Security Tools

Back to Home

This page is a curated list of secure software that I have personally used and generally recommend.

Desktop Operating Systems:

Qubes OS

"Qubes OS is a free and open-source, security-oriented operating system for single-user desktop computing. Qubes OS leverages Xen-based virtualization to allow for the creation and management of isolated compartments called qubes."

Qubes OS is simply the most secure desktop operating system in the world. Although, the hardware requirements are a bit strict and there's a higher learning curve than Linux Mint. You may not like it, but this is what peak security looks like.


"Tails is a portable operating system that protects against surveillance and censorship."

Tails is primarily focused on providing anonymity to its users by routing them through Tor. Tails boots from a USB stick and deletes any traces of itself when removed.


"Whonix is an anonymous operating system that runs like an app and routes all Internet traffic through the Tor anonymity network. It offers privacy protection and anonymity online and is available for all major operating systems."

Mobile Operating Systems:


"GrapheneOS is a privacy and security focused mobile OS with Android app compatibility developed as a non-profit open source project. It's focused on the research and development of privacy and security technology including substantial improvements to sandboxing, exploit mitigations and the permission model."

GrapheneOS represents the gold standard for secure mobile computing. It's trivially easy to install, and is no more difficult to use than stock Android, while being more secure in the process.

Server Operating Systems:

Alpine Linux

"Alpine Linux is a security-oriented, lightweight Linux distribution based on musl libc and busybox. Alpine Linux is an independent, non-commercial, general purpose Linux distribution designed for power users who appreciate security, simplicity and resource efficiency."

Android App Repositories:


"F-Droid is an installable catalogue of FOSS (Free and Open Source Software) applications for the Android platform. The client makes it easy to browse, install, and keep track of updates on your device."

While not a secure software tool itself, F-Droid is an essential app repository to install other secure software on your Android device.

Password Managers:


"KeePassXC is a modern, secure, and open-source password manager that stores and manages your most sensitive information."

KeePassDX [F-Droid]

"KeePassDX is an ethical open source password manager for Android."

KeePassDX is the Android version of KeePassXC and it works with your KeePassXC databases.

One-time Password (OTP) Authenticators:

FreeOTP [F-Droid]

"FreeOTP is a two-factor authentication application for systems utilizing one-time password protocols."

Its operation is pretty simple, just remember to back up your authenticator.


Uncomplicated Firewall (ufw) (Gufw)

"Ufw stands for Uncomplicated Firewall, and is (a) program for managing a netfilter firewall. It provides a command line interface and aims to be uncomplicated and easy to use."

It's an uncomplicated firewall. Gufw is the GUI version.

Anti-virus Software:

ClamAV (clamtk) (ClamWin)

"ClamAV is an open-source antivirus engine for detecting trojans, viruses, malware & other malicious threats."

"(Clamtk is) an easy to use, light-weight, on-demand virus scanner for Linux systems."

"ClamWin is a Free Antivirus program for Microsoft Windows 10 / 8 / 7 / Vista / XP / Me / 2000 / 98 and Windows Server 2012, 2008 and 2003."

ClamAV is the normal command line version, clamtk offers a GUI, and ClamWin is for Windows systems (please don't use Windows).

File/Disk Encryption:


"VeraCrypt is a free open source disk encryption software for Windows, Mac OSX and Linux."

I mostly used VeraCrypt to encrypt Windows drives, but it also has some other useful features. Please don't use Windows.


"7-Zip is a file archiver with a high compression ratio."

7-Zip is mostly used for archiving and file compression, but it can be used to encrypt files or directories. For instance, encrypting files before sending them to someone.

Web Browsers:

Bromite [F-Droid]

"Bromite is a Chromium fork with ad blocking and enhanced privacy; take back your browser!"

Tor Browser

"Protect yourself against tracking, surveillance, and censorship."

Browser Add-ons:

uBlock Origin [Firefox] [Chrome] [Edge] [Opera] [Thunderbird]

"uBlock Origin - An efficient blocker for Chromium and Firefox. Fast and lean."

Please don't use uBlock Origin with Google Chrome, Microsoft Edge, or Opera; use Firefox instead.

Metadata Removal Tools:


"mat2 is a metadata removal tool, supporting a wide range of commonly used file formats, written in python3: at its core, it's a library, used by an eponymous command-line interface, as well as several file manager extensions."

Mat2 is a command-line tool to remove the metadata from files. It's very easy to use.

File/Disk Shredders:


"Eraser is an advanced security tool for Windows which allows you to completely remove sensitive data from your hard drive by overwriting it several times with carefully selected patterns. Eraser is currently supported under Windows XP (with Service Pack 3), Windows Server 2003 (with Service Pack 2), Windows Vista, Windows Server 2008, Windows 7, 8, 10 and Windows Server 2012-2022"

As always, please don't use Windows. However, this tool is still very neat.

Instant Messaging Clients:

XMPP (Conversations [F-Droid]) (Gajim)

"XMPP is the Extensible Messaging and Presence Protocol, a set of open technologies for instant messaging, presence, multi-party chat, voice and video calls, collaboration, lightweight middleware, content syndication, and generalized routing of XML data."

"Conversations is a Jabber/XMPP client for Android 5.0+ smartphones that has been optimized to provide a unique mobile experience."

"(Gajim is) a fully-featured XMPP client."

XMPP is the protocol being used, not a client itself. Conversations is an XMPP client for Android and Gajim is an XMPP client for Linux and Windows (please don't use Windows).

Voice Chat Clients:

Mumble (Mumla [F-Droid])

"Mumble is a free, open source, low latency, high quality voice chat application."

"(Mumla is a) Mumble app for Android."


Orbot [F-Droid]

"Orbot - Tor VPN for Smartphones. Keep your app traffic private and unblocked."

Orbot works by routing your smartphone's network traffic through Tor. It basically works like a VPN, but is better and also free.

Mullvad VPN

"Mullvad believes in a free internet. Free from mass surveillance and censorship. Free from big data markets and authorities mass monitoring your every step. We believe in a free internet where everyone has the right to privacy. Our VPN service and privacy-focused browser is our contribution to the fight. To free the internet from mass surveillance."

Mullvad VPN is the only VPN provider that you should even consider using. Also, it's important to understand the limitations of VPNs and what they actually do. A VPN is not a magic bullet for privacy.

Cloud Storage:

Seafile [F-Droid]

"Seafile is an open source file sync&share solution designed for high reliability, performance and productivity."

Seafile is what I use and it works fine. Much more private than Google Drive or OneDrive.

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.