<span data-cke-copybin-start="1">​</span> # List M Apps Eng. # _{**Privacy T**}est IF NOT INTERESTED ON TEST - JUMP ON THE LIST Alternative messaging programmes with different privacy, security but not mainstream,messagges not easily intercepted. Nothing is 100 % secure but can be on a scale of 1 to 10 or, from M=Very secure S = secure P =unsafe, A=anonymous, for different reasons. Messaging can replace the old e-mail protocol which has inherent limitations. This page provides links, downloadable android and/or web based programs, excluded from the list are Whatsapp, Telegram, Facebook, Google, Twitter etc.  _This page **will** gathers registration options, security features, reference links of specialists and usage tests, tips . Contribution of testers._ [**work on progress]** **Some apps out of Google playstore (use Fdroid/Aurora i.e):** **On an Android smartphone you must, before downloading, go into the security options, "install unknown apps" (TEMPORARILY) there is an on/off switch or switch that allows/disallows.** **ABBRV** **Eph.**= Ephemeral messages, self-distruction on a set time by the sender, such as Snapchat, some messengers allow it. **KFV =Key fingerprinted verification**, number exadecimal unique to the device identity (browser,machine etc.) allows user verification. check here https://ssd.eff.org/en/module/key-verification Quote: [Domain fronting ](https://www.icsi.berkeley.edu/icsi/node/5597)is a technique for hiding traffic to a specific host server and service by forwarding it through a proxy domain belonging to a Google, Amazon, or other ISP and content distribution network. Encrypted communications apps, like Signal and Telegram, and services, like The Onion Router (TOR), that are banned in certain countries, for instance, have used Google.com as a domain front for routing traffic to their servers. Wikr news:https://www.darkreading.com/vulnerabilities---threats/wickr-adds-new-censorship-circumvention-feature-to-its-encrypted-app/d/d-id/1332623 Overcoming Censorship - blocking use of certain apps, communications ### Test rules : a) look for the most anonymous, secure registration possible: 1- user name Nickname [no first name and last name!] + password [ random password generator and long at least 14 characters uppercase,lowercase,number,special character, example with a pwd generator as from Resources [page] - If the app does not allow this, give the list of required data (e.g. phone number, email, verifications etc.). Each programme followed by <TEST !> is included in the test, evaluation. User name exchange is necessary, but NEVER password exchange. b) observe speed of registration, access, activation. c) use 2 channels per test, with partners using the same app. test example Telegram+App test, check speed, notification, visibility, options. Note the various behaviours of the app. Can I take screenshots of the messages ? Can I do Eph? Can I do KFV ? d) Feedback or results back here, sharing results. Warning: beautiful screen, functions, user experience DO NOT mean security; some apps are very basics and poorly designed, low financial investment. ### XMPP protocol The same communication protocol as Whataspp without the flaws, vulnerabilities of the well-known facebook-owned program.These are all apps from more or less free projects, graphics and functions a bit lacking because not funded by big tech giants. [https://www.xabber.com/](https://www.xabber.com/)- Nice mobile and desktop app, countless accounts, different type of encryptions, private servers, not 100% secure. Media (TEST !) [https://f-droid.org/en/packages/eu.sum7](https://f-droid.org/en/packages/eu.sum7) conversations/ free app, "fork" or free variant of Conversation, opensource downloadable https://sum7.eu/chat/ (TEST !) https://conversations.im/#security security features, paid app, free for 6 months.  Another network is Matrix.org https://matrix.org/docs/guides/introduction decentralized, sharing data,message. ### LIST APPS MESSAGING **Wickr** [https://wickr.com/me/](https://wickr.com/me/) Wickr has been known for a long time, messaging, free personal use (wikrME) mobile and desktop, paid business use, also for military,Eph. also, beware, while secure, it is American, possible backdoors.(warning) -  (TEST !) Wickr states that will give all metadata if a US warrant is given, cannot give the content or the message itself decrypted. You can apply with UserName+Mail so in theory you can be anon. No opensource code, it's a patent. See here:https://wickr.com/privacy/ > **Wickr Me** is a free app that provides end-to-end encryption of text, picture, audio and video messages. Senders control who can read their messages and set time. Encrypted messages are stored on our servers and are deleted after they are downloaded to the recipient’s device(s). We do not have plaintext copies of messages exchanged through our system or the keys to decrypt user content. We can’t read any of the messages sent through Wickr Messenger, nor do we know who our users are, or with whom they communicate. **Wire** [https://wire.com](https://wire.com) Multi platform, mobile and desktop. Chat, video,groups,sharing files, Video conference, Eph. .Team platform,also such as slack, OPENSOURCE. It can be used also inside own servers (Only PRO vers.),already used by big corporations, military (some managers worked in the sector). This app/site/protocol highly respected, certified by organizations- ISO, CCPA, GDPR, and SOX-ready. multiple plans, free and 3 paid solutions,low-priced, beware, while secure, it's German/Swiss company .In the mobile/desk app you can see which device are registered with the same account and verify new ones KFV. There is also the Guest mode (Paid feature), you can still have someone not registered to the service and using it because you're the subscriber of the service. There is also Wire RED solution for emergency. Beauty U.I screen, flows. , Probably one of the best choice for Companies, small business. You are partially anon, safe within your own infractstructure, no mention of metadata .(TEST !) Quote image https://wire.com/en/explore/competitive-advantage/ link:  **Threema** [https://threema.ch/en/](https://threema.ch/en/) features Many functions, interesting separation of public organization- user-private use- anonymous chat for the same account. Distribution lists similar to telegram channels, for professional use too, multinational companies. Mobile and desktop - chat - voice message - video conference - position sharing - polls - documents - images. Servers in Switzerland, many German companies, high grade crypto, but being run by private company, in Europe, proprietary code, not safe 100%. Only one payment,small amount, for personal use. (You are anon to the user but not from Threema and may be anyone who knows already your public key might trace your metadata, if proven different I will correct this assumption, plus being used by big companies they have the need to check personell).[https://threema.ch/en/features](https://threema.ch/en/features) **JAMI** [https://jami.net/](https://jami.net/) chat - video conferencing - screen sharing - chat - calls - conference up to 100 people - decentralized - secure multiplatform - anon particular. From Linux environment. Some access problems, user sharing via code or qr code. Free.(TEST !) **Briar** - the hacker solution, secure, even without internet different channels like wi-fi,bluetooth, in some cases. Installed but never tested. From reviews, very secure, anonymous, encrypted data. [https://briarproject.org/](https://briarproject.org/) android version /playstore and /F-Droid also on playstore Considered very secure, for activists, in case of surveillance. (TEST!) **Tox** [https://tox.chat/download.html](https://tox.chat/download.html) Tox project, decentralised, some problems running depends on version and OS, decentralised, anonymous, messaging, also promises calls etc.  Testing possible. Disroot - ambient project , also message, decentralized, attempt to log-in failed. **FortKnoxster** [http://fortknoxster.com/](http://fortknoxster.com/) multi-system,(mobile and desktop), block chain, boasts different security, different features, nice design, UI; messaging (like email), chat, voice mail, crypto calls, video conferencing, cloud space, Gibraltar company registry location. Adds the possibility of "recovery key" otherwise you lose the password there is no alternative. Almost anonymous, possible register via email or phone.Appears very secure with data etc. Eph, KFV, (TEST!) **Session** [https://getsession.org/download/](https://getsession.org/download/) Recent app, part of a Loki foundation, multi-platform, OPENSOURCE code,mobile and desktop, **minimal metadata**, chat, group closed chat up to 20, attachments, voice message, Eph.KFV. Made for activists, has anonymity features, decentralised, in practice apart from not being decipherable messages (encrypted) you would not know who, where, sends them, except the recipient. It is on Github and has become part of Oxen. [https://github.com/oxen-io](https://github.com/oxen-io) important update today 18/01/2121\. (Beta tester). Rob Braxman talked about it. I had some trouble exchanging keys, add user, sometime slow, but I cannot tell if it was because of my nework problems or the app. This app promises very much to the person concerned with privacy, secrecy, anon. I forgot, it is free. > [Session](https://getsession.org/) is an open-source, public-key-based secure messaging application which uses a set of decentralised storage servers and an [onion routing protocol](https://docs.loki.network/LokiServices/Messenger/infrastructure/#onion-requests) to send end-to-end encrypted messages with minimal exposure of user metadata. It does this while also providing common features of mainstream messaging applications. --- # **Video conference** Skype used to be safe, after the microsoft takeover, it is no longer safe. Always note the ownership of the app, location,  if opensource, if GPL , freeware, where the software resides. Some of the apps mentioned before made for video conference, [Jitsi – opensource conference secure](https://href.li/?https://meet.jit.si/) codes/key shared via e-mail or instant message app  **Zoom **App criticised for not being totally secure, but perhaps the most popular. It also allows you to manage a calendar, invitations, certainly a nice interface. The quality of video conferencing, in general very good, up to a maximum number of 100 people should be free.Can be recorded. For general home or public use, no problem. If you make a free account you will be able to see how many apps - integration with normal service, many companies use, it is outstanding, one of the leader . [Zoom Download](https://href.li/?https://zoom.us/download) In order to plan a Zoom meeting: [https://zoom.us/meeting#/upcoming]  ### Home: https://hackmd.io/@rice63/B1IbRQQ1_ ---MAilto: ddprivate@tuta.io