WindowsSpyBlocker is an application written in Go and delivered as a single executable to block spying and tracking on Windows systems. The initial approach of this application is to capture and analyze network traffic based on a set of tools.
Configuration file app.conf
is generated at first launch :
Also Read Shodanwave – Tool For Exploring & Obtaining Information From Cameras
To capture and analyze network traffic for the telemetry option, QEMU virtual machines are used on the server virtualization management platform Proxmox VE based on :
Traffic dumps are clean every day and compared with the current rules to add / remove some hosts or firewall rules.
Tools used to capture traffic :
qemu -net dump
: captureThe data
folder contains the blocking rules based on domains or IPs detected during the capture process :
data/<type>/extra.txt
: Block third party applicationsdata/<type>/spy.txt
: Block Windows Spy / Telemetrydata/<type>/update.txt
: Block Windows UpdateFirewall and Hosts data are the main types. The others are generated from these as :
Playwright-MCP (Model Context Protocol) is a cutting-edge tool designed to bridge the gap between AI…
JBDev is a specialized development tool designed to streamline the creation and debugging of jailbreak…
The Kereva LLM Code Scanner is an innovative static analysis tool tailored for Python applications…
Nuclei-Templates-Labs is a dynamic and comprehensive repository designed for security researchers, learners, and organizations to…
SSH-Stealer and RunAs-Stealer are malicious tools designed to stealthily harvest SSH credentials, enabling attackers to…
Control flow flattening is a common obfuscation technique used by OLLVM (Obfuscator-LLVM) to transform executable…