PreviewGram is for users that wants get a more private experience with the Telegram's Channel.

Overview

PreviewGram Cover

Private PreviewGram

Run away from Metadata

[ ⚠️ ] - Warning:

USE A VPN TO HIDE YOUR IP IT'S IN TEST

PreviewGram is under LGPL License

Application's theme from UN-GCPDS/qt-material under BSD-2-Clause License.

Why use?

PreviewGram is for users that wants get a more private experience with the Telegram's Channel. It's because:

  • Telegram collects when you see determinate content
  • Groups show publicly who are the followers*
  • The channel owners can see who are them followers
  • Telegram added Group Read Receipts*
  • You must to trust on Telegram's Servers
  • * PreviewGram doesn't protects you against it, because can't view Group Chats.

[ ⚠️ ] - Warning

If you don't enabled Github's JavaScript, go to Telegram Privacy Issues Topic to understand more.

How to install

> pip install -r requirements.txt
> py -m build
> pip install dist/Private\ PreviewGram-1.1.tar.gz

[ ⚠️ ] - Note If you're in another version, change the 1.1 for the current version.

Or Download Last Release

Running without install

  • Clone this project
git clone https://github.com/RickBarretto/PreviewGram.git
pip -m test_application.py

Features

PreviewGram Screenshot

PreviewGram protects you when:

  • Disables JavaScript when Browsing
    • Doesn't store cookies
    • Doesn't run trackers
  • Uses a generic Chrome user-agent
  • Doesn't use Telegram's API
  • Doesn't require a Account

Useful Features:

  • Store locally your favorites Channels
  • Can't open some links

Limitations

PreviewGram isn't the perfection on Earth. Because:

  1. Doesn't use JavaScript
  2. It's limited by the Telegram's Preview Site itself.

So, PreviewGram can't:

  • Hide your IP*
  • Play videos**
  • See Group Chats***
  • Download files directly*** (instead this, do: RMB**** > Copy link address and download on Telegram App)

Tips

  • Always use Vpn or Proxy
  • To open links, do RMB* > Copy link address
  • If you want to watch videos, please use Tor** (or any Browser that you trust)
  • Click on Test privacy! button to test for yourself. It's tested by What Is My Browser***

Extra: Accessing channels through TorBrowser

Go to Accessing via Tor topic.

VPN, Proxy and Tor

Differences

Proxy

Proxy is your online ID, hiding you real IP Address. It's a intermediary between your Web Browser and the internet, a web site for example. (Needs to be configured per-app basis)

VPN

VPN covers 100% of you device traffic, encrypting the connection. It'll hide your real IP Address.

The Onion Route (Tor)

Tor anonymizes your traffic sending it through a series of proxies, this proxies are called Nodes, that encrypts the traffic and sends to destiny using a Exit Node.

Sources:

The Tor's Power

With and Without Tor:

Tor: off / Https: off Tor: off / Https: on Tor: on / Https: on
Tor: off / Https: off Tor: off / Https: on Tor: on / Https: on

Source: When I'm using Tor, can eavesdroppers still see the information I share with websites, like login information and things I type into forms?

Why PreviewGram doesn't use Tor's Proxy by itself?

Tor have some issues, and aren't recommended to use Tor outside TorBrowser to avoid DNS Leaks and VPN+TOR issues.

Sources:

But What The F 😡 😡 😡 talking about Tor, if PreviewGram doesn't use it???

Because you can Access the channels via Tor

Yep, you don't need this application if you have Tor... 🙃

Accessing via Tor

  1. Create a "Telegram Channels" Folder on Bookmarks
    • Create Folder
  2. To access your favorite channel, put a /s/ between the domain and channel name, example: https://t.me/previewgram to https://t.me/s/previewgram
  3. Save to "Telegram Channels"'s Bookmark Folder
    • Save to BookMark
  4. Access when you want!
  5. Extra: make Tor portable and use the Mobile Tor Browser to use everywhere.

Sources:

Help PreviewGram

If you're a Dev (or not), help PreviewGram forking and making pull requests. Don't afraid to use the Github's Issue Tab to make critics, suggestions, bugs and security reports! 😉


To Do

  • Block telegram.org and other https requests using the webView.page().profile().setUrlRequestInterceptor(interceptor) (Thanks, dbunk!)
  • Channel Categories
  • Open on Tor
  • UI improvements?

Telegram Privacy Issues

As any Social Network app, Telegram suffers with Osint (Open-Source Intelligence), be caution with the information that you exposes publicly about yourself!

Osint Problems:

What is Osint?

Yeah, it's the information era, 500 milions tweets are published every day. Public informations like birthday, complete name, age are available on internet published by its own users. Which in itself poses privacy risks.

"Open-source intelligence (OSINT) is a multi-factor (qualitative, quantitative) methodology for collecting, analyzing and making decisions about data accessible in publicly available sources to be used in an intelligence context." Source: Open-Source Intelligence - Wikiless

So, caution with your public information! 😉

Articles:

Comments
  • Fix Pylint

    Fix Pylint

    • Critical:
      • [x] no-method-argument (E0211)
    • Medium:
      • [x] pointless-statement (W0104)
      • [x] pointless-string-statement (W0105)
      • [x] unnecessary-pass (W0107)
      • [x] unused-import (W0611)
      • [x] unused-variable (W0612)
    • Minor:
      • [x] PEP 257 docstring style checker
      • [x] no-self-use (R0201)
      • [x] trailing-whitespace (C0303)
      • [x] pyflakes
    opened by RickBarretto 1
  • Change `pip` for `pipx` or `poetry`

    Change `pip` for `pipx` or `poetry`

    Change install instructions from pip, on Readme

    Cause

    Pip doesn't use virtual environment by standard, setting packages on a global environment. It's a big problem, and causes conflicts between projects with the same packages but with different versions.

    Solution

    Use Poetry~~or PyEnv~~ for libraries and Poetryor PipXfor Applications.

    Read: Why use Poetry instead PyEnv

    opened by RickBarretto 0
  • Can't compile to `.exe`

    Can't compile to `.exe`

    Can't compile to executable file

    I followed the: Qt supported Libs,

    I tried 4 libraries, but no one could compile my code:

    Libraries

    The causes

    Auto Py to Exe

    Cx Freeze

    • Needs Visual Studio C++ compiler, that I don't will download because it's heavy. ⚒️
    • Repo link

    Fbs

    • The free version of fbs only supports Python 3.5 and 3.6. 😡
    • Repo link

    Nuitka

    bug 
    opened by RickBarretto 1
  • Fix Style code on Readme

    Fix Style code on Readme

    Current issues founded by Codacy:

    • remark-lint

      • [ ] list-item-indent
      • [ ] no-undefined-references
      • [ ] no-consecutive-blank-lines
      • [ ] no-heading-punctuation
    • Markdown Lint

      • [x] MD002 - First heading should be a top-level heading
      • [x] MD007 - Unordered list indentation
      • [x] MD009 - Trailing spaces
      • [x] MD032 - Lists should be surrounded by blank lines
      • [x] MD012 - Multiple consecutive blank lines
      • [x] MD013 - Line length
        • [ ] Change table to a single image
      • [x] MD022 - Headings should be surrounded by blank lines
      • [x] MD026 - Trailing punctuation in heading
      • [x] MD028 - Blank line inside blockquote
      • [x] MD033 - Inline HTML
      • [x] MD041 - First line in a file should be a top-level heading
      • [x] MD047 - Files should end with a single newline character
      • [x] MD006 - Consider starting bulleted lists at the beginning of the line
      • [x] MD043 - Required heading structure
    codacy 
    opened by RickBarretto 0
  • Block Fav Icon Request

    Block Fav Icon Request

    opened by RickBarretto 0
Releases(1.1)
Owner
Learning Python, Html and Css, and ShellScript; Soon learn JS.
DNSSEQ: PowerDNS with FALCON Signature Scheme

PowerDNS-based proof-of-concept implementation of DNSSEC using the post-quantum FALCON signature scheme.

Nils Wisiol 4 Feb 03, 2022
Python tool for exploiting CVE-2021-35616

OracleOTM Python tool for exploiting CVE-2021-35616 The script works in modules, which I implemented in the following order: ► Username enumeration ►

11 Dec 06, 2022
Burp Extensions

Burp Extensions This is a collection of extensions to Burp Suite that I have written. getAllParams.py - Version 1.2 This is a python extension that ru

/XNL-h4ck3r 364 Dec 30, 2022
CVE-2021-22205 Unauthorized RCE

CVE-2021-22205 影响版本: Gitlab CE/EE 13.10.3 Gitlab CE/EE 13.9.6 Gitlab CE/EE 13.8.8 Usage python3 CVE-2021-22205.py target "curl \`whoami\`.dnslog

r0eXpeR 70 Nov 09, 2022
Brainly-Scrambler - Brainly Scrambler With Python

Brainly-Scrambler Untuk admin brainly jangan lupa pasang captcha mu Note: Kamu

8 Feb 24, 2022
A token logger for discord + steals Brave/Chrome passwords and usernames

Backdoor Machine - ❗ For educational purposes only ❗ A program made in python for stealing passwords and usernames from Google Chrome/Brave and tokenl

36 Jul 18, 2021
ShoLister - a tool that collects all available subdomains for specific hostname or organization from Shodan

ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be used from Penetration Tester and Bug Bounty Hunters.

Eslam Akl 45 Dec 28, 2022
Wireguard VPN Server Installer for: on Ubuntu, Debian, Arch, Fedora and CentOS

XGuard (Wireguard Server Installer) This Python script should make the installation of a Wireguard VPN server as easy as possible. Wireguard is a mode

Johann 3 Nov 04, 2022
Reusable Lightweight Pythonic Dependency Injection Library

Vacuna Inject everything! Vacuna is a little library to provide dependency management for your python code. Install pip install vacuna Usage import va

Fernando Martínez González 16 Sep 15, 2021
It is a very simple XSS simulator based on flask, python.

It is a very simple XSS simulator based on flask, python. The purpose of making this is for teaching the concept of XSS.

Satin Wuker 3 May 10, 2022
Repository for a project of the course EP2520 Building Networked Systems Security

EP2520_ACME_Project Repository for a project of the course EP2520 Building Networked Systems Security in Royal Institute of Technology (KTH), Stockhol

1 Dec 11, 2021
A python script to bypass 403-forbidden.

4nought3 A python script to bypass 403-forbidden. It covers methods like Host-Header Injections, Changing HTTP Requests Methods and URL-Injections. Us

11 Aug 27, 2022
Phoenix Framework is an environment for writing, testing and using exploit code.

Phoenix-Framework Phoenix Framework is an environment for writing, testing and using exploit code. 🖼 Screenshots 🎪 Community PwnWiki Forums 🔑 Licen

Felix 42 Aug 09, 2022
A TCP Backdoor made in python

Tracey-Backdoor A Reverse Shell Backdoor made in python OOP. It supposed to work in Windows and Linux OS Functions: Reverse Connection Send Reverse TC

13 Oct 15, 2022
Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228)

log4j-finder A Python3 script to scan the filesystem to find Log4j2 that is vulnerable to Log4Shell (CVE-2021-44228) It scans recursively both on disk

Fox-IT 431 Dec 22, 2022
Exploit for CVE-2017-17562 vulnerability, that allows RCE on GoAhead (< v3.6.5) if the CGI is enabled and a CGI program is dynamically linked.

GoAhead RCE Exploit Exploit for CVE-2017-17562 vulnerability, that allows RCE on GoAhead ( v3.6.5) if the CGI is enabled and a CGI program is dynamic

Francisco Spínola 2 Dec 12, 2021
CVE-2021-22986 & F5 BIG-IP RCE

Vuln Impact This vulnerability allows for unauthenticated attackers with network access to the iControl REST interface, through the BIG-IP management

Al1ex 85 Dec 02, 2022
Remote Desktop Protocol in Twisted Python

RDPY Remote Desktop Protocol in twisted python. RDPY is a pure Python implementation of the Microsoft RDP (Remote Desktop Protocol) protocol (client a

Sylvain Peyrefitte 1.6k Dec 30, 2022
Scanning for CVE-2021-44228

Filesystem log4j_scanner for windows and Unix. Scanning for CVE-2021-44228, CVE-2021-45046, CVE-2019-17571 Requires a minimum of Python 2.7. Can be ex

Brett England 4 Jan 09, 2022
This a simple tool XSS Detection Suite for CTFs games

This a simple tool XSS Detection Suite for CTFs games

Mostafa 2 Nov 24, 2021