Block all unencrypted requests

Be logged when you visit websites. Your browsing habits could be linked to your device history and any geo-restricted websites could block you now that they know you’re in a different country.We created VigilantBear as a simple, no setup required way to protect you from leaking unencrypted data, but it’s changed and become smarter over the years.VigilantBear through the yearsWhen we released the first version for macOS in 2014, it was designed to only block HTTP traffic, the most common form of internet traffic that is not encrypted and highly susceptible to eavesdropping. If an interruption happened, and VigilantBear detected HTTP requests, it redirected traffic to a website that said, “For your privacy we are redirecting your http traffic until your TunnelBear has securely reconnected” until your connection came back. The Windows version was released at the same time and worked in a similar way, but blocked HTTPS traffic requests as well.It wasn’t the most sophisticated solution, but it did the job. The downside of blocking traffic this way was that some non-HTTP traffic could get through without being encrypted. At the same time, apps that didn’t conform to proxy settings could bypass the HTTP proxy block. It was a good start, but we knew we could do better.Updates and improvements in version 2 - 2015Our second release for macOS kept the original HTTP proxy but added firewall rules that allowed HTTPS and DNS traffic so TunnelBear could reconnect, but blocked everything else. It also gave us the ability to block ports to stop background services and other apps from sending unencrypted data while you reconnected to TunnelBear.For version 2 on Windows, we replaced the proxy altogether and added new rules that blocked all applications, except TunnelBear, while connecting. Once connected, only HTTP and HTTPS traffic were allowed for other applications.We also released a version for Android in August, 2016, that functions in a very similar way as our macOS version, minus the in-browser warning that VigilantBear is protecting you.OSX release of version 3.5 - 2017VigilantBear in-browser warning for macOS, 2017Only ports that are absolutely needed to connect to TunnelBear have access to the internet when re-connectingVersion 3.5 for macOS adds IKEv2 support, for faster connections, and all HTTPS traffic that isn't strictly necesarry for TunnelBear to connect is now blocked by the firewall as well. This means only ports that are absolutely needed to connect to TunnelBear have access

Finding a stable connection to the internet, when you're not at home, isn't always easy. Like most online services, VPN connections can be interrupted without warning. Many providers drop your traffic in the clear during interruptions, giving you the choice of either manually turning off your device’s internet connection, to stop unencrypted data being sent, or to continue browsing unencrypted.TunnelBear gives you a third option by stopping your traffic automatically if you disconnect. Most people call this a kill switch, but we’ve never really liked the term because it sounds like a switch you activate manually in an emergency. However, we believe the idea behind the feature is important because we want to protect you from sending unencrypted data if your connection to TunnelBear is interrupted.Today we’d like to reintroduce you to VigilantBear, our answer to unexpected disconnects. After you turn VigilantBear on in TunnelBear settings, it starts protecting you. This feature has been keeping you safe from data leaks for just over three years now, but we still receive a lot of questions about how it works. First, let’s take a look at how we stop unencrypted data from being sent.Protecting you when your connection is interruptedUnless you’ve kept a close eye on your device, you could easily keep browsing Facebook or send emails without knowing your VPN has unexpectedly turned off. Interruptions can happen for a number of reasons like your router kicking you off the network briefly or your laptop going to sleep when you close it. If you don’t have a way to stop incoming and outgoing traffic, you could be sending unencrypted private information without even knowing.We created VigilantBear as a simple, no setup required way to protect you from leaking unencrypted dataOne of the ways devices block traffic is with something called a firewall. Firewalls allow traffic in and out of a network through a series of endpoints called ports. A set of rules tells the firewall to open or close ports based on the kinds of traffic you want to allow, and when you want to allow or block them.We believe blocking all incoming and outgoing traffic is the only way to make sure none of your private information gets sent over the internet unencrypted. If you still have access to the internet while your VPN is down, that means your encrypted tunnel has sprung a leak, metaphorically. Your real IP address could

Locations where curl.h would be included in your game, replace the header with xCurl.h, shown as follows.#include ConfigurationxCurl is equivalent to libCurl compiled with the following build flags.HTTP_ONLYCURL_NO_OLDIESCURL_DISABLE_PROXYCURL_DISABLE_COOKIESCURL_DISABLE_DOHCURL_DISABLE_PROGRESS_METERCURL_DISABLE_MIMEUSE_SCHANNELNetwork initializationxCurl handles network initialization automatically. You can setup and perform requests at any point in your title's lifecycle. Any request started before the network is initialized will be delayed and queued until the network becomes initialized; in this manner xCurl ensures that your requests will be made at the earliest possible opportunity without any extra handling required by your title.Title suspend/resumexCurl handles suspend and resume automatically. On suspend, all outstanding requests will be canceled immediately and fail with CURLE_NO_CONNECTION_AVAILABLE. Additionally, querying curl_easy_getinfo for CURLINFO_OS_ERRNO on these requests will return HRESULT_FROM_WIN32(PROCESS_SUSPEND_RESUME) just like any other GRTS API in case you want to handle these failures differently from general network disconnect failures.All xCurl handles remain valid throughout the title lifecycle including across suspend/resume boundaries. There is no need to cleanup or initialize any xCurl handle on suspend/resume. Any new requests started after suspend will be delayed until resume and the subsequent network initialization to ensure that they will start as soon as possible without requiring any extra handling by your title.NoteWhen using the multi interface for xCurl, your title should continue to call curl_multi_perform along with optionally curl_multi_poll or curl_multi_wait on suspend while there are outstanding requests. xCurl will block suspend until all in-progress requests are completed, and failing to call curl_multi_perform may cause your title to timeout during suspend. We recommend continuing to call curl_multi_perform throughout the entire lifecycle regardless of the suspend/resume state. xCurl handles all intricacies of the suspend state internally.Security functionalityAll HTTPS requests through xCurl follow the communication security best practices (NDA topic)Authorization required. xCurl automatically enforces any special certificate pinning specified through your title's "Single Sign-on Portal". Using CURLOPT_SSL_VERIFYPEER to disable certificate validation is not supported.On development kits you may specify the unencrypted HTTP scheme, for debug traffic and testing purposes. For all RETAIL requests, you must specify the HTTPS scheme, to provide the recommended level of protection. xCurl requests that do not explicitly specify a scheme will infer the HTTPS scheme.NotexCurl does not perform automatic token insertion. To retrieve Xbox Live tokens, your title should call the XUserGetTokenAndSignatureAsync or XUserGetTokenAndSignatureUtf16Async GRTS APIs to retrieve the authorization and signature headers, and then use the CURLOPT_HEADER, CURLOPT_HTTPHEADER, or CURLOPT_HEADERFUNCTION options in a call to curl_easy_setopt to set the headers before making the request.Memory and concurrency considerationsxCurl shares the same concurrent request limitations that apply to WinHttp. Titles should limit concurrent requests to eight or less to ensure that all calls operate correctly. This concurrency limit applies to concurrent requests that are issued from any of xCurl, WinHttp, and Xbox Service APIs.xCurl uses a flip buffer to receive data. This allows it to start filling a second buffer while providing the full buffer to the read callback and then switch to provide the second buffer to the read callback while the first is being filled. However, if the read callback takes

Here are 129 public repositories matching this topic... Code Issues Pull requests 🚀 A lightweight, fast, and comprehensive solution for traffic analysis and intrusion detection. Updated Mar 11, 2025 Go Code Issues Pull requests Network inspection library for Node Updated Mar 9, 2025 JavaScript Code Issues Pull requests Discussions Python-based Comprehensive Network Packet Analysis Library Updated Mar 10, 2025 Python Code Issues Pull requests C2Lab - A lightweight and customizable Command & Control (C2) lab using Sliver for testing and analyzing botnet communications, persistence, and network detection techniques. Updated Mar 6, 2025 HCL Code Issues Pull requests PacketSnifferAnalyzer is a free and open-source packet analyzer based on C++/Qt Updated Mar 5, 2025 C++ Code Issues Pull requests SECURITY & SAFETY, SECURITY & SAFETY, SECURITY & SAFETY, SECURITY & SAFETY, SECURITY & SAFETY, SECURITY & SAFETY, SECURITY & SAFETY, SECURITY & SAFETY, SECURITY & SAFETY, SECURITY & SAFETY, SECURITY & SAFETY, SECURITY & SAFETY Updated Mar 4, 2025 Python Code Issues Pull requests Network traffic analysis tool for Attack & Defense CTF's Updated Mar 13, 2025 Go Code Issues Pull requests 🧠🛡️ Web service for detecting network attacks in PCAP using ML. Updated Feb 21, 2025 Python Code Issues Pull requests Discussions A Fun project using Ollama, Streamlit & PyShark to chat with PCAP/PCAPNG files locally, privately! Updated Feb 21, 2025 Python Code Issues Pull requests Poseidon is a python-based application that leverages software defined networks (SDN) to acquire and then feed network traffic to a number of machine learning techniques. The machine learning algorithms classify and predict the type of device. Updated Mar 6, 2025 Python Code Issues Pull requests PcapAnalyzer, a comprehensive toolkit for working with pcap files, which are commonly used to store network traffic captures. This repository provides a suite of tools designed to analyze, inspect, and extract insights from packet capture files. Updated Feb 5, 2025 Python Code Issues Pull requests Reusable Docker Scripting Toolkit for Development Environment Setup Updated Feb 3, 2025 Dockerfile Code Issues Pull requests The PCAP Analyzer is a tool for analyzing PCAP (packet capture) files to identify malicious IP addresses and generate various reports. Updated Jan 30, 2025 Shell Code Issues Pull requests Reads packet capture (*.pcap, or *.pcapng) files from Wireshark or a similar utility. Maps the network connections and exports the data to Pandas Dataframe + Excel doc for further analysis. Updated Jan 27, 2025 Python Code Issues Pull requests Sniffs sensitive data from interface or pcap Updated Jan 20, 2025 Python Code Issues Pull requests This project is a network packet sniffer built using Python which allows you: capture network packets in real-time, analyze HTTP, DNS, and sensitive unencrypted data, save captured packets to .pcap files for further analysis, detect potential issues, such as unencrypted credentials or DNS activity Updated Jan 19, 2025 Python Code Issues Pull requests An automated Pcap Analysis tool which produces an interactive graph with details like ISP info and maliciousness of the actor/IP Updated Dec 31, 2024 Python Code Issues Pull requests Capture

Worldwide - Sweden, US, Hong Kong, Singapore, Brazil and Turkey. Free Anonymous Accounts and Free 1GB accounts are available as well as larger paid... Category: Security & Privacy / EncryptingPublisher: SumRando Pty. Ltd., License: Freeware, Price: USD $0.00, File Size: 5.5 MBPlatform: Windows Prevent your passwords, credit card and SSN numbers, etc from sending to the Internet in open, unencrypted format. Prevent your passwords, credit card and SSN numbers, etc from sending to the Internet in open, unencrypted format.The Internet Security Monitor monitors all outgoing information from your computer and if it sees an attempt to send your sensitive information over unencrypted channel it will immediately block the transaction and notify you. Category: Security & Privacy / Access ControlPublisher: SecuritySupervisor.com, License: Freeware, Price: USD $0.00, File Size: 595.0 KBPlatform: Windows Free Internet Eraser protects your Internet privacy by permanently erase Internet history and past computer activities. Free Internet Eraser is an Internet privacy software that protects your Internet privacy by permanently erase Internet history and past computer activities. Even though, many of the tasks can be performed manually, Free Internet Eraser can automate this process for you. Free Internet Eraser allows you to erase history, erase Internet history,... Category: Security & Privacy / OtherPublisher: PrivacyEraser Computing Inc., License: Freeware, Price: USD $0.00, File Size: 899.8 KBPlatform: Windows FREEWARE program for cybercafe or internet cafe automation and technical administration. Billing, limiting internet speed, increased security, enhanced usability, customizable interface. FREEWARE program for cybercafe or Internet cafe automation and technical administration. Billing, limiting Internet speed, increased Security, enhanced usability, customizable interface. ClubControl is developed since 2001 and now it is one of the most powerful Internet & cyber cafe management software . Hundreds of Internet cafes now are under ClubControl... Category: Business & FinancePublisher: Vaosoft, License: Freeware, Price: USD $0.00, File Size: