Login Apply
Login Apply

Security & Safety Audits

OTF offers security audits for app developers and maintainers needing an audit of their application, as well as public safety audits, which investigate concerns around applications that may be contributing to human rights violations or widespread surveillance efforts, or about devices that may have been hacked and targeted by spyware.

The following are audits for individual apps and tools.

Shira - Security Audit

Shira is a web app that helps human rights defenders, activists, and journalists develop their skills to detect and defeat phishing attacks. Users are abl…

OpenArchive Save (Android & iOS)

OpenArchive is a free, open-source mobile application that securely uploads media content created on mobile phones to an online archive that is publicly a…

SMSWithoutBorders - Penetration Test

SMSWithoutBorders enables secure communication with online services using SMS text messages in the event of an Internet shutdown.

Geph - Security Audit

Geph provides secure and reliable access to the open, censorship-free Internet.

Tella - Security Testing

Security Testing of the Tella applications and backend components.

Delta Chat - Pentest and Privacy Leak Audit

This report details the scope, results, and summaries of a penetration test and privacy leak audit against Delta Chat's Webxdc implementations for Android…

nthLink Clients

A standard grey box security assessment of nthLink desktop and mobile clients.

minivpn OpenVPN - Go Client

A whitebox security review conducted against the minivpn implementation.

Amnezia VPN Apps (Mobile & Desktop) - Pentest Report

A whitebox security review conducted against the implementation of the Amnezia VPN clients.

Partisan Telegram - Application and Operational Security Assessment

Partisan Telegram (P-Telegram) was developed to meet the needs of high-risk users. P-Telegram is intended for use by political dissidents to facilitate co…

Padloc - Penetration Test 2022

Padloc is a secure, encrypted password management system.

GlobaLeaks - Penetration Test 2022

GlobaLeaks is the first open-source secure submission framework. GlobaLeaks is free, open source software enabling anyone to easily set up and maintain a …


MiniLock is a small, portable file encryption software. The idea behind its design is that a passphrase, memorized by the user, can act as a complete, po…


Clipperz is an online vault and password manager that knows nothing about you and your data. Everything you submit is locally encrypted by your browser b…

Onion Browser

Onion Browser is a minimal web browser that encrypts and tunnels web traffic through the Tor onion router network and provides other tools to help browse…


OpenPGP is the most widely used email encryption standard. It is defined by the OpenPGP Working Group of the Internet Engineering Task Force (IETF) as a P…


Mailvelope is a free software for end-to-end encryption of email traffic inside of a web browser that integrates itself into existing webmail applications.

Nossas Cidades

Non-profit organization that works under the mission of arming and articulating the power to reinvent and rebuild politics , every day.


With WEPN, you can setup your own trusted and secure VPN service and protect your data from malicious third parties.


Uwazi is a free, open-source solution for organising, analysing and publishing your documents.

Your cookie settings

This website deploys cookies for basic functionality and to keep it secure. These cookies are strictly necessary. Optional analysis cookies which provide us with statistical information about the use of the website may also be deployed, but only with your consent. Please review our Privacy & Data Policy for more information.