodus is used to detect if another app you downloaded has spyware or trackers. ClassyShark3xodus scans the app for DNS requests or communication with Big Tech.
2. Fake Traveler
Some apps require GPS location, even when you don’t want to reveal it. Fake Traveler allows you to spoof your location to a place of your choosing to fool apps into thinking you’re there. Smaller community banks will fall for this, but for large ones, the bank’s app won’t load.
3. Scrambled Exif
Smartphones automatically tag pictures with GPS location metadata called “Exif.” So when you post a photo to Instagram or Facebook, the company knows where you live even though you’re using a VPN. Scrambled Exif allows you to remove this metadata conveniently before you post or send it.
4. Duress
Duress automatically wipes your phone when you enter a particular 2nd passphrase. Now, we discourage criminal activity, however some governments in some countries around the world may act illegally or against their own constitution to search devices they are not permitted to. Therefore, to honor and respect these human rights laws, as well as to protect whistleblowers globally, we recommend you tell corrupt police officers asking you to unlock your phone your 2nd Duress password.
5. andOTP
Two factor authentication is often a source of leaking your geolocation. AndOTP is way better than Google Authenticator because Google’s is proprietary and even though it works offline, may connect to Google accounts. Google is evil and locks you in where you can’t transfer to a different app because there’s no backup code. But andOTP works on any site that says “Google Auth” or TOTP.
(KeePass XC on Linux is better than both of these btw.)
</end>
All of these are in the open source F-Droid Store. Follow us on Nostr for more tips!
I would suggest to replace andOTP with Aegis cuz supposedly andOTP lost support or something
Perhaps thats why I cant find it on Fdroid
nostr:nevent1qqsgq4va2gceyg5j4063mclc2ypkahzfuxfpws9jm627wq8kpwhhafcpz3mhxue69uhhyetvv9ujumn0wd68ytnzvupzptpldtlpwkflvxqs2y76exs7238g0wwwjxe86dac3mzclw4fq992qvzqqqqqqy0q6xer
Followed.
Bookmarked.
Shared.
Zapped.
I've been learning a lot from this account
nostr:nevent1qqsgq4va2gceyg5j4063mclc2ypkahzfuxfpws9jm627wq8kpwhhafcppemhxue69uhkummn9ekx7mp0qgs2c0m2lct4j0mpsyz38kkf58j5f6rmnn53kf7n0wywck8m42gpf2srqsqqqqqp90929v
Didn't know about FakeTravel and Duress, good finds!
Reading this from Amethyst.
Tried the app on Amethyst itself.
This is the result:
https://image.nostr.build/04c67722c3abefa339bbfdd4001f8128fbf88215960e31ff0f254de48b3c6827.jpg
Its calling on firebase for google push notifications. If you have a degoogled phone its fine, if not, depends on how the developers program it.
For example Session uses pub private keypairs like nostr, but hides from google firebase the session ID
Excellent. Thanks for your reply.
Mine has 0 trackers (on grapheneos)
Fantastic post, thank you so much!!
nostr:nevent1qqsgq4va2gceyg5j4063mclc2ypkahzfuxfpws9jm627wq8kpwhhafcppamhxue69uhkummnw3ezumt0d5pzptpldtlpwkflvxqs2y76exs7238g0wwwjxe86dac3mzclw4fq992qvzqqqqqqyphdpxe
What do you think of InviZible Pro?
Can ClassyShark actually do anything other than detect? If it can't block those trackers directly can it make specific recommendations as to how you can stop said spyware or trackers?
You can block certain DNS. I personally do this via a router but there's other ways. I'm sure some mobile app has it
Oddbean new post about login | logout 