Database Info

[APP] closeFeint, disable openFeint for rooted users

I hate openFeint so I made an app to disable it
https://market.android.com/details?id=benor.closeFeint
I'm still a new user here so it's not a link, if any one can edit this message and make this a link I'll thank him (and give him a free copy of this already free app )
I could debug it only on CM7 so i would like to see if it works on other roms.
The usual it might toast your device and don't blame me (It shouldn't it didn't even restarted my phone while i developed it)

Why do you have to disable adblocking, is there a way to have disable openfeint and not mess up with adblocking.

Just posting the link for convenience:
https://market.android.com/details?id=benor.closeFeint

Any chance of a direct download link or mediafire or ddopbox

ofantastic said:
Any chance of a direct download link or mediafire or ddopbox
Click to expand...
Click to collapse
@benor, let me know if you want me to take this link down
http://www.mediafire.com/?bm718kq7lf3i3d4

sweet, just what i wanted

goood idea closing feint thanx

Are there any methods that will not disable ADblocker?

I'd love to know about alternatives to disable/remove Openfeint too.
The condescending vibe this developer gives off, messing with installed applications that are none of his concern, I would never touch that. I would pay for an ad-free 'premium' version, but not from this developer. Removing annoying Openfeint nag screens in exchange for other nag screens just doesn't make any sense.

Android ad blockers work by dumping entries into the hosts file. This app also does the same. To be fair to the developer, he'd have to somehow make his app run every time after an ad blocker runs to ensure OpenFeint remains blocked, which would be annoying to support.
Since AdAway (my favourite ad blocker; it's open sourced) has a blacklist option, add the following entries to it:
openfeint.com
api.openfeint.com
scoreloop.com
and OpenFeint will be blocked by AdAway as it's doing the ads. There's also "*.openfeint.com" but I'm sure that that isn't valid hosts file syntax.

dfkt_ said:
I'd love to know about alternatives to disable/remove Openfeint too.
The condescending vibe this developer gives off, messing with installed applications that are none of his concern, I would never touch that. I would pay for an ad-free 'premium' version, but not from this developer. Removing annoying Openfeint nag screens in exchange for other nag screens just doesn't make any sense.
Click to expand...
Click to collapse
It's a single host file. He might not believe in the blocking of ads. He makes it very clear in his description that it does not work in tandem with Adblockers and that those who use it are not his audience.
He's not being condescending. Who is anyone (not talking about you specifically) to voluntarily download his free app and then get pissy when it does exactly what he said would not work? And then to have the audacity to downrate it to 1 star because they were too stupid to read the description before installing the app?
Honestly, the comments for this app's market listing just go to further confirm that most Android app users are complete idiots with a self-importance complex and they don't think before installing an app. (Not that iOS reviewers are much better)
Based on some of the comments, you'd think that the app was being shoved down peoples' throats.

qwerty12, thank you very much for the explanation! I didn't know this just uses the regular hosts file. If this app overwrites what AdAway put there, then it seems to be rather poorly conceived.
So far I did a chmod 000 and a chown/chgrp 9999 on the Openfeint folder in /sdcard, which only solved half the issue. Will add your URLs to the hosts file.
Liquidsolstice, it's this sentence from the description in the Market that I find condescending: "It will disable you adblockers, if you are using any ad blocker you aren't my audience and i'm not planing to change this." Of course I didn't download it and then whined about it or downrated it, this was warning enough. I agree that the comments on the Market don't show much effort on the users' side. But at least the developer should give a reason *why* he disables ad blockers, instead of that snooty one-liner.

LiquidSolstice said:
It's a single host file. He might not believe in the blocking of ads. He makes it very clear in his description that it does not work in tandem with Adblockers and that those who use it are not his audience.
He's not being condescending. Who is anyone (not talking about you specifically) to voluntarily download his free app and then get pissy when it does exactly what he said would not work? And then to have the audacity to downrate it to 1 star because they were too stupid to read the description before installing the app?
Honestly, the comments for this app's market listing just go to further confirm that most Android app users are complete idiots with a self-importance complex and they don't think before installing an app. (Not that iOS reviewers are much better)
Based on some of the comments, you'd think that the app was being shoved down peoples' throats.
Click to expand...
Click to collapse
Some things are never acceptable under any circumstances.
Openfeint is one of them.
Airpush is another.
Anyone helping others to not have to deal with this junk is doing a service to the community and it should be commended.
It is malware plain and simple (Anything that while the app isn't open puts any junk on the screen is malware).
There is so few developers with any integrity on Android. (Everything is malware or adware - these things are are frowned upon even on Windows don't get why it is ok on a mobile device (hint it is not)).
If you make something worth having (That is a game) and give away a bit (No strings) and it is good you will make allot of money selling the rest for a game. Just like the old proper shareware model.
(I only buy DRM free stuff hence I bought the humble Android bundle for 6 times the average - no interest in anything else or social anything).
Filling other peoples devices with malware to compensate for the developers inability to create a decent app is unacceptable and always will be.
(I would be less bothered if the Market was structured in a way that I could easily avoid this type of junk (i.e adware / malware / stuff that gives away your personal information in a different section).
Regardless of what it is any adware/malware is always one star from me and always will be. (Other than if it is specifically stated in the description that it is adware. (Then I just would never install it).

qwerty12 said:
Android ad blockers work by dumping entries into the hosts file. This app also does the same. To be fair to the developer, he'd have to somehow make his app run every time after an ad blocker runs to ensure OpenFeint remains blocked, which would be annoying to support.
Since AdAway (my favourite ad blocker; it's open sourced) has a blacklist option, add the following entries to it:
openfeint.com
api.openfeint.com
scoreloop.com
and OpenFeint will be blocked by AdAway as it's doing the ads. There's also "*.openfeint.com" but I'm sure that that isn't valid hosts file syntax.
Click to expand...
Click to collapse
Works! Thanks!

Mother of AD BLOCKING - 'hosts' file for your Android Baby

Now available on http://forum.xda-developers.com/showthread.php?p=32276021#post32276021

Thanks for this updated host file but to be really frank with you, i can't believe the fact that thia host file is capable of blocking more than 200000 domains. Normal apps like adfree and adblock have block max of 50000 domains. So, it is quite hard to believe. Hope it is completely legit. :Fingers crossed:
Sent from Hell!!

to .xxx.
.xxx. said:
Thanks for this updated host file but to be really frank with you, i can't believe the fact that thia host file is capable of blocking more than 200000 domains. Normal apps like adfree and adblock have block max of 50000 domains. So, it is quite hard to believe. Hope it is completely legit. :Fingers crossed:
Sent from Hell!!
Click to expand...
Click to collapse
This has nothing to do with the adfree or adblock or any other apps. The simple concept is to BLOCK a requests (AD) to a address though a loopback (127.0.0.1) address and it is forcefully dropped by the system. The is no System Load or CPU/Memory hogs. Everything is Linux and it follows a Basic Logic of Name/IP Resolution.
AND It Magically WORKS...
Happy BLOCKING.
..................................................................
Samsung Galaxy S2
Firmware: ICS 4.0.4 XWLPX
ROM: VK ROM 5.4.4
Kernel: Phenomenal 6.1
Modem: BVLP7
MODS: xLOUD,SRS,BRAVIA Engine,ALSA Resampler, Audio Effects Engine

Just wanted to say thank you for this. This is awesome! Thanks for your hard work.
J

BSDgeek_Jake said:
Mother of AD BLOCKING - 'hosts' file for your Android Baby - Updated 05 December 2012
I AM BACK WITH NEW UPDATE.
CHANGES: :angel:
1. Duplicate entries removed.
2. Alternate Malware Domain Blocks.
3. Converted TAB to SPACES, Encoding to UTF-8, Line Endings to LF (UNIX).
4. Corrected improper domain names and improper comment entries.
5. Popular File Sharing Sites excluded from list
(mediafire,filestube,depositfiles,box,rapidshare,rapidlibrary,4shared,hotfile,uploading,uploaded,fileserve,zippyshare,filefactory,2shared,etc...)
NOTE: Due to some technical issues i lost my earlier XDA credentials and related posts. NOW-on i will be 'BSDgeek_Jake'
Here i present the Mother of AD BLOCKING to STOP those Annoying ADs (Text and Media), Crazy Malware and Spyware, Possibly POP-Ups and other Nonsense Unwanted Parasites.
NOTE: This 'hosts' file is fully compatible and tested on Android Operating Environment 2.2.x, 2.3.x, 3.x, 4.0.x, 4.1.x
> What is a 'hosts' file? What it Does? Whats in it for Me?
The 'hosts' file contains the mappings of IP addresses to host names and loaded into memory (cache) at startup. Android OS checks the 'hosts' file before it queries any DNS servers, which enables it to override addresses in the DNS. This prevents access to the listed sites by redirecting any connection attempts back to the localhost (127.0.0.1), which is a loopback and traffic is dropped instantly (saving your millions of money used by network traffic 2G/3G/4G). Another feature of the 'hosts' file is its ability to block other applications (bogus applications) from connecting to the Internet, providing the entry exists.
'hosts' file is used to BLOCK ADs, BLOCK Banners, BLOCK 3rd Party Cookies, BLOCK 3rd Party Page Counters, BLOCK Web Bugs, BLOCK Web Hijackers, BLOCK Phishing Sites, BLOCK Malwares, BLOCK Spywares, BLOCK Trackers, BLOCK Unauthorized Application connections to web and BLOCK other Malicious activities...
This is not 100% Protection but atleast it takes care of ALMOST ALL OF THE SECURITY ISSUES FACING FROM THE BAD SITES.
For full Security, Use Antivirus or Security Suite from Android Market.
> Performance Issue? Will my device run SLOW?
I am using this 'hosts' file from my chilhood days and never had any performance issue to date, Although you might have a little delay in startup in miliseconds (you might not even notice, trust me) and then everything will be cool in standby and active mode. I say "Little delay is better than ADs, Malwares and Spywares..."
> Compatibility?
ALL OEM :angel:
Android 2.2.x, 2.3.x, 3.x, 4.0.x, 4.1.x :angel:
> How to install?[/COLOR]
You have to be ROOT (su) to copy the 'hosts' file to '/etc' and '/system/etc' and setting the permissions to 'root:root' and '0444' or 'r-r-r'. Reboot you Android Baby and That It. ENJOY.
> What is the Updated Cycle?
Major Update: 2 Months and Intermediate Updates.
> Any Qyeries?
Ok. Throw me some questions :laugh:
> What is BLOCKED?
carrier*q,airp*sh,open*eint,hey*ap,lea*bolt,moolah*edia,tap*t,ad*ob,in*obi,ad*ense,tech*upportalert,ad*ervices,micro*oft ads,ya*oo ads,goo*le ads, se*rch ads,star*app and many many more.
CURRENTLY 200464 AD DOMAINS BLOCKED :good:
> DISCLAIMER :good:
I take no responsibility of any losses and damages to your Hardware or your Software component/s caused by this piece of code. Although this piece of code is tested by me in my 'LAB' extensively and i found no issues at all and 100% working. YOU HAVE BEEN WARNED :angel:
HAPPY AD BLOCKING.
Click to expand...
Click to collapse
Really GOOD JOB!!! Thank you

good job

Could u explain exactly what is this
In simple nooby language please..thank u
Sent from my GT-I9000 using xda premium

magician369 said:
Could u explain exactly what is this
In simple nooby language please..thank u
Sent from my GT-I9000 using xda premium
Click to expand...
Click to collapse
Its an Advertisement and Harmful Content Blocker.
You phone is most safer and secure from stupid websites and crazy apps.
ENJOY :victory:

VPN app add host files
BSDgeek_Jake said:
This has nothing to do with the adfree or adblock or any other apps. The simple concept is to BLOCK a requests (AD) to a address though a loopback (127.0.0.1) address and it is forcefully dropped by the system. The is no System Load or CPU/Memory hogs. Everything is Linux and it follows a Basic Logic of Name/IP Resolution.
AND It Magically WORKS...
Happy BLOCKING.
..................................................................
Samsung Galaxy S2
Firmware: ICS 4.0.4 XWLPX
ROM: VK ROM 5.4.4
Kernel: Phenomenal 6.1
Modem: BVLP7
MODS: xLOUD,SRS,BRAVIA Engine,ALSA Resampler, Audio Effects Engine
Click to expand...
Click to collapse
I can't root my POS Alcatel fierce 4 but I do have a VPN app
for no root which I can add host files. I assume I just add the
entire zipped folder? That's my only option. The app on the
Play Store is called "Virtual Hosts".

[CWM]AD Block Host [04June2013]

Credits: BSDgeek_Jake Hello Friends!​
# What is a 'hosts' file? What it Does? Whats in it for Me?
The 'hosts' file contains the mappings of IP addresses to host names and loaded into memory (cache) at startup. Android OS checks the 'hosts' file before it queries any DNS servers, which enables it to override addresses in the DNS. This prevents access to the listed sites by redirecting any connection attempts back to the localhost (127.0.0.1), which is a loopback and traffic is dropped instantly (saving your millions of money used by network traffic 2G/3G/4G). Another feature of the 'hosts' file is its ability to block other applications (bogus applications) from connecting to the Internet, providing the entry exists.
'hosts' file is used to BLOCK ADs, BLOCK Banners, BLOCK 3rd Party Cookies, BLOCK 3rd Party Page Counters, BLOCK Web Bugs, BLOCK Web Hijackers, BLOCK Phishing Sites, BLOCK Malwares, BLOCK Spywares, BLOCK Trackers, BLOCK Unauthorized Application connections to web and BLOCK other Malicious activities...
This is not 100% Protection but atleast it takes care of ALMOST ALL OF THE SECURITY ISSUES FACING FROM THE BAD SITES.
For full Security, Use Antivirus or Security Suite from Android Market.
# Performance Issue? Will my device run SLOW?
I am using this 'hosts' file from my chilhood days and never had any performance issue to date, Although you might have a little delay in startup for few seconds (but you will not even notice) and then everything will be cool in standby and active mode. I say "Little delay is better than ADs, Malwares and Spywares..."
# Compatibility?
OEM: Samsung, HTC, Sony, LG, Google, Motorola, Huawei, ZTE, Almost ALL OEM...
ANDROID FAMILY: 2.2.x, 2.3.x, 3.x, 4.0.x, 4.1.x, 4.2.x
# How to install?
Just Flash in Clockworkmod Recovery (CWM) and Thats It. ENJOY
Download with Dev-Host

thank for share. But not need post a new thread in here because we will have it in Android Software And Hacking General. It will be search by user.
P/s: You edit file zip? you credit for he and upload your host! It as is you bring and that it is of you. Please if want create new thread you should create link to Original Post to help any people to have update from OP's:good:

You can also use adaway from fdroid free software market

Wow, giving credits is one thing, but copypasting and mirroring is another...
And you receive thanks for sth another guy did... We do not need this type of repost
...
Anyway, editing the hosts file is much better than using AdAway or AdBlock...

nice share
Sent from my GT-I8160 using xda premium

A General Warning about flashing Unknown Roms

Hi.
I recently came across some chinese / asian websites which kang / modify and release a diversity of roms.
I'm not specifying sources / which roms are, this is a general announcement to be careful with what we download & flash into our devices, and why ?
I flashed in order to test some of these roms (not the sense 5 kang tho), since I work in network security, I had noticed on our firewall logs when my mobile connected through the wifi, a bunch of UDP requests / DNS queries to russian websites. This can be used to botnets, DoS, even malware / spam propagation (a diversity of not cool stuff, basically).
A colegue of mine which also has a 'droid had once an app which sent repeatedly ICMP requests in "not random" but specific hours / intervals, he asked me to test his rom which he downloaded and flashed from "another" website, and I confirmed the suspicious behavior. There was established connections to foreigner addresses through a diversity of protocols, data being sent / received and at times, a udp flood directed to specific addresses. This is bad, my friends.
We don't know what these roms have inside, what's their mechanism besides the standard transparent operations which most of us are familiar with, and they could be very well used to do illegal things which I guaranty we don't want to be part of.
Flashing a rom, connecting through 3G or Wifi, and then our mobile is now part of a botnet which participates without our knowledge on such illegal operations is just one of the things that could happen. Phishing is also very possible - in other hand, a lot of things are possible without our knowledge and consent. We don't want this do we ?
The last Rom which I have experienced this, the link was removed and is no longer online. So i'm not pointing URL's / Rom names because this is something that each one of us has to be careful about.
Fortunately we have ways to detect / avoid / remove and make sure our device is used only for us and does only what we "tell" it to do.
We can use this thread to report such roms (since they're not published on xda, we can only warn each other and be aware) and applications that have malicious content.
I'll also be updating this thread with methods, applications for android to detect malware / suspicious activities (I'm not going into depth like using a sniffer or protocol / packet analyzer (although we can) I'll try to keep as simple as possible.
Suggestions, reports are very welcome and should be reported here. We can use this thread to protect our droids and help each other making our devices secure.
This post has the intention of protecting ourselfs, but privacy tips / applications are also welcome. Be careful tho, would be ironic to suggest an app to protect user privacy and in the end the app itself sends private data to GodKnowsWhere.
To be continued / Updated Soon.
List of Applications to monitor / analyze traffic:
Netstat Professional - Allows you to see what connections your android has established. Allows whois info, Real time IP / Port and status information (pretty much like netstat -an), and what service is running / port information.
Wi.cap. Network Sniffer - Much like a network protocol analyzer / network sniffer. This neat app allows you to see what connections are estabilished / protocol / status / analyze packets. If there's a connection estabilished - it will be listed. [Root needed]
Shark for Root - Traffic sniffer for 3G & Wifi (supports FroYo tethered mode too). Records traffic which later you can open with WireShark. To preview you can use Shark Reader.
List of Applications fo scan for malware.
Coming Soon...
Procedures to discover / analyze / report malware / suspicious behaviours and such.
Coming Soon...

Post reserved for procedures which will include:
- Common Sense
- How a malware works (the term malware is used to include viruses, trojans, custom scripts and apps.
- What to look for / suspicious behavior which you should pay attention to (also included in Common Sense).
- Basic tools to detect / analyze / remove malware.
More to come.
Sent from my HTC Z710e using xda premium

Generally, i suggest to use ROMs from XDA only, except for CM/MIUI official website. The risk is real! Thanks to @MidnightDevil for his help and his time
I suggest to read this thread to all the users!

XxXPachaXxX said:
Generally, i suggest to use ROMs from XDA only, except for CM/MIUI official website. The risk is real! Thanks to @MidnightDevil for his help and his time
I suggest to read this thread to all the users!
Click to expand...
Click to collapse
Thank you for your support
If anyone has suggestions / knowledge about this sort of matter please share
There's a LOT of info that I tend to post on this thread in a way to educate / share knowledge with everyone.
Trusting the developers and sources is the first step for prevention. Be careful with dodgy websites and roms which you don't know about.
Scanning the rom zip file with a virus scanner is useless in this matter.

Unknown Rom
The threat is over when a secure rom is installed (after using a none xda rom) ??
MidnightDevil said:
Thank you for your support
If anyone has suggestions / knowledge about this sort of matter please share
There's a LOT of info that I tend to post on this thread in a way to educate / share knowledge with everyone.
Trusting the developers and sources is the first step for prevention. Be careful with dodgy websites and roms which you don't know about.
Scanning the rom zip file with a virus scanner is useless in this matter.
Click to expand...
Click to collapse

phearell said:
The threat is over when a secure rom is installed (after using a none xda rom) ??
Click to expand...
Click to collapse
So far there isn't malware which persists after full wipe. Can't speak of the contents of the sdcard tho. But usually yes. But then you have the apk's which can contain malicious code and so forth...
Those apps are usually banned from the PlayStore, but there's a short window between published / report / removed from Store which users can download it.
Unless I didn't understood your post

MidnightDevil said:
So far there isn't malware which persists after full wipe. Can't speak of the contents of the sdcard tho. But usually yes. But then you have the apk's which can contain malicious code and so forth...
Those apps are usually banned from the PlayStore, but there's a short window between published / report / removed from Store which users can download it.
Unless I didn't understood your post
Click to expand...
Click to collapse
AFAIK google also scan apps installed on the device. When installing a 3rd party app (not via Google Play), you get a prompt to allow google to scan it anyway for malicious content.
Also, there are a couple of anti-virus apps available from well known companies such Avast for android, and also from AVG.
I never really tried those, but they might help protecting your device. However I doubt if they scan system apps/services, for in most cases they are supposed to be safe (from the OEM itself).
It is well known that the biggest security hole is the user. So the best thing to do is to keep away from unknown ROMs/sources.

astar26 said:
AFAIK google also scan apps installed on the device. When installing a 3rd party app (not via Google Play), you get a prompt to allow google to scan it anyway for malicious content.
Also, there are a couple of anti-virus apps available from well known companies such Avast for android, and also from AVG.
I never really tried those, but they might help protecting your device. However I doubt if they scan system apps/services, for in most cases they are supposed to be safe (from the OEM itself).
It is well known that the biggest security hole is the user. So the best thing to do is to keep away from unknown ROMs/sources.
Click to expand...
Click to collapse
No doubt the biggest flaw usually comes from the end user.
But answering your statemente about anti viruses.
Usually anti viruses (specially in portable devices) act base upon a database of known signatures and suspicious behavior. They provide no protection against a custom developed script or code with a work-around for this behavior. Basically - avoids behaving like a malware.
A code is considered malicious when acts upon suspicious behavior (for example, on windows - when an app registers itself on registry autorun / startup folders / tries to load a file on temp directory / temporary internet files, hooks itself into a process / uses a windows process to deliver it's payload faking a signature, etc etc). Knowing this, any custom app / script that avoids suspicious behavior / does not have a present signature on a AV database and a few more details - all doors are "open" and is a highway to hell.
Google scan engine uses the same mechanism, in fact, I'm not even sure if it has any sort of protection against suspicious behavior as it only executes upon apk install.
Believe me, the biggest flaw is the user as the best protection is also a well educated user. It's a matter of knowing what can do and what should avoid. Fear or suspicion is an important thing these days, as they prevent us from making mistakes as installing an app from a dodgy site. We should know better.

MidnightDevil said:
No doubt the biggest flaw usually comes from the end user.
But answering your statemente about anti viruses.
Usually anti viruses (specially in portable devices) act base upon a database of known signatures and suspicious behavior. They provide no protection against a custom developed script or code with a work-around for this behavior. Basically - avoids behaving like a malware.
A code is considered malicious when acts upon suspicious behavior (for example, on windows - when an app registers itself on registry autorun / startup folders / tries to load a file on temp directory / temporary internet files, hooks itself into a process / uses a windows process to deliver it's payload faking a signature, etc etc). Knowing this, any custom app / script that avoids suspicious behavior / does not have a present signature on a AV database and a few more details - all doors are "open" and is a highway to hell.
Google scan engine uses the same mechanism, in fact, I'm not even sure if it has any sort of protection against suspicious behavior as it only executes upon apk install.
Believe me, the biggest flaw is the user as the best protection is also a well educated user. It's a matter of knowing what can do and what should avoid. Fear or suspicion is an important thing these days, as they prevent us from making mistakes as installing an app from a dodgy site. We should know better.
Click to expand...
Click to collapse
I just remembered of an app called "Who is tracking" (was featured on the portal a while ago), that also scans system files (bloatware) and tells you which app tracks you. tried using it a while ago, but didn'y really try to understand it, and it seems to have changed since. will try it myself.

Agreed with Patcha, unless you 100% trust the source (CM/MIUI are well known and if they did something untrustworthy a massive ****storm would ensue) then I would stick to ROM's posted on XDA (though frankly I avoid MIUI out of moral principle #SouceCodeMuch?). Anything untrustworthy that is posted on XDA is picked up very quickly and dealt with effectively.
More to come from me on this, I need to organize what I want to say so it doesn't sound like a mad persons ramblings
Edit: A thing to look out for in google play store is the permissions, READ THEM, read what they mean, read what permissions the app requests and if you don't know why an app needs that permission or if it looks dodgy (like the permission to send sms messages without the user knowing) then for God's sake don't use the app util you've found out what the app needs that permission for (quick google search or email to the developer). Don't just blindly agree to all the permissions without reading them.
These permissions are declared by the developer in the Android_manifest.xml file and pulled from there when publishing the app on play store. As far as I am aware, there is no way to fool this system - you can't edit the visible permissions through the developer panel of play store, only by editing the manifest - I have a developer account on play store so this I am 100% sure on.

Yup, very true. Something I forgot to mention earlier and is VERY important.
Always check the permissions and what for the permissions are used. Some good developers write what for they need the permissions. Some things are obvious, others not so quite.
Also reading the comments of an app helps as well. More experienced users tend to write a more complete review and sometimes they draw the attention to things that sometimes other users miss. About permissions or anything else.
Any user can write a review, so if you find something important, you can also write in the review. Just make sure you don't underrate an app because of a doubt
Usually developers also have their contact email in case of doubts, it can be used to to bring some things to light.

[GUIDE] Paranoid Security For Android

Table Of Contents
~ Introduction
~ Basic Stuff
Applications
~ Vpn's
~ Antivirus
~ FindmyPhone apps
~ mySecureMail
~ 1Password
~ Signal
~ AppLock
~ Snoopsnitch
~ AFwall+
Firefox Addons
~ Bluhell Firewall
~ CanvasBlocker
~ Clean Links
~ Decentraleyes
~ Disable WebRTC
~ HTTPS everywhere
~ Privacy Badger
~ Procon Latte Content Filter
~ Self Destructing Cookies
// Optional
~ Less Spam please
~ AdBlock Plus
~ Less Spam please
Secure Mail Providers
~ Proton Mail
~ Lavabit
~ HushMail
~ vfemail
A Tad To Paranoid
~ Ipkungfu
~ Snort
Disclaimer I Am Not responsible for the end of the world, your device, your lives or anything else that goes wrong. This is a guide to be more secure on Android.
Introduction
Hello!
This is an attempt to help users who are either very tech savvy or not. While this is a guide and I imagine some might disagree, I will take into consideration complaints or suggestions and I will adjust the post accordingly.
If you know of any apps that are not on my list please inform me I will be happy to adjust the post. (please explain why the app is useful and provide the name of it) while it mostlikly very possible to find everything in this post by searching the web, It might take some time to collate everything so I decided to make a post and put everything down into text.
The point of this guide is to provide several ways to secure your device. You don't need to use it all you can simply cherry pick what you want or use bits.
This is a suggestion Guide if anything. So naturally you can adjust the bellow to your needs.
Finally I'm no security Pro. I am a crazy man who has made himself overly paranoid after some years of learning white hat hacking. If you find something a bit to ridiculous or over the top just ignore it. Nor is it designed to scare you. Just help
Basic Stuff
Lock screen
The first line of defense! This is very basic but often overlooked. A pin/password/pattern are all great! While alternative lock screens might look good, there security is questionable. As one can get around it if they can make your system run on system apps only. While I know little about it market lockscreens and their security. Perhaps it be possible using an app such as Link2SD to make it a system app. Adding better security?
Fingerprint is secureish, but security concerns about fingerprint harvesting is a reason I don't use it. Good security system includes keeping your screen clean and buttons.
Don't like yucky screens.
Sim Lock
Enable Lock SIM card, found under:
Code:
Settings -> Personal -> Security -> Set up SIM card lock.
Simply put this will mean after turning your phone on you'll need to put in a pin to ring anyone.
Device Encryption
Pretty basic. Encrypt your data. You life. Encryption for everyone!!!
Code:
Settings -> Personal -> Security -> Encryption.
Nfc
TURN IT OFF UNLESS YOU NEED IT ON!!!
My dislike of contactless is well founded, I know a few people who have been done by countless swipe hacks. £10 taken out 6 or 8 times poor people. While some NFC or pay apps can only be used with a passcode or fingerprint which adds more security, general rule is having it turned of. Saves battery too so... Ye
Software Updates
To be fair most of the resident xdaers are well up-to-date with security patches. As most of you run roms. With security updates in them. So keep your self updated!
Applications
VPN's
Virtual private networks, aren't only useful for hackers trying to stay hidden but useful for normal people to hide their ips from the evil-doers of the world. While Vpn's are not 100% mainly because there is a gap between connection to the VPN. They are great on the hole.
Open VPN (Both Connect and for Android)
Play Store Link
This is an app that allows you to connect to the various Vpn's, while most are paid a few are free (see Note). Majority of sites explain how to connect to their VPN others aren't as simple this app also means you can make your own VPN and connect to it. Some useful guides exist below for making your own VPN:
VPN server on Android
tutorial on making and hosting your own VPN
Note: WARNING, while some VPN with a free service and pay for upgrades tend to be trust worthy some fully freemium ones are questionable. Some have been branded honeypots and although you may not worry about being logged it might still bring in some privacy concerns.
Free/Upgrade/Payfor VPNs
VyrpVPN
Playstore link
Possibly the fastest and most reliable, doesn’t share your data with anyone, and only keeps logs of IP addresses, connection times, and bytes used for 30 days. It offers 50 server locations spread across the globe, support for 256-bit encryption, and uses Chameleon, which hides the fact you are using a VPN service. It's a little pricey. But I'd always advise going for by yearly in any VPN it always works out cheaper. But there is a free option with a limited usage limit.
Tunnel bear VPN
Playstore link
I use this one personally. While it might not be the fastest it's very versatile easy to use no fiddly bits, and also its excellent value for money with it clocking in around £30 quid a year for up to 5 Devices, TunnelBear doesn't track what you do online, no logy logy of your IP, and won't whore out your data with them third-party peps. It also supports 256-bit encryption. So woo! Also has a free 500m monthly limit as well if you want to try it out.
NordVPN
Playstore Link
Possibly the most well established VPN. Some SERIOUS Encryption under the hood and they log absolutely nothing as well. Again yearly Plan is a lot cheaper. And possibly cheapest one. All rounder really also the account has a .ovpn file which is required by open VPN app.
Express VPN
Playstore Link
The service allows you to have two symoltanious connections which, I don't know, might be useful to you. They have good customer service though and pretty good connection. No logging and pretty well priced. With a 30-day back guarantee.
IPvanish
Playstore Link
They take no logging seriously! And have a solid encryption and a good price scheme. There's not much to say about this one. It's very good though.
The above are ones I personally or people I know have used, they are by no means in order. There are a number of ones that available do a good search! Always do research. Find good deals and make sure you are always secure.
Antivirus
It's still a bit of a question if you really need an Antivirus on Android. I personally say it's useful as a tool box. Most provide find my phone and so on.
Avira
Playstore Link
Test Results here:Av-Test
A great app, not too intrusive. Really useful and fairly simple to use.
Lookout
Playstore Link
I use this one personally with conjunction with another. Has theft protection and a number of other features that need an upgrade
Avast
Playstore Link
Test results here:Av-test
I use this one as well. It's a great service and very useful. Wifi scanning, call blocking and a number of other features.
AVL
Playstore Link
This is a bear bones app just for maleware scanning. Great app. Easy to use.
Sophos
Playstore Link
Test results here:av-test
Very solid app. Useful to have to protect you. Simple app. Business level protection.
The above list is from apps I my self have used and can recommend. As always there is a large variety. Search away, check tests on independent labs. And decided for your self.
Findmyphone Apps
Loosing your phone is concerning, a lost phone could fall in hands of a nice person. But then it could end up in an evil doers hand thus wiping of data is fundamental! The following apps are highly recommended and well rated.
Android Device Manager
Cerberus
Prey
mySecureMail
Playstore link
Unlimited amount of email accounts in one encrypted secure place. Password protected and Free!
1Password
Playstore Link
Having various passwords can be confusing, while the actual security of them is questionable after all having passwords saved on your phone might be concerning. But with high encryption and good security keeps all your information safe and secure!
Signal
Playstore Link
It provides end-to-end encryption to secure all communications and the app can also verify the identity of who people are messaging, as well as the what channels they are using! A really secure app, with concerns mounting about how private you really are this app is very good for security.
Applock
Playstore Link
Lock all your important apps from being prayed on. Does what it says on tin.
SnoopSnitch
Playstore Link
This only works on some phones! Be careful. It's basically a IMSI catcher.
There is another one here which in my opinion is a fantastic app and deserves support! XDA IMSI catcher
An IMSI Catcher is a great peace of kit warning against fake base stations. Or trying to scan your network.
AFwall+
PlayStore Link
A front end app that means you can set what apps are allowed to use Internet.
//While there is no support yet for Nougut for xposed: But for those running below The app XPrivacy is a must have! Really good security focused app.
Firefox Addons
But I use Chrome/Opera/<Insert other browser here>, I use Firefox on my phone, the reason being is because of the extension side. While I am aware opera has this addon ability, I will be using Firefox Addons only. Also Chrome has no extension support for mobile yet? Oh well munches out on RAM anyway.
These Addons are mirrored on Opera, if you prefer Opera, I'm sure you can find the same addon or one that works similar.
Bluhell Firewall
Addons Link
Lightweight Ad-Blocker and Tracking/Privacy Protector.
CanvasBlocker
Addons Link
Blocks the JS-API for modifying to prevent Canvas-Fingerprinting
CleanLinks
Addons Link
Converts obfuscated or nested links to genuine clean links.
Decentraleyes
Addons LinkThe aim of this add-on is to cut-out the middleman by providing lightning speed delivery of local (bundled) files to improve online privacy.
Disable WebRTC
Addons Link
WebRTC leaks your actual IP addresses from behind your VPN, by default.
HTTPS Everywhere
Addons Link
enabling HTTPS encryption automatically on sites that are known to support it
Privacy Badger
Addons Link
Better Privacy stops ads and invisible trackers
Pro Latte Content Filter
Addons Link
Block sites containing pornography, or any other kind of material, based on simple keyword lists.
Self Destructing Cookies
Addons link
BOOM!! GOES THE COOKIES.
//Optional
Less spam, please
Addons Link
Disposable Emails. Great for them pesky sites that ask for emails the spam you with rubbish
Ad Block plus
Addons Link
Does what it says on the tin. There are Addons that block pages from saying you have an ad blocker.
Secure Mail Providers
Why more people don't use secure encryption emails is beyond me sometimes. But regardless it's something I'd strongly recommend! Tell your friends too, and family! Get your dog on them. While there are a number available the following are ones I've used or still continue to use!
Proton Mail
Lavabit.com
hushmail.com/
vfemail.net/
Proton Mail is the main one I use anymore. It's an excellent app and great service with double log in and encryption. Like your emails in a double safe. Do note! If you forget your password, it will turn your emails into plonk and be completely useless.
Thank you for reading this post! I really appreciate it, I put this together just so people can be helped there is no one place. My hope is to turn this into quite a buzzing post, I'd like to constantly update it having it a great go to resource for your needs. Give me a thanks for my hard work if you think it's deserved
Warning: The following is not for Amateurs or new to XDA, you MUST be running a LinuxGNU interface! This is extra security usually set on PCs, and may work depending on your interface.
A Tad too Paranoid
Ipkungfu
Open up your terminal running in your Linux IDE.
Input :
Code:
sudo apt-get install ipkungfu
Next we need to configure the file there are two ways to do this way 1 you can configure in the terminal with "Nano" :
Code:
sudo nano /etc/ipkungfu/ipkungfu.conf
Or move it to SD card, open with your favorite text editor then move back like so:
Code:
mv /etc/ipkungfu/ipkungfu.conf /sdcard
Then to move back:
Code:
mv /sdcard/ipkungfu.conf /etc/ipkungfu
Once you have got the config file open you want to un comment and adjust accordingly to your needs. Here is an example of what you can change:
Code:
# IP Range of your internal network. Use "127.0.0.1"
# for a standalone machine. Default is a reasonable
# guess.
LOCAL_NET="192.168.1.0/255.255.255.0"
-------
Code:
# Set this to 0 for a standalone machine, or 1 for
# a gateway device to share an Internet connection.
# Default is 1.
GATEWAY=0
-------
Code:
# Temporarily block future connection attempts from an
# IP that hits these ports (If module is present) FORBIDDEN_PORTS="135 137 139"
-------
Code:
# Drop all ping packets?
# Set to 1 for yes, 0 for no. Default is no.
BLOCK_PINGS=1
-------
Code:
# What to do with 'probably malicious' packets
#SUSPECT="REJECT"
SUSPECT="DROP"
-------
Code:
# What to do with obviously invalid traffic
# This is also the action for FORBIDDEN_PORTS
#KNOWN_BAD="REJECT"
KNOWN_BAD="DROP"
-------
Code:
# What to do with port scans
#PORT_SCAN="REJECT"
PORT_SCAN="DROP"
These are just a suggestion, adjust to your needs!
Once you've done and moved back or saved the nano, (to save use ctrl+X) everything should be done. Now type in:
Code:
sudo ipkungfu
Jump on over to shields Up and see something Coolio. Hopefully.
Snort
This is intrusion detection, have a look at seeing who's been at your door, this is a basic configuration. To set this up. We simply type:
Code:
sudo apt-get install snort
Once that's done type:
Code:
snort -D
All done, you can view live packets like so:
Code:
sudo snort
Or view logs:
Code:
sudo nano /var/log/snort/alert
~ More May be added soon
~ Give us a thanks please

Reserved

Please, go on.

Thanks for this guide. I now have my device encrypted. On Marshmallow it does not explicitly say that my SD Card is also encrypted (its formatted as internal storage) but according to articles out there actually it is.
Yes, I don't know why email encryption is not more widely adopted. For personal every day emails "Hi, how you doing ? Had a great day?" kind of thing maybe that's not the most sensitive info. But what if it contains a meeting place to go and pick up your child at and you are late ? Paranoid ? In today's world ? But what about actual sensitive data. I'm talking about charities that help victims of abuse. The Samaritans. Other organisations that help victims of child trafficking. I once volunteered for an organisation that helped people illegally pursued by a government run organisation. I eventually found out that they had no, I mean ZERO, ZILCH security policy yet they were holding sensitive details about individuals who were in danger. After failing to get their board of directors to change things I resigned from the organisation. So anyway back on topic ... I just checked cPanel and my host does allow "GnuPG" encryption on email. So when I've figured out how to set it up and use the appropriate app on my device (starting with list above of course) I come back here.

Awesome guide. I know this thread is a couple years old but still applies.
Anyone have any opinions or comments about Proton VPN? I see the Proton mail is on the list which I also use. Just curious about the VPN.