Whonix - Superior Internet Privacy

Your IP gives away your identity. Cloaking your IP address is difficult because the Internet is not designed for privacy. Whonix solves this problem by forcing all connections through multiple anonymity servers with its Dual-VM Architecture .

DNS leaks are impossible with Whonix. And even malware with root privileges cannot discover the user's real IP address. Whonix was thoroughly leak tested through corridor (Tor traffic whitelisting gateway) and other leak tests.

Internet tracking companies don't even need to know your IP address to be able to identify you. They use so-called Browser Fingerprinting which can track you even better than an IP address.

Even your personal typing style or your individual computer time can give away your identity. Every website has a unique fingerprint so your Internet history is not even safe with a VPN.

Booting into VM Live Mode is as simple as choosing Live Mode in the boot menu. Alternatively Debian, Kicksecure and perhaps other Debian-based hosts can boot their existing host operating system into Host Live Mode.

Linux is highly reliable and secure. Its open source and freedom paradigm sets it apart from other OS. That's why Whonix is based on Kicksecure which is based on Linux.

Our website offers an alternative onion version which offers a higher connection security between the user and the server. This is because connections over onions are providing an alternative end-to-end encryption which is independent from flawed TLS certificate authorities and the mainstream Domain Name System (DNS).

Whonix utilizes Tor, the best anonymity network, which provides an open and distributed relay network to defend against network surveillance.

Multiple server hops. Privacy by design. Need to know architecture. Onion-layered encryption. Unlike Virtual Private Networks (VPN), Tor provides anonymity by design and removes trust from the equation.

Decades of research by the security community lead to many best practices. Whonix is based on Kicksecure which is a security-hardened Linux distribution that implements the consensus of these reasonable security measures.

Whonix ™ is based on Kicksecure ™ which is a security-hardened Linux distribution.

Our Firewall is configured specifically for anonymously and securely using the Internet. It is configured for anonymous Tor use.

Your typing style can be used to track you. To prevent this, Whonix comes with kloak (a keystroke anonymizer) installed by default

Whonix provides additional security hardening measures and user education to provide better protection from viruses.

Whonix protects Linux user accounts against brute force attacks by using pam tally2.

AppArmor profiles restrict the capabilities of commonly used, high-risk applications such as Tor Browser.

Distinct applications are routed through different paths in the Tor network. This is called Stream Isolation.

Time attacks on Whonix users are defeated by Boot Clock Randomization and secure network time synchronization through sdwdate (Secure Distributed Web Date).

Not even WE know. Whonix has a strong organisational separation which means: Even we do not have access to IP connection logs!

The Everything Tor OS. All internet traffic is routed through the Tor anonymity network. No exceptions. Whonix is the "All Tor Operating System".

Virtualizer Friendly. Since Whonix runs in a virtualizer it provides an abstraction layer from the host operating system. This hides hardware serial numbers and prevents host file leaks.

Anonymously hosting a web server such as nginx (or any other type) is extremely difficult. Location / IP hidden servers are usually hosted using Tor onion services. The disadvantage is, that these are only reachable for users of Tor (such as Tor Browser or Whonix users). With Whonix, it's possible to host a location / IP hidden server service while it's reachable over clearnet . A very little known, but very unique and powerful feature.

Whonix provides vanguards against guard discovery and related traffic analysis attacks.

Learn more about our Linux User Account Separation security-misc .

Learn more about our anonymity, privacy and security settings pre-configuration anon-apps-config .

The more you know, the safer you can be: Extensive Whonix Documentation

Our vibrant Whonix community features Forums, Contributors and RSS

Console Lockdown disables legacy login methods and thereby improves security hardening.

Tor Browser is optimized for anonymity and millions of daily users help you blend in with the crowd. Tor Browser provides protection from browser fingerprinting.

Tor Browser is the only serious and actively developed browser designed and recommended for anonymity.

The browser is fully featured because it is based on the modern and popular Mozilla Firefox browser, Visit any destination including modern websites such as YouTube.

Running low on RAM isn't a security problem. swap-file-creator will create an encrypted swap file.

Better encryption thanks to preinstalled random number generators.

Prevent de-anonymization of Tor onion services via utilization of the Tirdad kernel module for random ISN generation .

Whonix is the safest way to Host Location Hidden Services / Onion Services .

tor-ctrl-observer shows connection information of applications using Tor.

A canary confirms that no warrants have ever been served on the Whonix project.

In oversimplified terms, Whonix is just a collection of configuration files and scripts. Whonix is not a stripped down version of Debian; anything possible in "vanilla" Debian GNU/Linux can be replicated in Whonix. About Whonix

Downloads are signed so genuine Whonix releases can be verified.

Whonix has over 11 years of success. We have successfully protected our users from everyday trackers and even from high level attacks . With the next decade in mind, we are constantly improving Whonix' privacy and security.

All the Whonix source code is licensed under OSI Approved Licenses. We respect user rights to review, scrutinize, modify, and redistribute Whonix. This improves security and privacy for everyone.

Whonix is Freedom Software and contains software developed by the Free Software Foundation and the GNU Project.

Research and Implementation Project: Whonix makes modest claims and is wary of overconfidence. Whonix is an actively maintained research project making constant improvements; no shortcomings are ever hidden from users.

Whonix is independently verifiable by security experts and software developers around the world; you don’t have to trust developer claims. This improves security and privacy for everyone.

Whonix respects data privacy principles. We don’t make advertising deals or collect sensitive personal data. There are no artificial restrictions imposed on possible system configurations .