{"id":50964499,"url":"https://github.com/khodzeek/nofind","last_synced_at":"2026-06-18T18:02:25.977Z","repository":{"id":360326725,"uuid":"1249531196","full_name":"khodzeek/nofind","owner":"khodzeek","description":"Privacy-first anonymous browsing tool with Tor integration and DNS over HTTPS.","archived":false,"fork":false,"pushed_at":"2026-05-26T01:01:35.000Z","size":99,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"master","last_synced_at":"2026-05-26T01:23:47.974Z","etag":null,"topics":["anonymity","dns","privacy","privacy-focused","privacy-protection","privacy-tools","tor"],"latest_commit_sha":null,"homepage":"","language":"Rust","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/khodzeek.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-05-25T19:56:46.000Z","updated_at":"2026-05-26T01:02:21.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/khodzeek/nofind","commit_stats":null,"previous_names":["khodzeek/nofind"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/khodzeek/nofind","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/khodzeek%2Fnofind","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/khodzeek%2Fnofind/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/khodzeek%2Fnofind/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/khodzeek%2Fnofind/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/khodzeek","download_url":"https://codeload.github.com/khodzeek/nofind/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/khodzeek%2Fnofind/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34501482,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-18T02:00:06.871Z","response_time":128,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["anonymity","dns","privacy","privacy-focused","privacy-protection","privacy-tools","tor"],"created_at":"2026-06-18T18:02:25.086Z","updated_at":"2026-06-18T18:02:25.972Z","avatar_url":"https://github.com/khodzeek.png","language":"Rust","funding_links":[],"categories":[],"sub_categories":[],"readme":"# nofind\n\n**Privacy-first anonymous browsing tool with Tor integration and DNS over HTTPS.**\n\nA defensive digital privacy tool to protect browsing metadata, reduce tracking, and increase legitimate user anonymity on public networks or insecure environments.\n\n\u003e **Disclaimer:** Esta ferramenta destina-se exclusivamente à proteção de privacidade, segurança pessoal e navegação segura em ambientes autorizados.\n\n---\n\n## Features\n\n### Transparent System-Wide Proxy\n- **Zero browser configuration** — `sudo nofind transparent-start`\n- iptables NAT rules redirect ALL machine TCP traffic through Tor\n- DNS leak prevention via Tor DNSPort redirection\n- Local network exclusion support\n- Automatic iptables backup and restore on exit\n- Kill switch mode: block all non-Tor traffic\n\n### Local HTTP Proxy\n- Built-in forward proxy on 127.0.0.1:8080\n- Browser traffic routed through Tor with stream isolation\n- CONNECT tunnel support for HTTPS\n- Unique SOCKS5 credentials per connection (different circuits per tab)\n\n### Anonymous Browsing\n- SOCKS5 proxy with Tor integration\n- Tor circuit rotation via control port (SIGNAL NEWNYM)\n- Automatic IP rotation every N seconds (default: 60s)\n- Stream isolation — unique Tor circuits per session\n- DNS over HTTPS (DoH) — Cloudflare, Google, Quad9\n- DNS leak prevention and detection\n- Random User-Agent rotation per session\n- Cookie isolation\n\n### Fingerprint Defense\n- 3 browser profiles: Firefox, Chrome, Safari (randomizable)\n- Full HTTP header emulation: Accept, Accept-Language, Sec-CH-UA, etc.\n- Header rotation every ~5 requests\n- Timing obfuscation: configurable jitter with random delays\n- Traffic padding: random-size padding to defeat packet analysis\n- TLS fingerprint masking via reqwest rustls\n\n### Network Privacy\n- Public IP exposure check with geolocation\n- DNS leak detection (cross-provider consistency)\n- WebRTC leak awareness\n- HTTP and TLS fingerprint assessment\n- Anonymity level indicator (None → Maximum)\n\n### MAC Address Management\n- List all physical network interfaces with MAC detection\n- Generate cryptographically-random locally-administered MACs\n- Change MAC via `ip link` (Linux, requires root)\n- Original MAC backup and restore instructions\n\n### Local Security\n- Encrypted config vault — AES-256-GCM with SHA-256 key derivation\n- RAM-only ephemeral mode (/dev/shm, no disk traces)\n- Automatic cache and history cleanup on exit\n- Secure file deletion with overwrite before removal\n- Secure memory wiping (zeroize on drop)\n\n### Terminal Interface\n- Interactive TUI dashboard (ratatui + crossterm)\n- Real-time: connection status, IP, location, Tor, DNS, stats\n- Privacy indicator panel (8 indicators)\n- Scrollable log viewer\n- Session statistics (requests, bandwidth, rotations)\n\n### Configuration \u0026 Automation\n- TOML-based configuration with privacy profiles\n- Shell completions for bash, zsh, fish\n- Encrypted config vault (optional password-protected storage)\n- JSON + text privacy reports\n- Tor bridge support (obfs4)\n\n---\n\n## Installation\n\n### Prerequisites\n\n- **Rust** stable (1.75+)\n- **Tor** daemon (for Tor features)\n- **iptables** (for transparent proxy)\n\n#### Install Tor\n\n**Ubuntu/Debian:**\n```bash\nsudo apt install tor iptables\nsudo systemctl enable --now tor\n```\n\n**Arch Linux:**\n```bash\nsudo pacman -S tor iptables\nsudo systemctl enable --now tor\n```\n\n#### Enable Tor Control Port (circuit rotation)\n\nAdd to `/etc/tor/torrc`:\n```\nControlPort 9051\nCookieAuthentication 1\n```\n\nThen:\n```bash\nsudo systemctl restart tor\n```\n\n#### Enable TransPort (transparent proxy)\n\n```bash\nsudo nofind transparent-setup\nsudo systemctl restart tor\n```\n\n### Build from source\n\n```bash\ngit clone https://github.com/khodzeek/nofind.git\ncd nofind\ncargo build --release\n```\n\nBinary: `target/release/nofind`\n\nOr install globally:\n```bash\ncargo install --path .\n```\n\nIf it's your first Rust binary, add `~/.cargo/bin` to your PATH:\n```bash\necho 'export PATH=\"$HOME/.cargo/bin:$PATH\"' \u003e\u003e ~/.bashrc\nsource ~/.bashrc\n```\n\nFor fish shell:\n```fish\nfish_add_path ~/.cargo/bin\n```\n\n### Sudo can't find nofind? (Linux)\n\n`sudo` uses root's PATH, which doesn't include `~/.cargo/bin`. Fix with one of these:\n\n**Option 1: Install system-wide (recommended)**\n```bash\nsudo cp ~/.cargo/bin/nofind /usr/local/bin/\n```\n\n**Option 2: Use full path with sudo**\n```bash\nsudo ~/.cargo/bin/nofind transparent-start\nsudo ~/.cargo/bin/nofind transparent-stop\n```\n\n**Option 3: Add to root's secure_path** (Ubuntu/Debian)\n```bash\nsudo visudo\n# Add this line:\n# Defaults    secure_path = /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/home/YOUR_USER/.cargo/bin\n```\n\n---\n\n## Usage\n\n### Quick start — anonymous browser (no config needed)\n\n```bash\nnofind connect --proxy-port 8080\n```\n\nConfigure browser to `127.0.0.1:8080` (HTTP + HTTPS proxy). Every 60s your IP changes.\n\n### Full system anonymity (no browser config)\n\nIf you installed via `cargo install`, copy the binary first (sudo needs it in system PATH):\n```bash\nsudo cp ~/.cargo/bin/nofind /usr/local/bin/\n```\n\nThen:\n```bash\nsudo nofind transparent-setup        # One-time Tor config\nsudo systemctl restart tor\nsudo nofind transparent-start        # All traffic → Tor\n```\n\n**Nothing to configure in any application.** Everything goes through Tor.\n\n```bash\nsudo nofind transparent-start --kill-switch        # Block all non-Tor traffic\nsudo nofind transparent-start --local-network 192.168.1.0/24  # Exclude LAN\nsudo nofind transparent-stop                       # Restore normal networking\nnofind transparent-status                          # Check status\n```\n\n### Check privacy status\n\n```bash\nnofind status\n```\n\nOutput:\n```\n╔══════════════════════════════════════════╗\n║        nofind — Privacy Status          ║\n╠══════════════════════════════════════════╣\n║  Proxy:        127.0.0.1:9050 ● connected\n║  Public IP:    185.220.101.42\n║  Location:     Frankfurt, DE\n║  ISP:          Tor Exit Node\n║  Tor:          ✓ Active\n║  Circuit:      ● Established\n║  DNS Secure:   ✓ DoH enabled\n║  Anonymity:    HIGH\n╠══════════════════════════════════════════╣\n║  UA Rotation:  ✓\n║  Session Iso:  ✓\n║  Stream Iso:   ✓\n║  Jitter:       ✓\n║  Fingerprint:  basic\n║  Browser:      random\n║  Kill Switch:  ✗\n║  Bridges:      0 configured\n║  Profile:      standard\n╚══════════════════════════════════════════╝\n```\n\n### Rotate Tor identity (new IP)\n\n```bash\nnofind rotate-identity\n```\n\n### Run leak checks\n\n```bash\nnofind check-leaks\n```\n\n### Change MAC address\n\n```bash\nnofind change-mac --list                  # List interfaces\nsudo nofind change-mac --interface eth0   # Random MAC\nsudo nofind change-mac --mac 02:42:ac:11:00:ff  # Specific MAC\n```\n\n### Manage config\n\n```bash\nnofind config init      # Create ~/.config/nofind/config.toml\nnofind config show       # Display current config\n```\n\n### Encrypted config vault\n\n```bash\nnofind vault-init --password \"my-secret\"   # Create encrypted vault\nnofind connect --vault-password \"my-secret\" # Connect using vault config\nnofind vault-destroy                       # Destroy vault\n```\n\n### Session cleanup\n\n```bash\nnofind clean-session\n```\n\n### Privacy report\n\n```bash\nnofind report   # Text + JSON report\n```\n\n### Shell completions\n\n```bash\nsource \u003c(nofind completions bash)   # bash\nsource \u003c(nofind completions zsh)    # zsh\nnofind completions fish | source    # fish\n```\n\n---\n\n## Dashboard Controls\n\n| Key | Action |\n|-----|--------|\n| `q` / `Esc` | Quit dashboard |\n| `r` | Rotate Tor identity (manual) |\n| `s` | Refresh status |\n| `c` | Clean session data |\n\nHelp bar shows `Auto-Rot ON` when automatic identity rotation is active.\n\n---\n\n## All Commands\n\n| Command | Description |\n|---------|-------------|\n| `nofind connect` | Dashboard + local proxy + auto-rotation |\n| `nofind status` | Privacy status overview |\n| `nofind rotate-identity` | New Tor circuit (new IP) |\n| `nofind check-leaks` | DNS, IP, WebRTC, fingerprint leak tests |\n| `nofind clean-session` | Wipe cache, history, temp files |\n| `nofind config init` | Create config file |\n| `nofind config show` | Display config |\n| `nofind change-mac` | MAC address management |\n| `nofind vault-init` | Encrypted config vault |\n| `nofind vault-destroy` | Destroy vault |\n| `nofind report` | Privacy report (text + JSON) |\n| `nofind completions \u003cshell\u003e` | Shell completions |\n| `sudo nofind transparent-start` | System-wide transparent proxy (full path if needed) |\n| `sudo nofind transparent-stop` | Disable transparent proxy |\n| `nofind transparent-status` | Check transparent proxy status |\n| `sudo nofind transparent-setup` | Install Tor TransPort config (one-time) |\n\n---\n\n## Configuration\n\nConfig file: `~/.config/nofind/config.toml`\n\n### Privacy Profiles\n\n| Profile | Description |\n|---------|-------------|\n| `standard` | Tor + DoH + stream isolation + jitter |\n| `paranoid` | All above + kill switch + 120s rotation + full fingerprint defense |\n\n```toml\nprofile = \"paranoid\"\n```\n\n### Key Settings\n\n```toml\n[network]\nsocks5_proxy = \"127.0.0.1:9050\"\ntor_control_port = 9051\n\n[dns]\ndoh_provider = \"cloudflare\"          # cloudflare | google | quad9\n\n[privacy]\nrotate_identity_interval_secs = 60   # Auto-rotate IP every 60s\nstream_isolation = true              # Unique Tor circuits per session\nfingerprint_level = \"full\"           # off | basic | full\nbrowser_profile = \"random\"           # firefox | chrome | safari | random\njitter_enabled = true\njitter_base_delay_ms = 30\njitter_range_ms = 120\npadding_strategy = \"random\"          # none | block | random\nkill_switch = false\ntor_bridges = []                     # obfs4 bridge lines\n\n[security]\nclean_cache_on_exit = true\nclean_history_on_exit = true\nephemeral_sessions = true\n```\n\n---\n\n## Architecture\n\n```\nnofind/\n├── Cargo.toml\n├── README.md\n├── config/default.toml\n├── examples/basic_usage.rs\n├── src/\n│   ├── main.rs           # Entry point\n│   ├── lib.rs            # Library root\n│   ├── cli.rs            # 16 CLI commands (clap)\n│   ├── config.rs         # TOML config with profiles\n│   ├── network.rs        # SOCKS5 HTTP client + fingerprint headers\n│   ├── tor.rs            # Tor control protocol + circuit rotation\n│   ├── dns.rs            # DNS over HTTPS + leak detection\n│   ├── privacy.rs        # Privacy status + anonymity assessment\n│   ├── proxy.rs          # Local HTTP forward proxy\n│   ├── transparent.rs    # System-wide iptables transparent proxy\n│   ├── leaks.rs          # DNS, IP, WebRTC, fingerprint leak tests\n│   ├── fingerprint.rs    # Browser fingerprint emulation + jitter\n│   ├── mac.rs            # MAC address changer\n│   ├── vault.rs          # Encrypted config vault\n│   ├── security.rs       # Session cleanup + secure deletion\n│   ├── stats.rs          # Traffic statistics + report export\n│   ├── ui.rs             # Ratatui TUI dashboard\n│   └── utils.rs          # User agents, logging, helpers\n```\n\n### Technology Stack\n\n- **Rust** 1.95+ — Systems programming\n- **Tokio** — Async runtime\n- **Reqwest** 0.13 — HTTP client with SOCKS5 + rustls\n- **Clap** 4 — CLI argument parsing with shell completions\n- **Serde + TOML** 1 — Configuration\n- **Ratatui** 0.30 + **Crossterm** 0.29 — Terminal UI\n- **Sha2 + Zeroize** — Encryption and secure memory\n- **Parking Lot** — Fast synchronization primitives\n- **iptables** — Kernel-level transparent proxy\n\n---\n\n## Security Model\n\nnofind is designed exclusively for **defensive privacy**:\n\n- **Protect metadata** from network observers\n- **Reduce tracking** surface through isolation and rotation\n- **Increase anonymity** on public/untrusted networks\n- **Defend against fingerprinting** via header emulation and jitter\n\nThe tool is NOT designed for and must NOT be used for:\n- Illegal bypass of security controls\n- Fraud, spam, or botnets\n- DDoS or network attacks\n- Malware distribution\n- Criminal evasion or offensive exploitation\n\n---\n\n## Platform Support\n\n| Platform | Status |\n|----------|--------|\n| Linux (x86_64) | Full support — all features |\n| Linux (aarch64) | Supported |\n| Windows | Partial — Tor via external daemon, no iptables/MAC |\n| macOS | Untested |\n\n---\n\n## Building on Linux\n\n```bash\n# Install Rust\ncurl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh\n\n# Install system dependencies\nsudo apt install build-essential pkg-config libssl-dev tor iptables\n\n# Build\ncargo build --release\n\n# Install system-wide (so sudo can find it)\nsudo cp target/release/nofind /usr/local/bin/\n\n# Run\nnofind connect --proxy-port 8080\n```\n\n---\n\n## License\n\nMIT\n\n---\n\n**nofind** — Sua privacidade, suas regras.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkhodzeek%2Fnofind","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fkhodzeek%2Fnofind","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkhodzeek%2Fnofind/lists"}