OTF offers security audits for app developers and maintainers needing an audit of their application, as well as public safety audits, which investigate concerns around applications that may be contributing to human rights violations or widespread surveillance efforts, or about devices that may have been hacked and targeted by spyware.
The following are audits for individual apps and tools.
Shira - Security Audit
Shira is a web app that helps human rights defenders, activists, and journalists develop their skills to detect and defeat phishing attacks. Users are abl…
OpenArchive Save (Android & iOS)
OpenArchive is a free, open-source mobile application that securely uploads media content created on mobile phones to an online archive that is publicly a…
SMSWithoutBorders - Penetration Test
SMSWithoutBorders enables secure communication with online services using SMS text messages in the event of an Internet shutdown.
Geph - Security Audit
Geph provides secure and reliable access to the open, censorship-free Internet.
Tella - Security Testing
Security Testing of the Tella applications and backend components.
Delta Chat - Pentest and Privacy Leak Audit
This report details the scope, results, and summaries of a penetration test and privacy leak audit against Delta Chat's Webxdc implementations for Android…
nthLink Clients
A standard grey box security assessment of nthLink desktop and mobile clients.
minivpn OpenVPN - Go Client
A whitebox security review conducted against the minivpn implementation.
Amnezia VPN Apps (Mobile & Desktop) - Pentest Report
A whitebox security review conducted against the implementation of the Amnezia VPN clients.
Partisan Telegram - Application and Operational Security Assessment
Partisan Telegram (P-Telegram) was developed to meet the needs of high-risk users. P-Telegram is intended for use by political dissidents to facilitate co…
Padloc - Penetration Test 2022
Padloc is a secure, encrypted password management system.
GlobaLeaks - Penetration Test 2022
GlobaLeaks is the first open-source secure submission framework. GlobaLeaks is free, open source software enabling anyone to easily set up and maintain a …
MiniLock
MiniLock is a small, portable file encryption software. The idea behind its design is that a passphrase, memorized by the user, can act as a complete, po…
Clipperz
Clipperz is an online vault and password manager that knows nothing about you and your data. Everything you submit is locally encrypted by your browser b…
Onion Browser
Onion Browser is a minimal web browser that encrypts and tunnels web traffic through the Tor onion router network and provides other tools to help browse…
OpenPGP
OpenPGP is the most widely used email encryption standard. It is defined by the OpenPGP Working Group of the Internet Engineering Task Force (IETF) as a P…
Mailvelope
Mailvelope is a free software for end-to-end encryption of email traffic inside of a web browser that integrates itself into existing webmail applications.

Nossas Cidades
Non-profit organization that works under the mission of arming and articulating the power to reinvent and rebuild politics , every day.
