Skip to main content
NEWNorypt Protect Free for everyone.Get it →NEWNorypt MDM — anonymity-first MDM.Learn more →
Norypt
New · Free for everyone

Free open-source Android security.
Lock or wipe instantly.

Norypt Protect is a free, open-source Android security app that lets you lock or wipe your phone instantly — with no internet permission, no server, no telemetry, and no logs. Runs on Android 13+ on any device. Licensed GPL-3.0. Built by Norypt.

Download from GitHubView source

GPL-3.0-or-later · No account · No subscription · No in-app purchases

🚫No INTERNET permission🚫No telemetry🚫No logs🔐AES-256 on-device📜Open source
09:41AIRPLANE

Norypt Protect

Trust report

INTERNET permissionabsent
Telemetry / analyticsnone
Log statementsstripped (R8)
Signing cert matchverified
Config encryptionAES-256-GCM
Dry-run modeON

Offline by design

GPL-3.0

🎯 Who this is for

Built for journalists, researchers, activists, and executives.

Norypt Protect is built for technical and non-technical users who share one trait: they treat their phone as something that must hold up under pressure, not just be backed up.

📰

Journalists

Carrying source-protected material. One-button wipe. No cloud account that can be subpoenaed because there is no cloud.

🔬

Researchers

Working in adversarial regions. Tier 2 enforces USB-data lockdown when locked, blocks safe-boot, and refuses uninstall.

Activists

Operating where seizure is plausible. Dead-man on low battery, duress PIN with a lower wrong-attempt threshold, signature-protected external triggers.

🧑‍💼

Executives

Travelling with material under NDA. Lock or wipe from a Quick Settings tile, a launcher shortcut, or a 5× power-button gesture.

🛡️ Privacy enforced by code, not promised by copy

These aren't marketing claims.

Each of the properties below is a fact about the binary you install — enforced by the Android sandbox, the manifest, the build pipeline, or the source code. Auditable, falsifiable, reproducible.

Privacy properties of the release binary

INTERNET permission in the manifest🚫 Absent — kernel refuses sockets
Server / cloud / sync endpoint🚫 Does not exist
Telemetry, analytics, ads, tracking🚫 None — nothing to send
Log.* calls in release builds🚫 Stripped by R8 minification
Configuration storage🔐 EncryptedSharedPreferences (AES-256-SIV / AES-256-GCM)
App PIN derivation🔐 PBKDF2-HMAC-SHA256 · 120,000 rounds + Keystore
PIN recovery / backdoor🚫 None — forgotten PIN means factory reset
Signing-cert pinning inside the app✅ Refuses to launch on cert mismatch
Dry-run defaults on fresh install✅ ON — wipe simulated until you opt in
Source code📜 GPL-3.0-or-later · public

No INTERNET permission means the kernel rejects any socket the app tries to open. Removing the capability at the OS level is stronger than promising not to use it.

There is no server because there is no cloud account. There is no cloud account because the app cannot reach a network. The architecture is closed at every layer.

Forgetting the PIN is unrecoverable on purpose. A backdoor that the user can use is a backdoor an attacker can use. We do not build them.

If a re-signed or repackaged copy of the app is ever installed, the binary refuses to launch. The certificate fingerprint is pinned in the code itself.

⚡ Two privilege tiers

Device Admin or Device Owner — pick the privilege tier.

Tier 1 is what every install starts as — strong defaults, no computer needed. Tier 2 unlocks the full feature set with one ADB command, then never asks for a computer again.

Tier 1

Device Admin

No PC required. Tap to enable.

🔒
  • Lock the screen instantly
  • Wipe via PIN-gated button or 3-second hold
  • Quick Settings panic tile
  • Launcher shortcuts (Lock, Wipe)
  • App-internet permission monitor
  • Notification listener stub

Tier 2 · Full feature set

Device Owner

One ADB command. Then never again.

🛡️
  • Real factory-reset wipe on Android 14+
  • USB data lockdown (charging-only) when locked
  • Safe-boot block
  • Power menu blocked while locked
  • Auto-disable Android Emergency SOS
  • Duress fast-wipe (lower wrong-PIN threshold)
  • Failed-attempts wipe
  • Anti-tamper: uninstall blocked, factory-reset blocked
  • USB-data-while-locked auto-wipe
  • Low-battery dead-man with 60-second countdown
  • 5× power-button gesture
  • "Stayed unlocked too long" auto-wipe
  • Fake-messenger trap
  • Secret SMS-code wipe
  • Signature-protected external-app trigger
  • Hide-from-launcher
⚠ Read this before installing

Verify the APK signature before installing Norypt Protect.

A correct file hash alone does not prove the APK was signed by Norypt. Run both checks. The fingerprint below is also pinned inside the app — a build that doesn't match refuses to launch.

Pinned production signing certificate

Norypt
SHA-25613:50:25:10:A5:B5:0D:59:BF:78:23:CB:E5:96:B8:8C:7B:4C:B5:4B:41:BC:21:7A:AC:7C:25:19:17:53:6E:95
SHA-19F:46:D8:CD:77:AE:FE:F2:63:89:C7:5C:B4:B7:5F:29:18:C5:1C:39
DNCN=Norypt Protect, OU=Mobile, O=Norypt, L=Internet, ST=Internet, C=XX

1. Verify the file hash

bash
sha256sum norypt-protect-X.Y.Z.apk

# Compare with the SHA-256 listed
# on the GitHub Release page.

2. Verify the signing cert

bash
apksigner verify --print-certs \
  norypt-protect-X.Y.Z.apk

# The "certificate SHA-256 digest"
# line must equal the value above.

The same SHA-256 fingerprint is pinned inside the running app. If the binary's certificate doesn't match, Norypt Protect refuses to launch — defending against repackaged copies even if you skipped this check.

📲 Install — Tier 1

How to install Norypt Protect on Android — 4 steps.

This is what most users will run. It enables the lock-and-wipe core. Tier 2 is opt-in below.

01

Download the signed APK

From the GitHub Release page. Pick the latest stable release.

02

Verify both checksums

Run the sha256sum and apksigner commands above. Both must match before you proceed.

03

Install

adb install norypt-protect-X.Y.Z.apk — or open the APK from the phone's file manager.

04

Enable Device Admin

Open Norypt Protect → tap Enable → grant Device Admin in Android Settings.

Optional · Unlocks the full feature set

Set up Device Owner mode on Android via ADB.

This is the only step that needs a computer. Android allows it exactly once per device — and only when the device is in a clean state.

Required preconditions

No other Device Owner is currently active
No Google / Samsung / email / work accounts on user 0
No managed profile
Only user 0 (no secondary users / guests)

A factory reset is the cleanest path to that state.

Confirm no other Device Owner exists (output must be empty).

step 1
adb shell dpm list-owners

Promote.

step 2
adb shell dpm set-device-owner com.norypt.protect/com.norypt.protect.admin.ProtectAdminReceiver

Grant the secure-settings write used by the Emergency-SOS auto-disable trigger.

step 3
adb shell pm grant com.norypt.protect android.permission.WRITE_SECURE_SETTINGS

If step 2 fails

"already set"Another Device Owner is active. Remove it or factory-reset.
"already accounts"Remove every account in Settings → Passwords & accounts.
"Unknown admin"The package doesn't match the installed APK. Reinstall the production release.

🔍 Built into the app

Verify the privacy claims from inside the running APK.

Open the app → Protect tab → Trust report. Every privacy claim on this page is re-checked at runtime against the installed binary using PackageManager.

No network round-trip, no external oracle. The check happens on the device, against the device. If any claim breaks, the report says so — in red.

  • INTERNET permission absent — verified live
  • Logging stripped — release variant verified
  • Signing certificate match — pinned fingerprint compared
  • Configuration encryption — keystore alias readable

Trust report

All checks pass
INTERNET permission absent
Telemetry calls: 0
Log statements stripped
Cert match: SHA-256 verified
Config: AES-256-GCM
Dry-run defaults: ON

📱 Compatibility

Android 13+ (API 33). Any device.

Tested end-to-end on Android 16 / API 36 — Pixel 9a (GrapheneOS) and Pixel 9 (stock).

PixelSamsungSonyXiaomiOnePlusMotorolaGrapheneOSLineageOSCalyxOS

🎯 Threat model — honest

Threat model — what Norypt Protect defends against.

No security tool protects against everything. We will not pretend otherwise — and you should not trust any vendor that does.

Designed to resist

  • Physical seizure of an unlocked or powered-on device
  • Forensic imaging via USB while the phone is locked
  • Safe-mode bypass attempts (Tier 2)
  • Brute-force unlock
  • Coerced unlock (duress threshold)
  • Adversaries trying to uninstall the app (Tier 2)
  • Passive seizure with battery drain (low-battery dead-man)
  • Shoulder-surfing the app's own configuration
  • Repackaged APKs (signature pinning)

Does not defend against

  • Root or bootloader-unlocked adversary on the same device
  • Hardware attacks (chip-off, RAM freeze, JTAG)
  • Voluntary disclosure of the app PIN
  • Attacks after a successful wipe

These are the limits of any software running inside Android. Hardware exploits and physical extraction are out of scope for any user-installed app.

🔗 Related at Norypt

Pair Norypt Protect with hardened hardware.

Norypt Protect is the software layer. The full privacy stack pairs it with the right phone, OS, and management plane.

GrapheneOS Phones

Pre-configured Pixel devices running GrapheneOS — the recommended OS for Norypt Protect.

GrapheneOS Setup Guide

Step-by-step install of GrapheneOS, the privacy Android distribution Protect is tested against.

GrapheneOS vs Stock Android

Why a privacy-first Android distribution outperforms vendor stock for security.

Encrypted Phone vs Normal Phone

What changes when full-disk encryption, hardened OS, and an app like Protect are combined.

Norypt MDM (for fleets)

Managing many devices? Norypt MDM is the anonymity-first MDM that pairs with Protect.

Privacy & Security FAQ

Common questions on encrypted devices, GrapheneOS, and Norypt's approach.

❓ FAQ

Frequently asked questions

Norypt Protect

Free · GPL-3.0 · No account

Carry a phone that responds to you, not to a server.

Free for everyone. Read the source. Verify the binary. Install on any Android 13+ device.

Download from GitHubView source

Bugs and feature requests: GitHub Issues · Security: norypt@proton.me