P2P WhatsApp Clone
Thanks.
It's possible to have it entirely static and broker webrtc connections client-side, but I haven't figured out a user experience that would make it "work".
P2P E2EE WhatsApp Clone
IMPORTANT NOTE - READ FIRST:
While this can be selfhosted, YOU SHOULDNT! ... NONE of my projects have been audited or reviewed. I provide them for testing and demo purposes only. NOT to replace any other app you use.
BE RESPONSIBLE WHEN USING UNAUDITED SOFTWARE... DO NOT USE FOR SENSITIVE PURPOSES.
Now that I've hit you over the head with caution...
Want to send encrypted WebRTC messages and video calls with no downloads, no sign-ups and no tracking?
This prototype uses WebRTC to establish an encrypted browser-to-browser connection. Everything is stored locally in browser storage and cleared when you clear the site data from your browser - true zerodata privacy!
- Demo: https://chat.positive-intentions.com/
- Github: https://github.com/positive-intentions/chat
- Website: https://positive-intentions.com/
- Mastodon: https://infosec.exchange/@xoron
P2P WhatsApp Clone
it certainly gives more control over your own data, but (if you know what youre doing) from a cybersec perspective, it can help to reduce the "attack surface". the current direction is to allow users the flexibility from a version provided from me hosted on aws s3 or host it yourself from open source code. additionally, you can host your own peerjs-server as used for brokering connections... by default it connects to the public instance of peerjs-server (so its easier for users to get startedt).
im aiming for flexibility in "getting started" from ready-to-go to selfhosting. it all depends on if a user knows what theyre doing.
P2P WhatsApp Clone
For testing and demo purposes only. NOT to replace any other app you use.
Session, Signal, Simplex and countless more apps are better for privacy and security. I can only hope to get to that level on my project.
Selhosting and a vpn are optional depending on your use case; the app works with niether to help users try it out and get started. Like all secure messaging apps, its better to selfhost given the option.
I've put effort into how the app is working, but ultimately i dont think its appropiate for me to suggest this code is ready for your sensitive data when it hasnt been reviewed or audited.
VeraCrypt-like Functionality with a Browser
I've been looking at the WebCrypto API. When combined with the File system API, it can be used to encrypt and store files on your device storage in what seems to be a pretty secure way.
A webapp has some clear vulnerabilities with the code being served over the web (so you shouldnt be using this for any serious purposes!).
Live demo: https://dim.positive-intentions.com/?path=%2Fstory%2Fusefs--encrypted-demo
Demo code: https://github.com/positive-intentions/dim/blob/staging/src/stories/05-Hooks-useFS.stories.js
IMPORTANT NOTES TO PREVENT MISLEADING
- this isnt a product. it provided for testing and demo.
- it isnt reviewed or audited.
- the "password encryption" is using a hardcoded password. id like to aim for a passwordless approach for this, but i havent considered it enough to discuss yet :)
- this i
hey. im working on something similar with more features and more robust cryptography.
its still a work-in-progress, but its available for testing if youd like to try it out.
if "trust" in the static files from a url is a concern, (which is very reasonable), you can easily host your own instance.
i think it fits squarely as a "P2P app". over a hotspot, you can practically send messages offline. im not sure what other qualifiers are needed.
i dont think its ready to be compared to other tools yet. but i would be aiming to make it comparable to something like signal... but it'll take a while to get there.
Decentralized Encrypted P2P Chat
Id like to introduce you to a decentralized chat app that works purely in the browser. Breaking away from traditional solutions that require registration and installation.
A decentralized infrastructure has many unique challenges and this is a unique approach. Ive taken previsous feedback and made updates. Its important to note, it is still a work-in-progress and provided for testing/review/feedback purposes. it would be great if you can tell me what you think.
Some of the features of the app include:
- Free
- Decentralised
- No cookies
- P2P encrypted
- No registration
- No installing
- Group messaging
- Text messaging
- Multimedia messaging
- Offline m