About FreeBrowser FreeBrowser is a free, censorship-resistant web browser developed by GreatFire.org. The tool’s circumvention capabilities are integrated directly within a browser interface, providing a seamless and easy-to-use method to access blocked websites for people in repressive information contexts. Audit description OTF’s Security Lab partner, 7ASecurity, conducted a penetration test and “whitebox” audit of the FreeBrowser platform between February and …
7ASecurity audit, Android, FreeBrowser, internet censorship, Linux, Mac, OS Hardening, OTF, Public Pentest Report, public report, supply chain, Threat Model, Whitebox Audit, Windows
7ASecurity is proud to share the results of our security audit of Thunderbird Send. Thunderbird Send is an open source platform for sending and receiving end to end encrypted files, for use with Mozilla Thunderbird or web browsers. With the help of the Open Source Technology Improvement Fund and the Mozilla Foundation, this project will …
Cloud Audit, OpenSourceSecurity, PenetrationTesting, Public Pentest Report, Security Audit, SecurityHardening, supply chain, Supply Chain Audit, Threat Model, ThreatModeling, Thunderbird, Thunderbirdaudit, ThunderbirdSend, Website Audit
AmneziaVPN is an open source VPN specifically designed for users in authoritarian countries with significant online censorship of content, services, and circumvention tools. The platform modifies standard VPN protocols to mask internet traffic, making it harder for sophisticated censors to detect and block. AmneziaVPN also allows users to set up and host their own VPN server. …
7ASecurity is proud to share the results of our security audit of conda-forge. conda-forge is a community-driven open source repository of conda package manager recipes. With the help of the Open Source Technology Improvement Fund and the Sovereign Tech Agency, this project has invested in its longevity and security health by hardening its resilience and …
About SecureDrop SecureDrop is an open source whistleblower submission system that media organizations and NGOs can install to accept anonymous, secure documents from sources. It receives documents via the Tor network (a distributed network of relays that help protect users’ privacy), records only the date and time of the transfer, and enables recipients to view submissions in its …
About Disguiser Disguiser is a novel framework that enables end-to-end measurement for accurately and comprehensively investigating global internet censorship practices. It’s challenging to conduct large-scale internet censorship measurement, as it involves triggering censors through artificial requests and identifying abnormalities from corresponding responses. Due to the lack of “ground truth” on the expected responses from legitimate services, …
DEfO is developing an implementation of the Encrypted ClientHello (ECH) mechanism for OpenSSL. This effectively closes a privacy loophole in the Transport Layer Security protocol. Project Overview The DEfO project is developing an implementation of the encrypted ClientHello (ECH) mechanism for OpenSSL, which is a widely used library that provides an implementation of the Transport …
