Title here
Summary here
Blog
Monthly report n⁰39 - 2025-05
With the release of Colander v1.2.3 users can better organize their investigations by creating a hierarchy of cases and creating multiple sub-graphs to help focus on specific findings. Uploaded artifacts are now automatically analyzed, the text content (if any) is extracted with OCR and metadata is parsed to reveal information such as geolocation. The decryption of TLS traffic has improved and is now saved in an HAR file and like any other HAR, it can be open directly in Colander.
May 31, 2025 in activity reports by Esther Onfroy10 minutes
Analysis of Botim v3.38.1
Botim is an instant messaging and VoIP application that asks for a lot of permissions and embeds a lot of trackers.
May 29, 2025 in analysis reports by Emy Canton8 minutes
Monthly report n⁰38 - 2025-04
Two security vulnerabilities identified in PiRogue have been fixed. The dashboard is now accessible in HTTPS only and upon their first login to PiRogue, the user is now requested to change their password.
April 30, 2025 in activity reports by Esther Onfroy5 minutes
Analysis of APNA Tunnel Lite v27
Apna Tunnel Lite is a very simple application designed to provide free VPN access to its users, however the exit nodes servers may be a little shady.
April 23, 2025 in analysis reports by Emy Canton8 minutes
Analysis of Istanbul Senin
Istanbul Senin is a heavily protected Android application designed to give information about Istanbul and its many activities. The app is heavily protected and asks for a lot of concerning permissions.
March 31, 2025 in analysis reports by Emy Canton6 minutes
Monthly report n⁰37 - 2025-03
We have fixed a high-severity security vulnerability in PiRogue's network configuration and updated Colander dependencies like Django and Python. Significant progress was made in modernizing Colander front-end build system. We also submitted funding proposals to funding sources.
March 31, 2025 in activity reports by Esther Onfroy6 minutes
Analysis ShamCash app v0.2.0
The analysis of ShamCash v0.2.0 reveals a fairly secure application designed to handle crypto and financial transactions.
February 28, 2025 in analysis reports by Emy Canton5 minutes
Monthly report n⁰36 - 2025-02
We’re thrilled to announce a major milestone in the evolution of Colander, our digital investigation web platform for civil society organizations. After months of dedicated work, we’ve completely revamped our deployment procedure, making it easier to get Colander up and running, keep it updated, and ensure your data is safe.
February 26, 2025 in activity reports by Esther Onfroy8 minutes
🚀 Self-host Colander in 10 minutes
Deploy, update, and manage Colander with ease! We're thrilled to release our new Ansible playbooks, simplifying the entire Colander deployment process for a smoother, more efficient experience.
February 20, 2025 in announcements by Esther Onfroy1 minute
Analysis of MOI - Jordanian Ministry Of Interior v1.63
The analysis of MOI - Jordanian Ministry Of Interior v1.63 reveals that, despite requesting very sensitive information,it appears to be designed for a specific purpose and doesn't overuse complex SDKs to do what it is meant to do.
January 31, 2025 in analysis reports by Emy Canton4 minutes