Session Icon

Session is a fork of Signal, however unlike Signal it does not require a mobile number (or any other personal data) to register, instead each user is identified by a public key. It is also decentralized, with servers being run by the community though Loki Net, messages are encrypted and routed through several of these nodes. All communications are E2E encrypted, and there is no meta data.

Open Source

Session Privacy Policy

Privacy Policy Summary

  • This service prohibits users from attempting to gain unauthorized access to other computer systems
  • The service provider makes no warranty regarding uninterrupted, timely, secure or error-free service
  • Only necessary user logs are kept by the service to ensure quality
  • This service does not track you
  • The court of law governing the terms is in location Victoria, Australia
  • User-generated content is encrypted, and this service cannot decrypt it
  • This service does not guarantee that it or the products obtained through it meet the users' expectations or requirements
  • The terms for this service are easy to read
  • The service warns you of the potential consequences related to third-party access
  • The service does not share user information with third parties
  • User logs are deleted after a finite period of time
  • Users agree not to use the service for illegal purposes
  • The service is provided 'as is' and to be used at the users' sole risk
  • Terms may be changed any time at their discretion, without notice to the user
  • Your personal data is used for limited purposes
  • The service allows you to use pseudonyms
  • This service does not force users into binding arbitration
  • The service can delete your account without prior notice and without a reason
  • The service provides details about what kinds of personal information they collect
  • Any liability on behalf of the service is only limited to $10
  • The court of law governing the terms is in a jurisdiction that is less friendly to user privacy protection (Australia)
  • This service is only available to users over a certain age
  • You maintain ownership of your content
  • They may stop providing the service at any time
  • This service does not condone any ideas contained in its user-generated contents
  • This service assumes no liability for any losses or damages resulting from any matter relating to the service




About the Data

This data is kindly provided by Read full report at: #3015

Session Source Code




Lokinet is an anonymous, decentralized and IP based overlay network for the internet.






18 Jun 18

Last Updated

19 Jul 24

Latest version


Primary Language



30,251 KB







Language Usage

Language Usage

Star History

Star History

Recent Commits

  • Jason Rhinelander (11 Aug 23)

    Merge pull request #2199 from dr7ana/oxen-logging-bump Oxen-logging version bump

  • dr7ana (08 Aug 23)

    CI fixes - oxen-logging updated to bump fmt version - version bump oxen-logging to fix fmt version - version bump oxen-mq to solve uniform distribution error - misc errors introduced by above version bumps - clang-format 14 -> 15

  • Jason Rhinelander (02 Jun 23)

    Fix negative integer parsing

  • Jason Rhinelander (31 May 23)

    Merge pull request #2180 from majestrate/fix-2179-ipv6-upstream-dns-2023-05-20 libunbound ipv6 upstream dns syntax error

  • Jason Rhinelander (29 May 23)

    Rename `add_braces` -> `ipv6_brackets` "Braces" seemed misleading as usually that terms refers to `{}` rather than `[]`, and also this only affects ipv6 addresses.

  • Jason Rhinelander (30 May 23)

    Merge pull request #2182 from dr7ana/incomplete-issues Added workflow to remove stale, incomplete issues

  • dan (24 May 23)

    added workflow to remove stale issues

  • Jeff Becker (20 May 23)

    fix issue #2179 when setting libunbound's upstream dns, we need to not pass in the square braces of an ipv6 address. we also net udp handles have ipv6 address for the local ip.

  • Jason Rhinelander (11 May 23)

    Merge pull request #2173 from longyap/dev add #include <cstdint>

  • GNU/LongYap (11 May 23)

    add #include <cstdint> add #include <cstdint> to fix build error

  • Jason Rhinelander (04 May 23)

    Python <3.11 compat fix

  • Jason Rhinelander (01 Mar 23)

    Merge pull request #2106 from majestrate/fix-config-comment-typo-2023-01-05 fix typo in config comments

  • majestrate (28 Feb 23)

    Merge pull request #2142 from jagerman/bencode-hex Add automatic hex decoding to

  • Jason Rhinelander (28 Feb 23)

    Add automatic hex decoding to This allows autodetect hex input and decode it on the fly, which is quite convenient when working with binary-containing bencoded data strings.

  • majestrate (16 Feb 23)

    Merge pull request #2139 from majestrate/fix-issue-2138-with-loop-call-2023-02-15 fix issue #2138

  • Jeff Becker (15 Feb 23)

    fix issue #2138 in rpc client, contention on a null lock happened. fix this by making the sending of pings always done in the logic thread. this is done by wrapping the lambda we made with EventLoop::make_caller()

  • Jason Rhinelander (06 Feb 23)

    Merge pull request #2128 from majestrate/oxend-defer-ping-2023-01-29 ping oxend after getting identity keys

  • majestrate (05 Feb 23)

    Merge pull request #2130 from XutaxKamay/dev fix openwrt mips32 static build

  • Kamay Xutax (05 Feb 23)

    fix openwrt mips32 static build libunbound needs to link against libatomic because of openssl crypto (says EVP_sha256 missing otherwise in libunbound during build)

  • Jason Rhinelander (01 Feb 23)

    Merge pull request #2121 from drouhana/rpc-refactor RPC refactor

  • dan (01 Feb 23)

    OMQ_Request handling logic change

  • dan (27 Jan 23)

    working new endpoints - added hotswap functionality - map_exit and unmap_exit working

  • dan (26 Jan 23)

    Make new header for json type conversions

  • Jeff Becker (24 Jan 23)

    add llarp::service::Endpoint::map_exit

  • Jeff Becker (29 Jan 23)

    ping oxend after getting identity keys fixes #2125

  • dan (24 Jan 23)

    added unmapexit and listexit endpoints

  • dan (24 Jan 23)

    review comments

  • drouhana (24 Jan 23)

    Merge branch 'dev' into rpc-refactor

  • dan (10 Jan 23)

    Updated RpcServer Initialization and Logic -- Moved all RPCServer initialization logic to rpcserver constructor -- Fixed config logic, fxn binding to rpc address, fxn adding rpc cats -- router hive failed CI/CD resulting from outdated reference to rpcBindAddr -- ipc socket as default hidden from windows (for now) refactored config endpoint - added rpc call script (contrib/ - added new fxns to .ini config stuff - added delete .ini file functionality to config endpoint - added edge case control for config endpoint add commented out line in clang-form for header reorg later

  • Jeff Becker (05 Jan 23)

    fix typo in config comments lokinetN -> lokitunN

Session Website


Session | Send Messages, Not Metadata. | Private Messenger

Session is a private messenger that aims to remove any chance of metadata collection by routing all messages through an onion routing network.


Does not redirect

Security Checks

All 66 security checks passed

Server Details

  • IP Address
  • Location San Francisco, California, United States of America, NA
  • ISP CloudFlare Inc.
  • ASN AS13335

Associated Countries

  • US

Saftey Score

Website marked as safe


Blacklist Check was found on 0 blacklists

  • ThreatLog
  • OpenPhish
  • PhishTank
  • Phishing.Database
  • PhishStats
  • URLhaus
  • RPiList Not Serious
  • AntiSocial Blacklist
  • PhishFeed
  • NABP Not Recommended Sites
  • Spam404
  • CRDF
  • Artists Against 419
  • CERT Polska
  • PetScams
  • Suspicious Hosting IP
  • Phishunt
  • CoinBlockerLists
  • MetaMask EthPhishing
  • EtherScamDB
  • EtherAddressLookup
  • ViriBack C2 Tracker
  • Bambenek Consulting
  • Badbitcoin
  • SecureReload Phishing List
  • Fake Website Buster
  • TweetFeed
  • CryptoScamDB
  • StopGunScams
  • ThreatFox
  • PhishFort

Website Preview

Session Android App

Update Info

  • App Session
  • Creation Date 07 Feb 20
  • Last Updated 09 Dec 23
  • Current Version 1.0.1


No trackers found


  • Access Network State
  • Access Wifi State
  • Authenticate Accounts
  • Bluetooth
  • Broadcast Sticky
  • Broadcast Wap Push
  • Camera
  • Change Network State
  • Change Wifi State
  • Disable Keyguard
  • Foreground Service
  • Get Accounts
  • Install Shortcut
  • Internet
  • Modify Audio Settings
  • Raised Thread Priority
  • Read App Badge
  • Read Calendar
  • Read External Storage
  • Read Phone State
  • Read Profile
  • Read Sync Settings
  • Receive Boot Completed
  • Record Audio
  • Request Ignore Battery Optimizations
  • Set Wallpaper
  • Use Credentials
  • Use Fingerprint
  • Vibrate
  • Wake Lock
  • Write Calendar
  • Write External Storage
  • Write Profile
  • Write Sync Settings
  • Update Count
  • Install Shortcut
  • Receive
  • Read Settings
  • Update Shortcut
  • Change Badge
  • Read Settings
  • Write Settings
  • Update Badge
  • Read Settings
  • Write Settings
  • Read
  • Write
  • Broadcast Badge
  • Provider Insert Badge
  • Badge Count Read
  • Badge Count Write
  • Access Secrets

Session iOS App

App Info

Session - Private Messenger

Session is a new breed of private messenger, built on a unique network of user-operated servers spread all over the world. With no central servers, Session can’t leak or sell your data. And with Session’s private routing protocols, your messages are completely anonymous. No one ever knows who you’re talking to, what you’re saying, or even your IP address. • Fully anonymous account creation: No phone number or email needed to create a Session ID • Decentralised server network: No data breaches, no central point of failure • No metadata logging: Session doesn't store, track, or log your messaging metadata • IP address protection: Device IP addresses are never exposed to the person you're talking to or the servers holding your data • Closed groups: Private, end-to-end encrypted group chats for up to 100 people • Secure attachments: Share voice snippets, photos, and files with Session's secure encryption and privacy protections • Free and open-source: Don’t take our word for it — check Session's code yourself Session is free as in free speech, free as in free beer, and free of ads and trackers. Session is built and maintained by the OPTF, Australia’s first privacy tech not-for-profit organisation. Take back your online privacy today — download Session. Want to build from source, report a bug, or just take a look at our code? Check out Session on GitHub:


Rated 3.77 out of 5 stars by 711 users

Version Info

  • Current Version 2.5.0
  • Last Updated 28 Feb 24
  • First Released 06 Feb 20
  • Minimum iOS Version 13.0
  • Device Models Supported 93

App Details

  • IPA Size 70.97 Mb
  • Price Free (USD)
  • Age Advisory 17+
  • Supported Languages 41
  • Developer Rangeproof PTY LTD
  • Bundle ID com.loki-project.loki-messenger


Session Socials

Session Reviews

More Encrypted Messaging

  • Probably one of the most popular, secure private messaging apps that combines strong encryption (see Signal Protocol) with a simple UI and plenty of features. It's widely used across the world, and easy-to-use, functioning similar to WhatsApp - with instant messaging, read-receipts, support for media attachments and allows for high-quality voice and video calls. It's cross-platform, open-source and totally free. Signal is recommended by Edward Snowden, and is a perfect solution for most users.

  • XMPP, also known as Jabber, is an open standard for decentralized messaging that has been widely used for decades. It has actually been the basis upon which WhatsApp, Facebook's Chat and Google's Talk were built, but these companies (eventually) chose to remove the interoperability with other servers. Prominent XMPP clients support OMEMO end-to-end encryption, which is based on the Double Ratchet Algorithm that is used in Signal. For more hands-on information and to register an account you can visit JoinJabber.

  • Matrix is a decentralized open network for secure communications, with E2E encryption with Olm and Megolm. Along with the Element client, it supports VOIP + video calling and IM + group chats. Since Matrix has an open specification and Simple pragmatic RESTful HTTP/JSON API it makes it easy to integrates with existing 3rd party IDs to authenticate and discover users, as well as to build apps on top of it.

About the Data: Session


You can access Session's data programmatically via our API. Simply make a GET request to:

The REST API is free, no-auth and CORS-enabled. To learn more, view the Swagger Docs or read the API Usage Guide.

About the Data

Beyond the user-submitted YAML you see above, we also augment each listing with additional data dynamically fetched from several sources. To learn more about where the rest of data included in this page comes from, and how it is computed, see the About the Data section of our About page.

Share Session

Help your friends compare Encrypted Messaging, and pick privacy-respecting software and services.
Share Session and Awesome Privacy with your network!

View Encrypted Messaging (4)