awesome

tor

mirror of https://github.com/ajvb/awesome-tor.git

14 KiB

Raw Blame History

Awesome Tor

A curated list of awesome software, articles, and other resources related to the Tor project.

Tor is an anonymizing TCP overlay network proxy implemented as a cryptographic mixnet. It is used for protecting the privacy of user communications in a variety of operational environments. Contributions to this list are heartily encouraged. Please see the contribution guidelines for details.

Android-based tools
Articles
Bridge tools
Conference presentations and talks
End-user tools
File sharing
Funding
Messaging
Onion service tools
Operating System distributions
Pluggable transports
Relay operator tools
Tor protocol implementations
Tor server hardening tools
Tunneling tools
Web browser-based tools
Whistleblowing

Android-based tools

Orbot - Provides Tor on the Android platform. The project is under active development, updates to latest Tor releases, and working to stay up to date with all changes in Android and mobile threats.

Articles

Anonbib - List of important papers in the field of anonymity. It's also a set of scripts to generate the website from Latex (bibtex). If we're missing any important papers, please let us know!
Scaling Tor hidden services - Article on scaling Onion services.

Bridge tools

BridgeDB - Backend bridge distributor, handling the various pools they're distributed in. This was actively developed until Fall of 2010.

Conference presentations and talks

How Tor Users Got Caught - Defcon 22 - 4 examples of people who have used Tor for illegal activities and how they were caught. Multiple de-anonymization attacks are shown at the end of the video.
How governments have tried to block Tor - 2011 - (Oldy but goody) Iran blocked Tor handshakes using Deep Packet Inspection (DPI) in January 2011 and September 2011. Bluecoat tested out a Tor handshake filter in Syria in June 2011. China has been harvesting and blocking IP addresses for both public Tor relays and private Tor bridges for years. Roger Dingledine and Jacob Appelbaum will talk about how exactly these governments are doing the blocking, both in terms of what signatures they filter in Tor (and how we've gotten around the blocking in each case), and what technologies they use to deploy the filters -- including the use of Western technology to operate the surveillance and censorship infrastructure in Tunisia (Smartfilter), Syria (Bluecoat), and other countries.
State Of The Onion - 2014 - The State of the Onion covers technical, social, economic, political and cultural issues pertaining to anonymity, the Tor Project and the ecosystem surrounding our communities.
The Tor Network - 2013 - Roger Dingledine and Jacob Appelbaum will discuss contemporary Tor Network issues related to censorship, security, privacy and anonymity online.
Tor: Hidden Services and Deanonymisation - 2014 - This talk presents the results from what we believe to be one of the largest studies into Tor Hidden Services (The Darknet) to date.

End-user tools

GetTor - E-mail autoresponder providing Tor's packages over SMTP. This has been relatively unchanged for quite a while.
Globe - Globe is a web application that allows you to search for Tor relays and bridges, providing a detailed overview of properties and configurations of a relay or bridge.
Ooni Probe - Censorship scanner, checking your local connection for blocked or modified content.
Tor2web - Allows Internet users to browse websites running in Tor hidden services. It trades user anonymity for usability by allowing anonymous content to be distributed to non-anonymous users.
TorBirdy - TorBirdy is Torbutton for Thunderbird and related Mozilla mail clients.
TorCheck - Site for determining if the visitor is using Tor or not.

OnionShare - OnionShare is an open source tool that lets you securely and anonymously share a file of any size.

Funding

OnionTip - Web app which parses Tor relay data to allow users to tip volunteers in cryptocurrency for running relay(s) in a fair and open way.

Messaging

Briar - Peer-to-peer encrypted messaging and forums over various transports, including Bluetooth, clearnet Wi-Fi, or the Tor network.
Ricochet - Jabber-based client that creates an Onion service used to rendezvous with your contacts without revealing your location or IP address.
TorChat-Mac - Mac OS X native TorChat client.
TorChat - Decentralized anonymous instant messenger on top of Tor Hidden Services.

Onion service tools

OnionBalance - Load-balancing and redundancy for Tor hidden services.
Stormy - Easy creation of Tor Onion services ("Location-Hidden Services"), currently under heavy development.
Vanguards - Version 3 Onion service guard discovery attack mitigation script (intended for eventual inclusion in Tor core).

Operating System distributions

The Amnesic Incognito Live System (TAILS) - Live CD/USB distribution preconfigured so that everything is safely routed through Tor and leaves no trace on the local system.
Whonix - Desktop operating system that can be run in various configurations, which routes the entire user's desktop environment and OS through Tor.
tor-ramdisk - uClibc-based micro Linux distribution whose sole purpose is to securely host a Tor server purely in RAM.

Pluggable transports

Flash Proxy - Pluggable transport using proxies running in Web browsers to defeat address-based blocking.
Obfsproxy - Obfuscating proxy that shapes Tor traffic, making it harder for censors to detect and block Tor, with implementations in C and Python.

Relay operator tools

Anonymizing Relay Monitor (Arm) - top-like terminal status monitor for Tor, intended for command-line aficionados, SSH connections, and anyone with a TTY terminal.
Weather - Provides automatic notification to subscribed relay operators when their relay's unreachable
ansible-relayor - An Ansible role for Tor Relay Operators.
tor-relay-bootstrap - Script to bootstrap a Debian server to be a set-and-forget Tor relay.
tor_box - An all-inclusive Tor configuration for Raspberry Pi, serves as both a relay and personal Tor network

Tor server hardening tools

Tlsdate - Secure parasitic rdate replacement sets the local clock by securely connecting with TLS to remote servers and extracting the remote time out of the secure handshake.

Tor controller interfaces

PHP TorControl - PHP library to control a Tor server.
Stem - TorProject's official Python controller library for scripts and controller applications using Tor.
tor.rb - Ruby library for interacting with the Tor anonymity network.
txtorcon - TorProject's official implementation of the control-spec for Tor using the Twisted networking library for Python (supports Py2, PyPy and Py3).

Web browser-based tools

HTTPS Everywhere - Firefox and Chrome extension that automatically switches to HTTPS connections with many major websites if those are available.
Tor Browser - Easy-to-use, portable package of Tor, HTTPS-Everywhere, NoScript, TorLauncher, Torbutton, and a Firefox fork, all preconfigured to work together out of the box.

Development and research tools

Atlas - Atlas is a web application to discover Tor relays and bridges. It provides useful information on how relays are configured along with graphics about their past usage.
Chutney - Integration test suite that spawns a local tor network, checking the interactions of its components.
Compass - Compass is a web and command line application that filters and aggregates the Tor relays based on various attributes.
DocTor - DocTor is a notification service that monitors newly published descriptor information for issues. This is primarily a service to help the tor directory authority operators, but it also checks for a handful of other issues like sybil attacks.
ExitMap - Scanner for the Tor network by Philipp Winter to detect malicious and misconfigured exits.
Metrics - Processing and analytics of consensus data, provided to users via the metrics portal. This has been under active development for several years by Karsten Loesing.
OnionScan - Help operators of Onion services find and fix operational security issues with their location-hidden services.
Onionoo - Onionoo is a JSON based protocol to learn information about currently running Tor relays and bridges.
Shadow - Shadow is a discrete-event network simulator that runs the real Tor software as a plug-in. Shadow is open-source software that enables accurate, efficient, controlled, and repeatable Tor experimentation.
TorBEL - The Tor Bulk Exitlist provides a method of identifying if IPs belong to exit nodes or not. This is a replacement for TorDNSEL which is a stable (though unmaintained) Haskell application for this purpose. The initial version of TorBEL was started in GSOC 2010 but since then the project has been inactive.
TorFlow - Library and collection of services for actively monitoring the Tor network. These include the Bandwidth Scanners (measuring throughput of relays) and SoaT (scans for malicious or misconfigured exit nodes).
TorPS - The Tor Path Simulator (TorPS) is a tool for efficiently simulating path selection in Tor. It chooses circuits and assigns user streams to those circuits in the same way that Tor does. TorPS is fast enough to perform thousands of simulations over periods of months.

Tor protocol implementations

haskell-tor - Haskell implementation of the Tor protocol.
node-Tor - Javascript implementation of the Tor (or Tor like) anonymizer project.

Tunneling tools

Torsocks - Utility for adapting other applications to work with Tor.

Whistleblowing

GlobaLeaks - Free software intended to enable secure and anonymous whistleblowing initiatives.
SecureDrop - SecureDrop is an open-source whistleblower submission system that media organizations can use to securely accept documents from and communicate with anonymous sources.

License

This work is licensed under a Creative Commons Attribution 4.0 International License.

14 KiB Raw Blame History