Privacy Tools

The primary reason for curtains/blinds/drapes covering our windows in our house is to stop people from being able to see in. The reason we don’t want them to see in is because we consider much of what we do inside our homes to be private. Whether that be having dinner at the table, watching a movie with your kids, or even engaging in intimate or sexual acts with your partner. None of these things are illegal by any means, but even knowing this, we still keep the curtains and blinds on our windows. We clearly have this strong desire for privacy when it comes to our personal life and the public.

Joshua in The Crypto Paper

Privacy & Security is a process, not a boolean expression — trying to protect all your data from everyone all the time is impractical, expensive, and exhausting.

Creating a personalized threat model will serve as the foundation for an effective security and privacy plan.

How to Choose Privacy and Security tools?

Finding the best privacy tools can be tricky, especially when there are tons of apps and services in the fearmongering business, claiming to provide you with better privacy and security.

Here are a few things that I tend to look for:

  • Privacy Policy: You should always look for companies that have clear and easy-to-understand privacy policies. Check what data they collect and why? You can use ToS;Dr, a website that grades different websites according to their privacy policy.
  • Jurisdiction: The place where the company is based affects its privacy and security practices, look for the companies from places that have robust privacy and security laws. Take a look on “The Fourteen Eyes” and “Key Disclosure Laws”.
  • Open Sourceness: I believe every privacy and security software should be open source, as this allows anyone to look around the code to find vulnerabilities and privacy holes independently by experts today and in the future.
  • Security Audits & Vulnerability Disclosure Programs: No codebase can be completely secure forever, look for the ones that perform a comprehensive security audit by a reputable third-party, a public bug-bounty program is a big plus.
  • Trust & Ownership: You should know who you are trusting with all of your internet data, the apps, and service providers should be public about their ownership information. Publishing frequent transparency reports are a big plus.

Alright, here are some of the best privacy and security tools that make protecting your privacy just a bit more convenient, all recommendations are open source.

Web Browsers

A secure web browser that defends your privacy is quintessential, as they are the primary way you connect to the Internet.

Web browsers also contain lots of private information like your browsing history, passwords, autofill information, all of that combined with attacks from spyware and malware leaves your browser with a pretty large attack surface.

  • Mozilla Firefox — an extremely customizable web browser from Mozilla that checks all the boxes of privacy, security, and open sourceness, with a vibrant add-on ecosystem.
  • Tor Browser — modified version of Firefox ESR with preinstalled privacy add-ons and tweaks, designed to run on the Tor network, providing an extra layer of anonymity.
  • Brave Browser — a cross-platform Chromium-based browser that comes preconfigured with pretty good privacy and security features and settings.
  • Bromite — Chromium-based browser for Android with privacy and security enhancements like built-in ad-blocking, DNS over HTTPS support and more.
  • DuckDuckGo — Chromum-based broser for Android with built-in tracker blocking, private search engine, uses Tos:DR to rate privacy policies of the websites you visit.

Alterntative browser forks like ungoogled-chromium & GNU IceCat can also serve as a great replacement, this detailed guide lists more browser recommendations, tweaks, and add-ons.

Browser Add-ons

Browser extensions or add-ons are a small piece of software that can be used to dramatically improve your privacy, security, and productivity.

Not all of these add-ons are necessary, and many provide redundant functionality, installing add-ons can facilitate fingerprinting.

  • uBlock Origin — an efficient wide-spectrum blocker that is easy on memory, comes with Advanced mode which allows for dynamic filtering similar to NoScript and uMatrix, and has no monetization strategy.
  • HTTPS Everywhere — rewrites normal HTTP connection requests to HTTPS (encrypted version of HTTP) wherever possible. Most web browsers have started implementing this functionality in the browser itself, the add-on will be discontinued soon.
  • Decentraleyes — emulates a CDN on your device locally, providing an additional layer of privacy from CDN providers.
  • Cookie AutoDelete — automatically removes cookies, lingering sessions, and other information that can be used to spy on you when they are no longer used by open browser tabs.
  • Privacy Badger — blocks “Invisible Trackers” by analyzing trackers and ads that violate the principle of user consent.
  • ClearURLs — automatically removes tracking elements from URLs to help protect your privacy as you browse through the Internet.
  • User-Agent Switcher and Manager — lets you spoof your browser’s User-Agent string, making it harder for websites to track you and deliver distinct content.
  • Firefox Multi-Account Containers — lets you keep parts of your online life separated into distinct containers with color-coded tabs.
  • NoScript Security Suite — a powerful scripts blocker that uses “ClearClick Technology” to protect you against XSS, cross-zone DNS rebinding / CSRF attacks, and Clickjacking attempts.

I have compiled a more complete list of all the add-ons.

Search Engines

You should switch to a privacy-friendly Search engine, if you are using Google, Bing or Yahoo as not only they store everything you have searched ever.

And, also track you online, so that they can serve you with ads. Here are some of the most private search engines that respects your privacy:


Searx is an open source, privacy-friendly and self-hostable search engine.

It works by aggregating results from other search engines while not storing any personal data.

You can host your own or choose from the list of Public instances to use.


DuckDuckGo is a privacy-friendly “Search Engine that doesn’t track you” that works by aggregating results from “over 400 sources”.

It is the default search engine for Tor browser, and has a pretty good privacy policy.


Qwant is another privacy-respecting search engine based in France, with two key principles: Privacy and Neutrality.

It protects its users freedoms and ensures that the digital ecosystem remains healthy.

Password Managers

Password management is a whole topic in itself. The key is to use strong, different passwords and not store them in your browser.

You should not use your browsers’ built-in password manager. Here are the best password managers that I recommend:


Bitwarden is a freemium, and open source password manager, developed by Kyle Spearrin.

It is among the easiest and safest ways to store all of your logins and passwords and syncing them between all of your devices.

Bitwarden is available across all platforms and the web, you can easily host your own Bitwarden server too.


KeePassXC is a free, open source password manager that unlike Bitwarden, stores all your passwords locally in an encrypted database.

It started as community fork of KeePassX, which itself is a cross-platfrom fork of KeePass.

KeePassXC is feature rich and is available for all devices.


LessPass is a free, open source stateless password manager that unlike both Bitwarden and KeePassXC doesn’t store passwords anywhere, neither in cloud nor locally.

It’s an interesting concept, that computes a unique password using a site, login and a master password.

There is no need to sync anything, and it can be used across all devices.

DNS Resolvers

A DNS Resolver is basically a server that converts domain names of websites into IP addresses.

You should not use default DNS Resolver given by your ISP or Google DNS.

An encrypted and privacy-respecting DNS Resolver will help prevent DNS hijacking, and can block malicious sites, ads, and trackers.

An encrypted DNS Resolver won’t make you anonymous, neither will it hide your internet traffic from your Internet Service Provider.

Here are some best encrypted DNS Resolvers that I recommend:

AdGuard DNS

AdGuard DNS is an encrypted DNS Resolver by AdGuard, an ad-blocking and privacy protection software company.

It uses Anycast network addressing and routing technique, has servers in Cyprus, and lets you filter ads, trackers, malicious domains.


BlahDNS is an encrypted DNS Resolver that started as a hobby by edoo.

It has servers in Finland, Germany, and Japan, and lets you filter ads, trackers, malicious domains.

CloudFlare DNS

Cloudflare’s is a fast encrypted DNS Resolver by CDN giant — Cloudflare.

It also uses Anycast network addressing and routing technique, and has servers in US.

There is another version with Malware and Adult Content Blocking. You can set up Cloudflare DNS using their app too.

Virtual Private Networks (VPNs)

Virtual Private Networks (or a VPN) is a no-brainer when it comes to privacy and security online.

It is the easiest and most effective ways to protect your privacy on Internet, and access restricted content.

A VPN will not make you anonymous, neither will it add any additional security to non-HTTPS traffic. Use Tor Browser if you want anonymity.

Here are some of the best VPN services:


ProtonVPN is a freemium VPN service made by the same folks behind ProtonMail.

It is based in Switzerland, and has been in operation since 2016.

They have servers in 44 countries, and have apps for all your devices. Premium plans start at 48/year.

Mullvad VPN

Mullvad is a premium VPN service with a serious focus on transparency and security, they don’t even need you to create an account.

It is based in Sweden, and has been in operation since 2009.

They have servers in 35 Countries, and have apps for all platforms. Mullvad offers one flat rate of €5/month.

Psiphon VPN

Psiphon is a free(-ish) VPN Service designed to support users in countries considered to be “enemies of the Internet”.

It is based in Canada, and has been in operation since 2006. They have servers in about 25 countries, and have apps on all platforms.

I don’t recommend using Psiphon as the speeds are capped at 2 Mbps, and they are not really made for the developed economies.

Instant Messaging Apps

Using unencrypted plain-text messages (SMS) is a security and privacy nightmare.

You should also not trust Instant Messengers like WhatsApp, Viber, WeChat, etc as they aren’t open source.

I recommend using an open source messaging app that is end-to-end encrypted as this protects both the authenticity and confidentiality of the messages as they pass through any devices or servers.

Here are some of the most secure Instant messaging apps that respects your privacy:


Signal is hands-down the best free and open source messaging app that checks pretty much all the boxes.

It uses end-to-end encryption, and doesn’t store any personal information on their servers, and is available on Windows, macOS, Linux, iOS, and Android.

Riot is a federated instant messenger based on Matrix protocol, an open source standard for decentralized and secure real-time communication with E2E encryption.

You can also connect to other chat protocols such as IRC or Telegram, thanks to its bridging functionality.


Jami is a free and open source peer-to-peer messaging app that is end-to-end encrypted.

It connects directly to each other without requiring any Servers in between, and is available on all devices.

Video Conferencing Apps

All the Instant Messaging Apps listed above also let you do video calls, but they aren’t suitable to Video Conferencing as they lack features like screen sharing, multiple people, etc.

Here are some of the most secure and private video conferencing apps other than the ones mentioned in instant messaging section:

Jitsi Meet

Jitsi Meet is an open source, encrypted video conferencing app that you can use for free without any account sign ups.

It lets share desktop and presentations and with just a link can invite new members for videoconference. It can be used by downloading the app or directly in a browser.

You can use servers or can download and install the server software on a Linux-based machine.


Tox is a free and open source peer-to-peer instant-messaging and video-calling protocol that offers end-to-end encryption.

It lets you do video calls, voice calls, screen sharing, file sharing, and transfer easily and securely.

Nextcloud Talk

Nextcloud Talk is a premium, open source, encrypted, peer-to-peer video conferencing solution.

It lets you easily share your screen for group chats, webinars and public web meetings.

Email Service Providers

You should always use an encrypted and privacy-friendly email service provider.

I recommend using a Secure Instant Messenger rather than email as even end-to-end encryption technologies like OpenPGP, still sends some unencrypted metadata, and they don’t support Forward Secrecy.

It’s also not recommended using free email services like Gmail or Outlook as they rely on your personal data to serve ads.

Here are some secure and privacy-respecting email service providers:


Tutonota is a freemium end-to-end encrypted mail service that encrypts the entire mailbox.

It is based in Germany, and has been in operation since 2011. It’s free plan gives you 1 GB storage, and premium starts at €12/year.


ProtonMail is a popular email service designed for privacy and security by the same folks behind ProtonVPN.

It is based in Switzerland, and has been in operation since 2013. It’s free plan gives you 500 MB storage, and premium starts at €48.00/year.


Soverin is a premium email service with the motto “No data footprint, no carbon footprint”.

It’s private, secure, ad-free, and powered by sustainable energy. It is based in Amsterdam, and pricing starts at €29/year.

Two-Factor Authentication

Two-Factor authentication is a method of confirming a user’s identity by two different authentication factors — something you know (password) and a second factor, something you have (SMS, push notifications, software or hardware tokens) or something you are (fingerprint, iris, voice).

Don’t choose 2FA via SMS as it is vulnerable to attacks. Always choose App-based 2FA or Hardware-based 2FA.

Here are some of the best two-factor authentication apps:


Authenticator by Matt Rubin is a simple, free, and open source two-factor authentication app for your iOS, that grew out of the abandoned source for Google Authenticator for iOS.

Aegis Authenticator

Aegis Authenticator is a free, secure and open source two-factor authentication app for Android to manage your 2-step verification tokens for your online services.


Authy is a popular freemium 2-factor authentication app for both Android and iOS by Twilio. It has lots of great features, but is closed source.

Cloud Storage and Syncing


Nextcloud is a free and open source suite of client-server software for file hosting services on a private server you control. You can host it on home-local computer or on off-premise.

It combines the convenience and ease of use of consumer-grade solutions like Office 365 and Google Drive with the security, privacy and control.


Syncthing is a free and open source peer-to-peer file sync software that is end-to-end encrypted.

It is a great replacement for proprietary sync and cloud services, and is available on Windows, macOS, Linux, and Android.


EteSync is a premium open source, end-to-end encrypted, and privacy-respecting cloud synchronization and backup for your contacts, calendars and tasks.

It is available for all your devices, and pricing starts at $2/month.

File Sharing

Easily share files securely and anonymously with your friends and family with these privacy-respecting services:


OnionShare lets you send files with utmost protection via the Tor Network.

It is open source, there is no limit on file size, and is available on Windows, macOS, and Linux.

Firefox Send

Firefox Send is a simple way to send files that uses end-to-end encryption to keep your data secure during transmission.

You can choose when your file link expires, the number of downloads, and add password for an extra layer of security.

File size is limited to 2.5 GB, and is available on the Web and Android.

Tresorit Send

Tresorit Send is a free and secure way to send up to 5 GB of data confidentially.

It is based in Switzerland, and is available on the Web, Android, and iOS.

File Encryption

You should always encrypt any, and all personal data. Password Protection is not the same as Encryption.

Encrypt your sensitive data using these free, open source, and secure softwares to keep them away from prying eyes.


Veracrypt is a free and open source software for on-the-fly encryption.

You can encrypt the entire disk with pre-boot authentication. It also lets you create a virtual encrypted disk within a file or encrypt a partition.

Veracrypt is a fork of discontinued TrueCrypt project, initially released on 22 June 2013.

It is available on Linux, Windows, macOS, and FreeBSD.


7-Zip is free and open source file archiver that lets you encrypt files using 256-bit AES cypher.

It creates a container called archive that holds the files that can be encrypted and protected with a password, and is available on Windows, Linux, and macOS. is a free, open source, cross-platform, and serverless JavaScript Web application, that works offline.

It provides secure file encryption using the AES-256-GCM from WebCryptoAPI in your browser. You can also download it on your Windows, Linux or macOS.

Writing docs, creating spreadsheets, taking notes shouldn’t come with the cost of privacy. Embrace these open source software and get hold of your data:


LibreOffice is a free and open source office suite alternative to Microsoft Office.

It has all the productivity tools you need like word processor, spreadsheet, presentation, etc, works offline, and is available for Windows, macOS, and Linux.


CryptPad is a freemium, open source, secure and private alternative to Office suites and cloud services.

It lets you collaborate on all kinds of Productivity tools like word processor, spreadsheet, presentation, code, etc.

You can use it anonymously for free or pay for premium which starts at €5-15/month.


Joplin is a free and open source note taking and to-do app with end-to-end encryption and synchronization capabilities with Nextcloud, Dropbox, OneDrive, etc.

You can also save Web pages and screenshots from your browser using the Web Clipper, and is available to download on Windows, Linux, macOS, Android, and iOS.

Firewalls and Network Monitors

The Built-in Firewalls on Windows, Linux, and macOS are pretty good for most people But, they lack in features like Real-Time monitoring features.

Here are the best Firewall and Network Monitoring apps that lets you see what apps are making connections to where in the background:


GlassWire is beautiful, easy-to-use and feature-rich network monitor and firewall, it is not open source and costs reasonably.

There is a Free version that lets you monitor your network activity forever, but you will have to pay for Firewall and other features.

It is available on Windows and Android, there will be a macOS and iOS version soon.

Little Snitch

Just like GlassWire, Little Snitch lets you Monitor your Network and has a Firewall.

It’s not Free, but it is reasonably priced and Feature-rich, and is available only on macOS.

Windows Firewall Notifier

Windows Firewall Notifier (WFN) is an ppen source Network Monitor that has Connections Map and Bandwidth usage monitoring.

It is not a Firewall but a complement to Windows Firewall, that notifies you about outgoing connections attempts and lets you to allow or block them, either permanently or temporarily.

Operating System

Operating System is at the core of your device and manages virtually everything on your device that’s why I recommend using a secure, privacy-friendly and open source operating system.

I would recommend against Windows or macOS as they track and collect vast amounts of private data.

Here are some of the Most Secure and Private OS that I recommend:


Everything about QubesOS screams privacy and security. It utilizes the principle of privacy and Security by Compartmentalization.

QubesOS leverages xen-based virtualization which Isolates different Desktop Environments.

You can even use multiple operating systems at the same time, including Fedora, Debian, or Windows.


ParrotOS is “All-in-one framework for Cyber Security, Software Development and privacy Defense”.

It is a great alternative to Kali Linux for developers and security professionals as it has robust features like AnonSurf.

It is light-weight, and there are different versions suitable for home as well as professional users.

Tails OS

Tails OS is a live operating system that can start on any computer from a DVD, or a USB Stick. It uses Tor Network for all kinds of Internet connections hence preserving privacy and anonymity. It leaves no trace on the computer, and encrypts files, emails, and instant messages.

There are lots of awesome alternatives to Social Media like Facebook, Twitter, and Instagram that don’t violate your privacy and put you in control your Data.


Mastodon is a great alternative to Twitter and Facebook, and is based on open web protocols and free, open source software.

You can run your own, or join one of thousands of decentralized and independent communities for free.


diaspora* is a decentralized, free, and private social media like Google+.

You can set up your own server (or “pod”) to host content, pods can interact with each other to share status updates, photographs, and other social data.


PixelFed is a free and open source federated alternative to Instagram, by ActivityPub federation.

It is a photo-oriented social network with filters, comments, likes, shares without the ads and tracking. You can run your own, or join one of existing ones for free.

I have already listed the best privacy and security tools above, they are all open source, unless mentioned otherwise.

Here are some awesome tools that you may be interested in:


Bleachbit is my favorite privacy cleaner, It is free and open source disk space cleaner, privacy manager, and system optimizer.

It lets you free disk space by clearing cache, cookies, internet history, temporary files, logs, etc, and is available for Linux, Windows, and macOS.


ClamAV is an open source antivirus engine for detecting Trojans, viruses, malware and other malicious threats, and has a command line interface (CLI).

ClamWin is a free and open source antivirus for Windows with a Graphical user interface (GUI), and uses ClamAV antivirus engine and database

ClamTK is a free and open source interface for Fedora, CentOS, Ubuntu and other Linux distros, and uses ClamAV antivirus engine and database.


Thunderbird is a free and open source email application, newsfeed, chat, and calendaring client.

It is easy to set up and customize, and is backed by the people behind Firefox — Mozilla, and is available on Windows, Linux, and macOS.


DNSCrypt is a flexible DNS proxy that authenticates communications between a DNS client and a DNS resolver.

It supports all modern encrypted DNS protocols such as DNSCrypt v2, DNS-over-HTTPS and Anonymized DNSCrypt, and is available on Windows, Linux, and macOS.

Visual Studio Code

Visual Studio Code is a great free and open source code editor, by Microsoft.

VS Code is easily customizable, and comes with a lot of features like IntelliSense, debugging, built-in Git and hundreds of extensions.

Webcam Stickers

You should consider covering your webcams when not in use.

I always feel surprised when I see people who don’t cover their webcams at all — all you have to do is move the sticker and replace it after for use.

There are stickers that have slide switches that you can toggle back and forth to cover it.

You can order sets of webcam stickers from EFF or The Tor Project to support the cause of digital privacy.

Privacy Tools for Phones

Most of the Apps mentioned above are also available for your phones be it android or iOS. Here are some best privacy and security apps for your phone:


LineageOS is a free and open source operating system for smartphones, tablets, and set-top boxes. It is the successor to the CyanogenMod, and is available on lots of devices.


GrapheneOS is a free and open source privacy and security focused mobile OS for selected devices.


F-Droid is an installable catalog of free and open source software for Android. It lets you easily browse, install, and keep track of app updates on your device.

K-9 Mail

K-9 Mail is a free and open source email client focused on making it easy to chew through large volumes of email on your Android. It is fast with no ads or tracking.


Nebulo is a free, open source, non-root DNS changer for Android that utilizes dns-over-https and dns-over-tls. It is fast, contains no ads or tracking and offers a lot of flexibility.


DNSCloak is basically an open source version of DNSCrypt for iOS that supports modern encrypted DNS protocols.


Orbot is a free and open source app that lets you connect to Tor Network, providing privacy and anonymity on the Internet for Android.

Onion Browser

Onion Browser is a free and open source version of Tor Browser for iOS. It is primarily developed by Mike Tigas, who works as a developer and investigative journalist at ProPublica by day.


Blokada is the best free blocker that blocks ads, trackers, malware. It is open source, lets you install Filter Lists, whitelist apps, and much more.


Better is a premium open source privacy tool for Safari on iPhone, iPad, and Mac. It protects you from behavioral ads and companies that track and profile you on the Web. It costs $1.99.


Jumbo is a free privacy assistant that helps you delete your social media and voice assistant activity, adjust your privacy setting for Facebook, Google, Twitter and more. It is available for both iOS and Android.

Additional Resources

I would be remiss if I ended this articles without giving a shout out to — it is a great collection of all kinds of awesome tools.

I also recommend reading Edward Snowden’s new book, “Permanent Record” — it really shows you the importance of privacy in today’s age.

Also check out Exodus Privacy Report, privacy audit platform for Android apps helping you know which trackers and permissions are embedded in apps installed on your device.

Privacy and Security Tools

Merely using these tools won’t make you private and secure or anonymous to say the least, privacy and security is a mindset, not a boolean expression — keep learning. These are some of the best privacy and security tools that I recommend and use, and would serve as a great starting point for being more private and secure. I hope you enjoyed reading about these privacy and security tools.

That’s all Folks!

I will be updating this page frequently with more privacy and security tools and information. You can check out this privacy and security checklist here.