Debian Freedom Tools Anonymous browsing packages

corkscrew is a simple tool to tunnel TCP connections through an HTTP proxy supporting the CONNECT method. It reads stdin and writes to stdout during the connection, just like netcat.

It can be used for instance to connect to an SSH server running on a remote 443 port through a strict HTTPS proxy.

GNUnet is a peer-to-peer framework which focuses on providing security. All link-to-link messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the peer-to-peer traffic in UDP, TCP, or SMTP messages.

GNUnet is a peer-to-peer framework which focuses on providing security. All link-to-link messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the peer-to-peer traffic in UDP, TCP, or SMTP messages.

This package contains the fuse filesystem client. In order use GNUnet, you also need gnunet-server either on your server or on your local machine.

GNUnet is a peer-to-peer framework which focuses on providing security. All link-to-link messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the peer-to-peer traffic in UDP, TCP, or SMTP messages.

This package contains the graphical client, using the GTK+ toolkit. In order use GNUnet, you also need gnunet-server either on your server or on your local machine.

This is a piece of software that lets you tunnel IPv4 data through a DNS server. This can be usable in different situations where internet access is firewalled, but DNS queries are allowed.

iodine is similar to nstx but has password authentication, brings up the tun interface automatically and lets the user specify the IP address as a command line option.

GNU MAC Changer is an utility that makes the maniputation of MAC addresses of network interfaces easier. MAC addresses are unique identifiers on networks, they only need to be unique, they can be changed on most network hardware. MAC addresses have started to be abused by unscrupulous marketing firms, government agencies, and others to provide an easy way to track a computer across multiple networks. By changing the MAC address regularly, this kind of tracking can be thwarted, or at least made a lot more difficult.

Features:

• set specific MAC address of a network interface
• set the MAC randomly
• set a MAC of another vendor
• set another MAC of the same vendor
• set a MAC of the same kind (eg: wireless card)
• display a vendor MAC list (today, 6200 items) to choose from

Metadata consist of information that characterizes data. Metadata are used to provide documentation for data products. In essence, metadata answer who, what, when, where, why, and how about every facet of the data that are being documented.

Metadata within a file can tell a lot about you. Cameras record data about when a picture was taken and what camera was used. Office documents like PDF or Office automatically adds author and company information to documents and spreadsheets.

Maybe you don't want to disclose those information on the web.

Mat only removes metadata from your files, it does not anonymise their content, nor can it handle watermarking, steganography, or any too custom metadata field/system.

If you really want to be anonym, use format that does not contain any metadata, or better: use plain-text.

Formats supported to some extent are:

• Portable Network Graphics (PNG)
• JPEG (.jpeg, .jpg, ...)
• Open Document (.odt, .odx, .ods, ...)
• Office Openxml (.docx, .pptx, .xlsx, ...)
• Portable Document Fileformat (.pdf)
• Tape ARchive (.tar, .tar.bz2, .tar.gz)
• ZIP (.zip)
• MPEG Audio (.mp3, .mp2, .mp1, .mpa)
• Ogg Vorbis (.ogg)
• Free Lossless Audio Codec (.flac)
• Torrent (.torrent)

This is a transitional dummy package to ease the migration from the mozilla-noscript to the new xul-ext-noscript package. You can remove it safely.

obfs4proxy is a tool that attempts to circumvent censorship by transforming the Tor traffic between the client and the bridge. This way censors, who usually monitor traffic between the client and the bridge, will see innocent-looking transformed traffic instead of the actual Tor traffic.

obfs4proxy implements the obfsucation protocols obfs2, obfs3, and obfs4.

It is written in Go and is compliant with the Tor pluggable transports specification, and its modular architecture allows it to support multiple pluggable transports.

obfsproxy is a tool that attempts to circumvent censorship by transforming the Tor traffic between the client and the bridge. This way censors, who usually monitor traffic between the client and the bridge, will see innocent-looking transformed traffic instead of the actual Tor traffic.

It is written in Python and is compliant with the Tor pluggable transports specification, and its modular architecture allows it to support multiple pluggable transports.

OnionCat creates a transparent IP layer on top of Tor hidden services. It transparently transmits any kind of IP-based data through the Tor network on a location hidden basis. You can think of it as a point-to-multipoint VPN between hidden services.

OnionCat is a stand-alone application which runs in userland and is a connector between Tor and the local OS. Any protocol based on IP, such as UDP or TCP, can be transmitted.

OnionCat supports IPv6; native IPv4 forwarding, though still available, is deprecated: the recommended solution for IPv4 forwarding is to build a IPv4-through-IPv6 tunnel through OnionCat.

OpenVPN is an application to securely tunnel IP networks over a single UDP or TCP port. It can be used to access remote sites, make secure point-to-point connections, enhance wireless security, etc.

OpenVPN uses all of the encryption, authentication, and certification features provided by the OpenSSL library (any cipher, key size, or HMAC digest).

OpenVPN may use static, pre-shared keys or TLS-based dynamic key exchange. It also supports VPNs with dynamic endpoints (DHCP or dial-up clients), tunnels over NAT or connection-oriented stateful firewalls (such as Linux's iptables).

Privoxy is a web proxy with advanced filtering capabilities for protecting privacy, filtering web page content, managing cookies, controlling access, and removing ads, banners, pop-ups and other obnoxious Internet junk. Privoxy has a very flexible configuration and can be customized to suit individual needs and tastes. Privoxy has application for both stand-alone systems and multi-user networks.

Privoxy is based on Internet Junkbuster (tm).

Tor is a connection-based low-latency anonymous communication system.

Clients choose a source-routed path through a set of relays, and negotiate a "virtual circuit" through the network, in which each relay knows its predecessor and successor, but no others. Traffic flowing down the circuit is decrypted at each relay, which reveals the downstream relay.

Basically, Tor provides a distributed network of relays. Users bounce their TCP streams (web traffic, ftp, ssh, etc) around the relays, and recipients, observers, and even the relays themselves have difficulty learning which users connected to which destinations.

This package enables only a Tor client by default, but it can also be configured as a relay and/or a hidden service easily.

Client applications can use the Tor network by connecting to the local socks proxy interface provided by your Tor instance. If the application itself does not come with socks support, you can use a socks client such as torsocks.

Note that Tor does no protocol cleaning on application traffic. There is a danger that application protocols and associated programs can be induced to reveal information about the user. Tor depends on Torbutton and similar protocol cleaners to solve this problem. For best protection when web surfing, the Tor Project recommends that you use the Tor Browser Bundle, a standalone tarball that includes static builds of Tor, Torbutton, and a modified Firefox that is patched to fix a variety of privacy bugs.

The anonymizing relay monitor (arm) is a terminal status monitor for Tor relays, intended for command-line aficionados, ssh connections, and anyone stuck with a tty terminal. This works much like top does for system usage, providing real time statistics for:

• bandwidth, cpu, and memory usage
• relay's current configuration
• logged events
• connection details (ip, hostname, fingerprint, and consensus data)
• etc.

This package provides a GeoIP database for Tor, i.e. it maps IPv4 addresses to countries.

Bridge relays (special Tor relays that aren't listed in the main Tor directory) use this information to report which countries they see connections from. These statistics enable the Tor network operators to learn when certain countries start blocking access to bridges.

Clients can also use this to learn what country each relay is in, so Tor controllers like arm or Vidalia can use it, or if they want to configure path selection preferences.

Torsocks allows you to use most SOCKS-friendly applications in a safe way with Tor. It ensures that DNS requests are handled safely and explicitly rejects UDP traffic from the application you're using.

Vidalia offers a graphical user interface to start and stop Tor, view its status at a glance, and monitor its bandwidth usage.

Vidalia also makes it easy to contribute to the Tor network by helping you set up a Tor server.

Tor protects privacy in communications via a distributed network of relays run by volunteers all around the world: it prevents anybody watching Internet connections from learning what sites you visit, and it prevents the visited sites from learning your physical location. Tor works with web browsers, instant messaging programs, remote login clients, and many other TCP-based applications.

OnionShare lets you securely and anonymously share a file of any size with someone. It works by starting a web server, making it accessible as a Tor hidden service, and generating an unguessable URL to access and download the file. It doesn't require setting up a server on the Internet somewhere or using a third party filesharing service. You host the file on your own computer and use a Tor hidden service to make it temporarily accessible over the Internet. The other user just needs to use the Tor Browser and to enter the URL to download the file from you.

Tor Browser Launcher is intended to make the Tor Browser Bundle (TBB) easier to maintain and use for GNU/Linux users. torbrowser-launcher handles downloading the most recent version of TBB for you, in your language and for your architecture. It also adds a "Tor Browser" application launcher to your operating system's menu.

When you first launch Tor Browser Launcher, it will download TBB from https://www.torproject.org/ and extract it to ~/.local/share/torbrowser, and then execute it. Cache and configuration files will be stored in ~/.cache/torbrowser and ~/.config/torbrowser. Each subsequent execution after installation will simply launch the most recent TBB. Tor Browser will be fetched, verified and unpacked each time a new version of TBB is released. When you open Tor Browser Launcher after an update, it will download the newer version of TBB for you and extract it over your old TBB directory in ~/.local/share/torbrowser, so you will maintain your TBB bookmarks.