[APP][5.0+] Nebulo: DNS Changer for DoH/DoT against censorship[open source][no root]

[APP][5.0+] Nebulo: DNS Changer for DoH/DoT against censorship[open source][no root] - Android Apps and Games

{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Hi!
I'm Daniel, the developer of the open-source app Nebulo.
Nebulo is a DNS Changer which uses DNS-over-HTTPS (DoH) and DNS-over-TLS (DoT) to transmit dns queries from your device safely to a server of your choice. It contains a bunch of useful features and even has inbuilt adblocking capabilities.
It is easy to use, your device doesn't need to be rooted and the app itself neither has any ads, nor does it contain any tracking.
I'm creating this post here because I want to share what I, together with my community, have created over the last two years and because I want to share the results this far with the XDA community as well.
Introduction
I created this app in 2018 because the ever-lingering presence of trackers, ads and DNS query interception by ISPs bothered me.
DoT/DoH have become important parts to alleviate at least the second part, tracking and censorship done by your ISP. By encrypting your DNS queries only you and the DNS server know the contents of your queries and no outsider can manipulate them. This helps fight censorship as a lot of websites wordwide are blocked by your ISP using their DNS servers or DNS manipulation, most of the time at the instruction of your government.
By adding relevant features I also combat the first part, the vast amount of ads and tracking present in the web. It's easy to import blocklists which prevent ads and tracking from even being loaded.
Nebulo works by creating a local dummy VPN to force Android into sending all DNS requests to Nebulo. Nebulo then forwards them safely. This dummy VPN does not tunnel anything, so be aware that it does not hide your IP address or otherwise functions as a normal VPN.
This dummy VPN is used by default, but can be disabled by using non-VPN mode. Click here for more information.
Screenshots
Features
Nebulo is very feature-rich. Most of them stemmed out of user feedback, an important part of my development journey. Feel free to share any feedback and your experiences with the app directly here in XDA, in my Git here or feel free to join the community in Telegram as explained below.
Some core features:
Use any DoH/DoT server you like (there is a big list of servers already listed in the app. Feel free to add your own!)
DNS Query logging, so you can see what your apps are doing in the background
DNS server speed test, to compare which one is fastest for your location
Small battery footprint. Nebulo is highly optimized to use as less energy as possible
Nebulo is highly stable and seldom crashes (and if it does the crash is fixed quickly )
DNS rules, where you can import block lists (for example to block ads, tracking or even porn) or block domains by hand
Customizable DNS caching options
A non-VPN mode where the dummy VPN is not required. With this mode active you can use Nebulo and for example NetGuard at the same time!
PIN protection if you for example want to use the app on your kids device
Highly customizable, almost every basic aspect can be configured
Most features should be self-explanatory. If something is unclear look in the FAQ and don't hesitate to ask
Community
I use Telegram for my community management. There is a group for questions, feedback and other topics and a channel which only contains new versions with their changelog. You can join our 450+ members group by clicking here. If you only want to be informed about updates feel free to subscribe to the channel by clicking here.
Of course I'll also be present here
Downloading
Nebulo can be downloaded from three sources:
Play store
F-Droid (custom repo)
Telegram group (see above)
You can find changelogs inside the app and also here.
Why choose a different DNS server?
There are multiple reasons why changing your DNS server to something else than your ISPs default can be desirable. One point which has been mentioned more than enough is that it grants you a little bit more privacy because your ISP can't mess with your DNS queries anymore. Another reason could be to achieve adblocking (or anything else, like porn) or to experience faster gaming. Whilst changing your DNS server does not give you a better ping or improve your download speed per se it can, depending on which DNS server you use, return better results to a DNS query than your ISP would (here better means the server is faster reachable by you). This achieves a effect which is very similar to enhancing your ping over all. Treat this statement with a grain of salt though, most DNS servers are already optimized, only some third-world contries have DNS servers which don't always return good results.
Which DNS server should I use?
Nebulo provides a reasonable list of DNS servers out of the box. Depending on what you want to achieve you are free to use any you like. If what you are after is speed then feel free to use the DNS speed test to determine the fastest server. For a rather privacy-focused experience I recommend Quad9.
Closing words
Thank you for checking out Nebulo! If you have any feedback I'd love to hear it. Nebulo wouln't be what it is today if it wasn't for all the alpha/beta-testers and all the people in the Telegram group sharing their thoughts.
I hope that Nebulo is useful to you!
-----
Licensed under the GPLv3
XDA:DevDB Information
Nebulo - DNS Changer for DNS over HTTPS/TLS, App for all devices (see above for details)
Contributors
Ch4t4r
Source Code: https://git.frostnerd.com/PublicAndroidApps/smokescreen
Version Information
Status: Stable
Current Stable Version: 1.4.1.1
Stable Release Date: 2020-08-31
Created 2020-08-31
Last Updated 2020-09-03

Couldn't miss Nebulo as it has been part of my everyday toolset for quite some time now. Great work my friend!

Hi there Daniel.
I use Nebulo on all Android 6+ devices that don't have Private DNS. I think you should mention how super light your app is on the battery (presumably due to split-tunnel on just port 53). It runs flawlessly without any crashes. I'm surprised you're still in beta!
Your work on Nebulo is invaluable. And also, I believe yours is the only app to support DoT? Way to go!
Kudos.

Thank you both for your kind words
ignoramous said:
I think you should mention how super light your app is on the battery (presumably due to split-tunnel on just port 53)
Click to expand...
Click to collapse
Good idea, I've just done that. And yes, it's because of split-tunneling and other small optimizations I've done.
ignoramous said:
I'm surprised you're still in beta!
Click to expand...
Click to collapse
Oh, I'm actually in stable, did I forget to remove a reference to beta somewhere outside of XDA?
ignoramous said:
Your work on Nebulo is invaluable. And also, I believe yours is the only app to support DoT? Way to go!
Click to expand...
Click to collapse
I think it is, yeah. But DoH or DoT more or less offer the same privacy, I only added DoT to bring it to older devices as well (and of course because my users asked for it )

Ch4t4r said:
Oh, I'm actually in stable, did I forget to remove a reference to beta somewhere outside of XDA?
Click to expand...
Click to collapse
Yes, on the PlayStore it says "Beta" https://play.google.com/store/apps/details?id=com.frostnerd.smokescreen
Also, what's it about DoH that didn't work on older Android devices? That sounds strange...

ignoramous said:
Yes, on the PlayStore it says "Beta" https://play.google.com/store/apps/details?id=com.frostnerd.smokescreen
Click to expand...
Click to collapse
It does so automatically when you signed up for the open Beta. The Beta is superseded by the production build though

Great app. Can you make adding an DoT address case sensitive please? Case sensitivity has an effect on how NextDNS logs custom DNS queries. Thank you and keep up the great work!

Trickymaster said:
Great app. Can you make adding an DoT address case sensitive please? Case sensitivity has an effect on how NextDNS logs custom DNS queries. Thank you and keep up the great work!
Click to expand...
Click to collapse
Thanks for your feedback! Sure, I'll implement it for the next update.

Hi, is there any way to control the app from Automate? I don't use Tasker and i can't find any docs or examples on how to set up the app activities/data (whatever they are called) to be able to stop and start the VPN. I've done this before with OpenVPN and starting and stopping its VPN, then I can then get it to disble/enable Nebulo according to what WiFi network I am connected to, or for any other reason.
Thanks, and great application btw :good:

I see improved latency in the latest Nebulo version with DNS over HTTPS, of about 15% to 30%. Nice.
What changed?

plz add more dot servers, my country iran block all of them, plz add hundreds dot servers to test!

Nice app! Thank you!
I am using it with netguard. One thing that you should add to your manual:
I had to use manual dns settings in my wifi/mobile apn settings (127.0.0.1).
Otherwise the redirect rule in netguard didnt´t work! Also I deactivated IPv6 in my adapaters.
In Netguard don´t add a hosts file.
Another tipp: I use a hosts file which is pointing all adblocking hosts to my own webserver.
At my webserver I am serving a blank html page for all those IP calls (using mod_rewrite).
This way I got rid of the ugly "dns not resolved" error for the blocked pages
Code:
<VirtualHost 123.123.123.123:80>
DocumentRoot "${INSTALL_DIR}/www/blank/"
ServerName 123.123.123.123
</VirtualHost>
<VirtualHost 123.123.123.123:443>
DocumentRoot "${INSTALL_DIR}/www/blank/"
ServerName 123.123.123.123
add your ssl settings here
</VirtualHost>
.htaccess
Code:
RewriteEngine on
RewriteBase /blank
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^(.*)$ blank.html [QSA,L]

I'm new to DNS and all of this is mild jargon for me right now. A friend did tell me that I had to use a DNS changer to access content from my home country in the Middle East and that is how I landed up on this page.
Before I begin my journey of trial and error, can I please ask if it will be possible to have this app work on Android TVs too? Would be a lot better than side-loading and then playing around with things like Rotation Control if it were to work directly!
Thank you and cheers!

Hello, first of all thank you for the great application. I use it in non-VPN mode (together with different vpn app) all configured like described on https://git.frostnerd.com/PublicAndroidApps/smokescreen/-/blob/master/FAQ.md#non-vpn-mode. I have one question regarding the communication that I recorded using Wireshark on my laptop (working as a hotspot). It looks like some of the communication is not encrypted and there is readable DNS communication (e.g. for the play.googleapis.com address). Can someone explain this to me?

lukval said:
Hello, first of all thank you for the great application. I use it in non-VPN mode (together with different vpn app) all configured like described on https://git.frostnerd.com/PublicAndroidApps/smokescreen/-/blob/master/FAQ.md#non-vpn-mode. I have one question regarding the communication that I recorded using Wireshark on my laptop (working as a hotspot). It looks like some of the communication is not encrypted and there is readable DNS communication (e.g. for the play.googleapis.com address). Can someone explain this to me?
Click to expand...
Click to collapse
Domain names are not encrypted while using DoT or any other protocol.
Not even while using dnscrypt (saying this because I was using dnscrypt and thought everything was encrypted).
I also want to point out that nebulo is using telegram and google store as download methods, both having horrible privacy practices.
Gitlab doesn't have binaries to be downloaded, neither github.
Fdroid repo is not working anymore.

Related

[APP][4.0+][Unlimited][No Coupon] ? Totally Free VPN ?- Hundreds of VPN Servers!

{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Update: I have reports from users that some UDP protocol servers can work in CḨ|NǍ, TCP protocols are blocked. I have added a protocol filter to help with that.
Hi All,
I released a new app, would like to share with all of you.
Totally Free VPN
Bypass blocked websites and applications
Hosted by volunteers from all over the world by the VPN Gate project
Fast and lightweight
Built in VPN connection feature
Minimal configuration required
Free of charge at no cost
100% secure access
Disguise your IP address while surfing
Protect yourself using when public WiFi networks by utilizing it's strong encryption
Features
=======
Search by multiple attributes
Sort by multiple attributes
Simple one screen interface
I am very honoured to have the very talented Hvffer create this video for us
Credits
=====
☆ VPN Gate Project (http://vpngate.net)
☆ UI is provided by FlatUI for Android by Emrullah Lüleci (https://github.com/eluleci/FlatUI)
☆ Underlying OVPN codes is handled by OpenVPN for Android project by Arne Schwabe (https://github.com/schwabe/ics-openvpn)
☆ Launcher Icon is made by TutsPlus from Flaticon (www.flaticon.com) licensed under Creative Commons BY 3.0.
Download from https://play.google.com/store/apps/details?id=net.rejinderi.totallyfreevpn
*NOTE* A few Sony users reported that the app will stuck at connecting thus I remove all Sony devices from the listing. Sony devices please download at your own risk.
*NOTE* Please download from the playstore to ensure you always get the latest version.
Change Log
=========
* 1.0.0 *
- Initial Release
* 1.1.0 *
- Updated OpenVPN binary
- Updated OpenSSL binary
- Added Favourite Feature
- Added Russian Localization
* 1.2.0 *
- Updated OpenVPN binary
- Updated OpenSSL binary
* 1.3.0 * [2016-08-11]
- Updated OpenVPN binary
- Updated OpenSSL binary
- Improve performance
* 1.4.0 * [2017-03-26]
- Updated OpenVPN binary
- Updated OpenSSL binary
- Fixed connectivity bug
* 1.5.0 * [2018-10-14]
- Updated OpenVPN binary
- Updated OpenSSL binary
- Improved UI
- Improved performance
- Fixed various bug
* 1.5.1 * [2018-10-19]
- Fixed pull to refresh bug
- Added refresh to action bar menu for devices that don't support pull to refresh
* 1.6.0 * [2018-11-25]
- Squashed a couple of bugs
- Interface improvements
* 1.7.1 * [2018-12-17]
- Fixed view inflation bugs
- Migrated to Android Jetpack
- Fixed traditional Chinese translation not working
* 1.8.0 * [2018-12-21]
- Fixed bugs for certain devices
- Added low reputation highlight feature
- Added more verbose error messages
* 1.8.1 * [2018-12-21]
- Fixed crashes on Android P
* 1.8.3 * [2019-01-13]
- Minor fixes
* 1.9.0 * [ 2019-01-21]
- Added Alternate DNS Resolver
* 1.12.0 * [2019-07-05]
- Added reputation system

This app is pretty sweet. Question for ya, if I have a port forwarded on my router 6881 tcp for torrenting will my router still route my download/upload through my original Public IP or the new one from vpn?
sent from my SM-N910A

I can't get the APK from the Google Store . Can some one please upload the APK ?

Yup, post apk, someone, please.

amsgh said:
This app is pretty sweet. Question for ya, if I have a port forwarded on my router 6881 tcp for torrenting will my router still route my download/upload through my original Public IP or the new one from vpn?
sent from my SM-N910A
Click to expand...
Click to collapse
I am not sure about that. curious to know as well. if u find out can u let me know too? thanks.
for those who need the apk. my phone is not rooted so I can't pull it out for u. will post when i manage to get hold of it

[email protected] said:
I can't get the APK from the Google Store . Can some one please upload the APK ?
Click to expand...
Click to collapse
xo.en said:
Yup, post apk, someone, please.
Click to expand...
Click to collapse
Here you go !! attachment may removed upon op request!

thank you sir! I have also uploaded to the main post.

Here is a link to the application
net.rejinderi.totallyfreevpn.apk 10.0 MB
https://mega.co.nz/#!3hBHjRqC!Dfft9aWOFISpbP99J1kicaP9ThMWDsDgzqL9HeidSPg

*NOTE* A few Sony users reported that the app will stuck at connecting thus I remove all Sony devices from the listing. Sony devices please download at your own risk.

Up and running. Xperia Z C6603 stock 5.0.2.

It seems to work on the higher and newer end of xperia. I have enabled playstore devices for those devices.

Awesome! Thank you!

Is this safe? Not one of those VPNs where some dude in Mexico can sit and browse my traffic is it?

There are Italian servers?

Delboyd12 said:
Is this safe? Not one of those VPNs where some dude in Mexico can sit and browse my traffic is it?
Click to expand...
Click to collapse
When you use VPN you have to take such risk, technically I think it is possible for any VPN service out there to do that. You have to weight the pros and cons. If you don't trust the project or volunteers you might want to consider using paid VPN services that you trust instead.
Hellboy880 said:
There are Italian servers?
Click to expand...
Click to collapse
Every server you see on the list is by volunteers, if there is someone from Italian hosting then it might appear on the list. If the server decides to stop hosting then it will disappear from the list.
As you can see on the List of VPN Gate Public VPN Relay Servers, there are a lot of running VPN Gate Public VPN Relay Servers. These VPN servers are neither physically placed on a specific datacenter nor a specific IP address range; they are hosted on different ISPs and on a wide variety of physical locations.
Every VPN Gate Public VPN Relay Servers are distributed and hosted by many volunteers. A volunteer is a person who owns a computer which is kept hooked up to the broadband that connects to the Internet. A volunteer agrees to provide the CPU time and the bandwidth to support the VPN Gate Academic Experiment. You can become a volunteer, too.
Volunteers are distributed throughout the world. The ISPs of volunteers also vary. So IP addresses of every VPN servers are distributed, showing no particular patterns of their assigned IP addresses. The total number of volunteers changes from time to time, so as the servers' IP addresses. Therefore, if something wrong happens to the governmental firewall, most VPN Gate servers should survive such incident. If a few VPN Gate servers become unreachable, you may choose among more servers located in a different territory.
VPN Gate is available free of charge, because our servers are hosted by volunteers and they do not spend very much for bandwidths and CPU times for the servers they have. Not only that it is free, but also you are not required to register a user account upon using this service.
To sum up, unlike the traditional shared VPN services, the VPN Gate Academic Experiment Service can be used at no costs.
Click to expand...
Click to collapse

private servers? Good app but too high risk, pass.

work on my Sony Xperia ZL Android 5.0.2.. but can i ask some question, i don't understand what VPN is.. Sorry, can someone explain what it do? Does it save my mobile cellular data plan?
I do learn fundamental network in my diploma but i'd fail those subject because of this... i don't understand what such thing as VPN, TCP blah blah... please teach me..
Sent from my C6502

daniLaLaLaLaLa said:
work on my Sony Xperia ZL Android 5.0.2.. but can i ask some question, i don't understand what VPN is.. Sorry, can someone explain what it do? Does it save my mobile cellular data plan?
I do learn fundamental network in my diploma but i'd fail those subject because of this... i don't understand what such thing as VPN, TCP blah blah... please teach me..
Sent from my C6502
Click to expand...
Click to collapse
basically vpn routes all your Internet traffic through another server or computer.
a vpn is mostly used to bypass blocked websites or access contents that are only available for certain counties.
for example if your country is blocking abc.com. then you might connect to another country such as Italy and since abc.com is not blocked in Italy you can access it.
another example would be if u tried to access a video and it says "this is only available in the US" then u will be able to view it if you use a US vpn server.

is bluffing, name application will lures, do not enter the trap, It is not totally free as name
here is a unlock for working.
https://play.google.com/store/apps/details?id=net.rejinderi.totallyfreevpn.prokey

Ohh i got it, finally a clear answer that i can use for my re-take network exam.. Thanks!
i though the VPN is used to save our cellular mobile data, so i wont need to pay for my cellular data anymore.. by the way, thank you so much..
I had google about VPN before this and i don't even understand what wiki's stay.. Stupid me
Sent from my C6502

[CLOSED][APP][6.0+] NetGuard - No-root firewall

{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
NetGuard provides simple and advanced ways to block access to the internet - no root required.
Applications and addresses can individually be allowed or denied access to your Wi-Fi and/or mobile connection.
Blocking access to the internet can help:
reduce your data usage
save your battery
increase your privacy
Features:
Simple to use
No root required
100% open source
No calling home
No tracking or analytics
No advertisements
Actively developed and supported
Android 5.1 and later supported
IPv4/IPv6 TCP/UDP supported
Tethering supported
Optionally allow when screen on
Optionally block when roaming
Optionally block system applications
Optionally forward ports, also to external addresses (not available if installed from the Play store)
Optionally notify when an application accesses the internet
Optionally record network usage per application per address
Optionally block ads using a hosts file (not available if installed from the Play store)
Material design theme with light and dark theme
PRO features
Log all outgoing traffic; search and filter access attempts; export PCAP files to analyze traffic
Allow/block individual addresses per application
New application notifications; configure NetGuard directly from the notification
Display network speed graph in a status bar notification
Select from five additional themes in both light and dark version
There is no other no-root firewall, except for clones, offering all these features.
This XDA thread is about using the latest version of NetGuard.
Off topic comments are allowed as long they are related to NetGuard and are in the general interest of the followers of this thread.
Discussion of purchases is not allowed here, please contact me via here instead.
NetGuard is being maintained and community supported, but new features won't be added anymore.
For ad blocking, see here. Ad blocking is provide "as-is".
More information on Github:
Description
Compatibility
Frequently Asked Questions (FAQ)
Permissions
Support
Contributing
Attribution
License
Downloads:
GitHub
Play store (stable)
Play store (beta)
XDA Labs (web page)
Screenshots:
For more screenshots, see here.

Reserved

NetGuard is currently in alpha testing phase.
Please report any problems you encounter.
It would be nice if someone could design an appropriate icon.

So what exactly does this do sir? I Thx
Sent from my SAMSUNG-SM-N920A using Tapatalk

1977theone said:
So what exactly does this do sir? I Thx
Click to expand...
Click to collapse
NetGuard can prevent applications from using the internet (=firewall).
You can allow/deny internet access for each application, even system applications.

So what the best setting... Use the pic U posted as a reference
Sent from my SAMSUNG-SM-N920A using Tapatalk

1977theone said:
So what the best setting... Use the pic U posted as a reference
Sent from my SAMSUNG-SM-N920A using Tapatalk
Click to expand...
Click to collapse
There's no "best" - this is subjective.
You have a list of apps, and you can choose whether or not to allow an app access to the Internet over WiFi or Mobile data.
Whether or not you want to let an app access the Internet is up to you.

I have just released alpha version 0.2 with quite some things improved.
https://github.com/M66B/NetGuard/releases/tag/0.2

I have just released beta version 0.3
https://github.com/M66B/NetGuard/releases/tag/0.3
I am using this version as production software myself now, hence why alpha changed into beta.

Will test on rooted SIII Lollipop

r25txe said:
Will test on rooted SIII Lollipop
Click to expand...
Click to collapse
Root is not needed, but please let me know about your experiences.

I have just released beta version 0.4.
Changelog/download:
https://github.com/M66B/NetGuard/releases/tag/0.4

M66B, Huge fan of your apps They are awesome.

Thanks M66B . Always nice to see your apps
Sent from my SM-N920W8 using Tapatalk

I have just released beta version 0.5.
Changelog/download:
https://github.com/M66B/NetGuard/releases/tag/0.5
Your feedback, both positive and negative, is appreciated.

Is it (technically) possible to add "on-demand" feature ?
Maybe something close to how LBE works ... Yes/No/Don't ask again
Suggestion...

Jeff_i said:
Is it (technically) possible to add "on-demand" feature ?
Maybe something close to how LBE works ... Yes/No/Don't ask again
Suggestion...
Click to expand...
Click to collapse
Not on a granular, per-app basis, at least right now.
NetGuard for Android works by creating a VPN service at system level. Based on your choices in the allow/deny screen, NetGuard will set up VPN rules for which apps are forced through the "VPN". The "VPN" isn't a real VPN; rather, it just sinkholes the traffic to nowhere.
The limitation here is that when creating these rules, we can only set which applications' traffic enters the VPN. We can't granularly control which requests or hosts they can talk to, on a per-app basis. It would be possible to set "for all apps" a whitelist/blacklist of IP addresses, but this would be quite different, and would likely be less useful as a firewall, and more useful as simply an "ad blocker".
The VPN interface doesn't tell us which app is trying to access the internet though - we need to set it up before-hand. There are ways to tell, but Google (or a careful OEM) could easily block those with SELinux policy updates, and the goal here is to try to get all the functionality we need without any kind of root access.

Nice app for non rooted users.
I've just created an issue on Github though.
French translation done.
I'll try to create an icon this weekend if I have free time. Let me know if you want a specific color,... etc.

Primokorn said:
Nice app for non rooted users.
I've just created an issue on Github though.
French translation done.
I'll try to create an icon this weekend if I have free time. Let me know if you want a specific color,... etc.
Click to expand...
Click to collapse
The problem you have reported is probably caused by a broken VPN implementation in your ROM. I will look into it later this week more detailed.
I like to keep the current colors, realizing not everybody will like them, but I know from experience I can't make everybody happy anyway.
Thanks for your translation!

@Primokorn can you please try if you have the same problem with one of the no root firewalls from the Play store?

[APP][4.4+] Bitwarden - Open Source Password Manager

Thanks for opening a thread on XDA.
I'm waiting for a few features before leaving Lastpass.
Keep it up! You have already done an awesome job!

Primokorn said:
Thanks for opening a thread on XDA.
I'm waiting for a few features before leaving Lastpass.
Keep it up! You have already done an awesome job!
Click to expand...
Click to collapse
Thanks! Hoping to spark some interest/discussion/feedback here.

How close are you to the accessibility service and allowing automatic filling in of apps and internet like LastPass does? This is basically what I am waiting for and that is it.

LudoGris said:
How close are you to the accessibility service and allowing automatic filling in of apps and internet like LastPass does? This is basically what I am waiting for and that is it.
Click to expand...
Click to collapse
Hoping to have it available within the next couple of months. You can track progress of that feature here: https://github.com/bitwarden/mobile/issues/1

I've just read your email for the Kickstarter compaign and I'm willing to pay for the Early Backer Lifetime Premium Membership.
As you explain on HN, bitwarden is sponsored by the Microsoft BizSpark program. So could you give more explanations? For how long is it sponsored by Microsoft? What could happen if you don't reach $49,000?
My main worries are Auto-fill for Android and Independant security audits. Do you plan annual audits of the whole source code?
I dont really understand this point:
Operations. Growing bitwarden requires investment to accelerate product feature development and power our secure product servers.
Click to expand...
Click to collapse
Servers are managed by Microsoft Azure? Do you want to leave Microsoft and increase your server access/storage?
Did you ever consider using other services than the one provided by Microsoft ('a GAFAM')?
French translation done

Can you also explain, why you (bitwarden) over established brands like LastPass and Dashlane?

LudoGris said:
Can you also explain, why you (bitwarden) over established brands like LastPass and Dashlane?
Click to expand...
Click to collapse
I can at least say that bitwarden is fully open source, the main reason why I will probably stop using LastPass.
Kyle (kspearrin) takes into account users feedbacks and seems to be opened to suggestions. AFAIK it's as secure as LastPass.

Primokorn said:
I've just read your email for the Kickstarter compaign and I'm willing to pay for the Early Backer Lifetime Premium Membership.
As you explain on HN, bitwarden is sponsored by the Microsoft BizSpark program. So could you give more explanations? For how long is it sponsored by Microsoft? What could happen if you don't reach $49,000?
My main worries are Auto-fill for Android and Independant security audits. Do you plan annual audits of the whole source code?
I dont really understand this point:
Servers are managed by Microsoft Azure? Do you want to leave Microsoft and increase your server access/storage?
Did you ever consider using other services than the one provided by Microsoft ('a GAFAM')?
French translation done
Click to expand...
Click to collapse
Our current sponsorship lasts for 2.5 more years, however, this sponsorship is not infinite. As bitwarden grows larger we will outgrow the sponsorship and need additional investment. We are not anywhere near our ceiling on this yet though.
If we do not reach our goal, I will still continue working on the project and the features outlined. That is not in question. Things just might move at a much slower pace than I would like since I have other obligations that prevent me from doing this full-time.
Leaving Azure is not in question at the moment. It works well and supports our needs.
Thanks again for your french translations!

@Primokorn Could you please email from the contact form on the website, https://bitwarden.com/contact/? I'm trying to collect all of the translation contributors contact information so that I can keep you up to date via email when translations change. Thanks.

kspearrin said:
@Primokorn Could you please email from the contact form on the website, https://bitwarden.com/contact/? I'm trying to collect all of the translation contributors contact information so that I can keep you up to date via email when translations change. Thanks.
Click to expand...
Click to collapse
No problem. Done.
I'll do the missing translations in the coming days.

Update for 1.2.1 posted.
https://github.com/bitwarden/mobile/releases/download/v1.2.1/com.x8bit.bitwarden.apk
- Performance improvements
- Bug & crash fixes
- Added Chinese language localization

Updated for version 1.3.0 with autofill! @LudoGris
https://github.com/bitwarden/mobile/releases/tag/v1.3.0
- New auto-fill accessibility service to auto-fill your logins into other apps and websites. Check the tools screen for more info on setting it up!
- Finnish language added
- Support for "equivalent domains" when auto-filling (configurable from web vault)
- Better syncing
- Bug & crash fixes

Why auto fill is not working with uc browser ?

jerryn70 said:
Why auto fill is not working with uc browser ?
Click to expand...
Click to collapse
Some browsers do not work properly with accessibility services so we cannot support them at this time. I haven't tested UC browser through. Can you link me to it and I'll check it out.

kspearrin said:
Some browsers do not work properly with accessibility services so we cannot support them at this time. I haven't tested UC browser through. Can you link me to it and I'll check it out.
Click to expand...
Click to collapse
https://play.google.com/store/apps/details?id=com.UCMobile.intl

Why we need to add seperate login details for app and it's site ?
If I add xda app login details to bitwarden, then when I visit xda site, again I need to add the login details to bitwarden.
In lastpass we need to enter only one. If we add app login details, when we visit it's website it will auto detect the details.

jerryn70 said:
Why we need to add seperate login details for app and it's site ?
If I add xda app login details to bitwarden, then when I visit xda site, again I need to add the login details to bitwarden.
In lastpass we need to enter only one. If we add app login details, when we visit it's website it will auto detect the details.
Click to expand...
Click to collapse
Yep that is a mess.
---------- Post added at 08:54 PM ---------- Previous post was at 08:45 PM ----------
@kspearrin you have a wonderful app here. Switched from keepassx. Using it via chrome extension and android app. Issues that i found: double pass for android and web and accessibility services does not work on Chrome Dev on 7.1.1
Keep up the good work and thanks!

@jerryn70 @icrunchbanger we're working on some improvements to that flow.

@jerryn70 @icrunchbanger I've added some improvements to autofill that is now in beta to test:
1. Added two groups of logins in the autofill listing: matching logins and possible matching logins.
- Matching logins are the results from the way the current version works (complete matches).
- Possible matching logins are ones were the app tries to make a guess based on the reverse domain of the package name on an app. For example, `androidapp://com.google.plus` will match `https://google.com`. A warning alert is shown whenever you select a possible matching login for autofill since it is possible to exploit this method.
2. Added ability to search your full vault to select anything for the autofill.
Get the beta here: https://play.google.com/apps/testing/com.x8bit.bitwarden
Let me know any feedback and I'll plan on publishing this soon.

[APP][8.0+] Native Alpha - Transform any website into native fullscreen web apps

Native Alpha for Android
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Features
Show any website in a borderless full-screen window using Android System WebView.
Offers to create home screen shortcuts and retrieves icons in suitable resolution.
Various settings (JavaScript, Cookies, Third-Party-Cookies, Caching) can be set for every web app individually
Navigation with multi-touch gestures while browsing.
Opt-in adblock using an AdBlock Plus custom webview.
Less memory footprint and no privacy-invading app permissions in comparison to native apps
Dark mode for Android 10+
Paid Features
Sandbox containers: Web Apps are loaded in fully separated sandboxes, cookies or other data are not shared with other Web Apps
Kiosk Mode: Fullscreen with menubars hidden
Experimental "Force Dark Mode" also available for websites (configurable with respect to day-time)
Biometric Access Protection: For every Web App, you can enable access protection (Fingerprint + fallback to lockscreen PIN)
Download Options
Latest version: 1.3.0
Paid Download
FAQ
Q: Why is it not possible to find an icon for a certain website?
A: This problem can occur due to multiple reasons. In most cases, the website does not offer a high-resolution icon. If you are a website maintainer and your website icon cannot be found, look at realfavicongenerator.net for further information. If you think it should work, feel free to post the URL and I will look into it.
Q: Why would I need this app if any mobile browser can do the same?
A: Mobile browsers usually only are able to create shortcuts which give a native, borderless fullscreen experience if the website has a Progressive Web App (PWA) manifest. Unfortunately, most websites do not offer this feature yet.
Q: Can I keep multiple log-in sessions of the same website?
A: Yes, this is possible using the sandbox feature of Native Alpha Plus.
Q: Why isn't the sandbox feature in Native Alpha Plus enabled by default?
A: The sandboxing approach is recommended for specific usage rather than general usage because it can limit the performance of the application and increase the disk usage. Therefore, use it for privacy-invasive websites or websites where you want to be logged in twice, but not for any website just because you can.
Q: IIs this app a dedicated web browser with its own browser engine?
A: No. As stated, this app relies on the system built-in Android WebView in order to display the website. For privacy reasons, you can opt to use alternative webviews such as Bromite on rooted phones. Always make sure to use to most recent version of any WebView implementation you use!
Q: In constrast to your promise, this app has a large memory footprint!
A: This is because Native Alpha makes use of caching in the same way your browser app does, i.e., it saves web content locally on your device. Then it can be loaded faster if you visit the same page again. I will look into a way for better cache management. In the meantime, you can either delete cache regularly yourself or set the "Clear cache after usage" setting in the global settings if memory footprint is a concern for you. However, then websites will take a longer time to load because everything has to be loaded from net.
A list of used open-source libraries can be found inside the app ("About" section).
Screenshots
License
Native Alpha is Free Software: You can use, study share and improve it at your
will. Specifically you can redistribute and/or modify it under the terms of the
GNU General Public License as
published by the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.
End user license agreement
THIS SOFTWARE IS PROVIDED BY THE AUTHOR "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

Looks great in first try - seems a bit smoother than the pwa from my Site! Thank you!

Hi, thanks for sharing the app, can you please look into Hermit app?
https://play.google.com/store/apps/details?id=com.chimbori.hermitcrab
Its similar and had few additional features that are helpful.

I get an error page saying "net::ERR_CLEARTEXT_NOT_PERMITTED" whenever I follow a link to an HTTP page.

BeeWall said:
I get an error page saying "net::ERR_CLEARTEXT_NOT_PERMITTED" whenever I follow a link to an HTTP page.
Click to expand...
Click to collapse
Thanks for pointing that out. It is a security feature of Android WebView to block HTTP pages but I will offer an global option to override that behaviour (and probably enable it by default).

Just wish you could save the site as a APK.

I wish each webapp had its own cookie container Now if I create a youtube web app and then create a gmail webapp and signin, the youtube also gets signed in.

surajrv6 said:
I wish each webapp had its own cookie container Now if I create a youtube web app and then create a gmail webapp and signin, the youtube also gets signed in.
Click to expand...
Click to collapse
It is definitely on my backlog to have a better separation between the apps. It is probably not possible regarding cache but it should work to flush and reload first-party cookies from disk for every app separately. Didn't make it to first release because the WebView implementation (as any other browser I know) does not offer this cookie separation natively.

Will you put the app on F Droid or XDA Labs?

Ma20029 said:
Will you put the app on F Droid or XDA Labs?
Click to expand...
Click to collapse
Yes, shouldn't be a problem to have it released via F-Droid.

You've done a great work here, well done
Sent from my HTC One M9 using XDA Labs

BeeWall said:
I get an error page saying "net::ERR_CLEARTEXT_NOT_PERMITTED" whenever I follow a link to an HTTP page.
Click to expand...
Click to collapse
cylonid said:
Thanks for pointing that out. It is a security feature of Android WebView to block HTTP pages but I will offer an global option to override that behaviour (and probably enable it by default).
Click to expand...
Click to collapse
This is a big one for me too. I could see myself mostly using this for demos and things at work, and we don't often go through the trouble of using HTTPS. Really nice project though!

Hi, Can you please add 'Backup' and 'Restore' feature? If we have to reinstall the app it will be easy to get all the saved webapps back. Thanks for sharing.

tiniwings said:
Hi, Can you please add 'Backup' and 'Restore' feature? If we have to reinstall the app it will be easy to get all the saved webapps back. Thanks for sharing.
Click to expand...
Click to collapse
Dont't worry, that feature will be coming for sure. After all, I really need it myself
Thanks for all the positive feedback and suggestions, I will release a new version with HTTP support and a few other things on Wednesday or Thursday this week.

New release
Hi,
I just released a new version on GitHub.
Changelog:
HTTP connection handling: Added an option "Allow HTTP" on Web App level. Upon establishing a HTTP connection for the first time, the user gets a prompt and can decide to allow HTTP within the currently opened Web App (i.e., the user will not get prompted again).
SSL error handling: Alert dialog is shown, the user is advised to leave.
Data savings: Added options to send "Save-data" HTTP header and to block the loading of images.
Redesigned and restructured the Web App Settings + Global Settings page.
Added PayPal donation button to About page.
Next up: Improve test coverage, prepare the app for F-Droid release.
Stay tuned for further improvements

Awesome app!
Can you add an option to add a custom icon to websites?

E!ad said:
Awesome app!
Can you add an option to add a custom icon to websites?
Click to expand...
Click to collapse
Yes, custom icons are already on my backlog
I submitted the app to F-Droid today, but I suppose it can take a while until they actually confirm the inclusion in their repo. Anyway, I will continue to offer the APK on GitHub at least until I implemented the backup/import settings feature so early adopters can switch from GitHub to F-Droid deployment easily.

cylonid said:
Yes, custom icons are already on my backlog
I submitted the app to F-Droid today, but I suppose it can take a while until they actually confirm the inclusion in their repo. Anyway, I will continue to offer the APK on GitHub at least until I implemented the backup/import settings feature so early adopters can switch from GitHub to F-Droid deployment easily.
Click to expand...
Click to collapse
Thanks

Hello !
I've been looking to do that manually for some time, your app does the work really well ! Great job !
As a suggestion, it would be great if we could add shortcut in the app drawer, not only homecreens.

draentor said:
Hello !
I've been looking to do that manually for some time, your app does the work really well ! Great job !
As a suggestion, it would be great if we could add shortcut in the app drawer, not only homecreens.
Click to expand...
Click to collapse
Hi, I am afraid there is no possibility to add shortcuts to the app drawer dynamically for Android Oreo or newer. All shortcuts besides the main app shortcut must be pre-defined and baked into the APK.

[APP][5.1+] TrackerControl: Control Trackers and Ads

Latest version fixes some issues with Android 11!

It won't install for me on Android 11 w/ F-Droid. I just get "Error installing TrackerControl: Failed to install due to an unknown error"

JeepFreak said:
It won't install for me on Android 11 w/ F-Droid. I just get "Error installing TrackerControl: Failed to install due to an unknown error"
Click to expand...
Click to collapse
This is a frustrating error of F-Droid. Try the GitHub version.

Does the battery consume much?

Nvkw said:
Does the battery consume much?
Click to expand...
Click to collapse
No, negligible. You won't notice any difference from your normal battery usage.

HoW is this different from let's say blokada or adguard ?great tool nonetheless

skivnit said:
HoW is this different from let's say blokada or adguard ?great tool nonetheless
Click to expand...
Click to collapse
The tool is meant to show you more insights into blocking (e.g. the type of tracking, the companies behind tracking, and destination countries), whilst allowing granular blocking for each app.
By default, all detected tracker communications are blocked, including google.com. This will break stuff and needs more configuration for each app but reduces unwanted and unexpected data collection.

New version comes in 8 languages!
Download here: https://github.com/OxfordHCC/tracker-control-android

TrackerControl now has its own, dedicated website: https://trackercontrol.org/
It's tracker-free.

Too bad it doesn't support custom dns addresses and requires a vpn to use. Would be nice to make it work together with Adguard.

vangry2020 said:
Too bad it doesn't support custom dns addresses and requires a vpn to use. Would be nice to make it work together with Adguard.
Click to expand...
Click to collapse
You're right about AdGuard. The VPN solution is meant to make the app easy to use.
However, you can add custom DNS addresses and custom blocklist, auch as AdGuard's, in the settings.

New release:
- FEATURE: Add port forwarding
- Categorise more trackers, add 'Fingerprinting' category
- Fix problems with Android 11
- Clarify updating of block list in UI
- Update translations, libraries, and block list
Download: https://github.com/OxfordHCC/tracke...nload/TrackerControl-githubRelease-latest.apk

Excuse my excelent english , i hope you understand.
Nothing's in the world is for nothing. This cost your Time, the webside cost ...
My money will traveling to you. 2 way's: donate-button or make a pro-version.
I pay for pro-version 5€. Only to help you.
lovely greatings
James

I'm very impressed with the usability and granularity of this app, but I need to retain the ability to use VPNs. Is there a similar solution for root user? Or is there a way for root users to "chain" VPN connections and use TrackerControl with other VPNs?

TechShelter said:
I'm very impressed with the usability and granularity of this app, but I need to retain the ability to use VPNs. Is there a similar solution for root user? Or is there a way for root users to "chain" VPN connections and use TrackerControl with other VPNs?
Click to expand...
Click to collapse
I'm afraid that this is still an open problem. Blokada offers VPN for its Pro users, but you need to pay, must trust the Blokada company with your network traffic, and will have a different user experience compared to TC.

JamesBott said:
Excuse my excelent english , i hope you understand.
Nothing's in the world is for nothing. This cost your Time, the webside cost ...
My money will traveling to you. 2 way's: donate-button or make a pro-version.
I pay for pro-version 5€. Only to help you.
lovely greatings
James
Click to expand...
Click to collapse
Hi James,
This is very kind. There are no plans to introduced any payment or donation option. It's just a personal project. This will mean that updates for TC take more time, the app frontend is less fancy than for similar apps, but hopefully to create an app that you can trust.

kasnder said:
I'm afraid that this is still an open problem. Blokada offers VPN for its Pro users, but you need to pay, must trust the Blokada company with your network traffic, and will have a different user experience compared to TC.
Click to expand...
Click to collapse
It's not just privacy type VPNs I need, I also use VPN to access my home network and work. The best workaround I've found so far is to create additional work profiles using Island or the FOSS fork Insular. Each Android work profile has a separate network connection, so this at least allows me to use all the VPNs I want concurrently, including TrackControl. But not together on the same profile as you're aware.
I saw another post indicating that chaining VPNs together on the same profile requires root access, which I'm fine with, but I still haven't located any info how to actually execute this.
Kudos for creating a great piece of software that really fills a need. You've managed to create a package that is highly effective and reasonably straightforward, not a simple task. Thank you for your work.

TechShelter said:
The best workaround I've found so far is to create additional work profiles using Island or the FOSS fork Insular. Each Android work profile has a separate network connection, so this at least allows me to use all the VPNs I want concurrently, including TrackControl. But not together on the same profile as you're aware.
Click to expand...
Click to collapse
I like this workaround! I've added this here: https://github.com/OxfordHCC/tracker-control-android/issues/61
One thing that I'm considering adding is automatic changing of DNS, depending on WiFi networks. This would allow to switch to PI Hole in a local WiFi network if needed.

Fabulous interface!! One thing, what's your thought on adding a quick pad for blocking url?
I.e let's say in log, I found ads.alibaba.bla and want to block. May be a option to send it so block list?
Well the app is a lot cleaner, so may be in advance options, a option with a pad where I write a url, and url will be added to block list?

Tanzin01 said:
Fabulous interface!! One thing, what's your thought on adding a quick pad for blocking url?
I.e let's say in log, I found ads.alibaba.bla and want to block. May be a option to send it so block list?
Well the app is a lot cleaner, so may be in advance options, a option with a pad where I write a url, and url will be added to block list?
Click to expand...
Click to collapse
Glad you like it! I'm on it!
I want to add domain-based blocking soon. Users would then be able to choose whether they like the easy blocking or want to use advanced blocking instead.

Database Info

welcome