Skip to main content
Legal Notice: Using anonymity tools for illegal activities is prohibited. These tools are for legitimate security testing and privacy protection only.

Overview

Anonymity tools help security professionals hide their identity and protect their network traffic during penetration testing and security research. These tools route your traffic through multiple nodes, change your IP address, and help maintain operational security.

Use Cases

  • Penetration Testing: Protect your identity during authorized security assessments
  • Privacy Protection: Secure your browsing and network traffic
  • Research: Safely analyze malicious infrastructure without exposing your identity
  • Avoiding Detection: Prevent defensive systems from identifying your testing infrastructure

Available Tools

Kali Anonsurf

Complete anonymity suite with automatic RAM cleaning

Multitor

Create multiple Tor instances for distributed anonymity

Kali Anonsurf

Description

Anonsurf is a comprehensive anonymity tool that automatically routes all your system traffic through the Tor network. It provides additional security by overwriting RAM when the system shuts down, preventing forensic recovery of sensitive data.

Features

  • Routes all traffic through Tor network
  • Automatic RAM cleaning on shutdown
  • IP address rotation
  • DNS leak protection
  • System-wide anonymization

Installation

# Clone the repository
sudo git clone https://github.com/Und3rf10w/kali-anonsurf.git

# Run the installer
cd kali-anonsurf && sudo ./installer.sh

# Cleanup
cd .. && sudo rm -r kali-anonsurf

Usage

# Start anonymization
sudo anonsurf start

# Check status
sudo anonsurf status

# Change IP address
sudo anonsurf changeid

# Stop anonymization
sudo anonsurf stop
Custom Tor ConfigurationEdit /etc/tor/torrc to customize:
  • Exit node countries
  • Bridge relays
  • Custom ports
  • Connection limits
sudo nano /etc/tor/torrc
Performance Impact: Routing all traffic through Tor will significantly reduce your connection speed. This is normal and expected.

Multitor

Description

Multitor allows you to create multiple Tor instances simultaneously, enabling you to spread your requests across different IP addresses. This is particularly useful for distributed testing or when you need to appear as multiple different users.

Features

  • Run multiple Tor instances concurrently
  • Load balancing across Tor circuits
  • HAProxy integration for distribution
  • Privoxy support for HTTP proxy
  • Individual SOCKS ports per instance

Installation

# Clone the repository
sudo git clone https://github.com/trimstray/multitor.git

# Run setup
cd multitor
sudo bash setup.sh install

Usage

# Initialize 2 Tor instances with specific configuration
multitor --init 2 \
  --user debian-tor \
  --socks-port 9000 \
  --control-port 9900 \
  --proxy privoxy \
  --haproxy

# Start with 5 instances
multitor --init 5

# Check status
multitor --show-id

Configuration Options

OptionDescriptionExample
--initNumber of Tor instances--init 3
--userSystem user for Tor--user debian-tor
--socks-portStarting SOCKS port--socks-port 9000
--control-portStarting control port--control-port 9900
--proxyHTTP proxy type--proxy privoxy
--haproxyEnable load balancing--haproxy
Distributed Web Scraping
  • Avoid rate limiting by using different IPs
  • Appear as multiple users to target services
Penetration Testing
  • Test from multiple geographic locations
  • Avoid IP-based blocking during testing
OSINT Research
  • Gather intelligence without correlation
  • Prevent profiling by target systems

Best Practices

Operational Security

  1. Verify Anonymity: Always check your IP after starting anonymity tools 
    curl ifconfig.me
  2. DNS Leaks: Ensure DNS requests are also anonymized 
    # Test for DNS leaks
curl -s https://dnsleaktest.com
  3. Application-Level Leaks: Some applications may bypass system-wide proxies
    • Configure applications individually
    • Use firewall rules to enforce routing
  4. Time Synchronization: Tor requires accurate system time 
    sudo ntpdate pool.ntp.org

Limitations

Not a Silver Bullet: Anonymity tools cannot protect against:
  • Browser fingerprinting
  • Application-level data leaks
  • User behavior patterns
  • Malicious Tor exit nodes (for unencrypted traffic)
  • Advanced traffic analysis attacks

Complementary Tools

Enhance your anonymity with:
  • Tails OS: Entire operating system designed for anonymity
  • Whonix: VM-based isolated anonymous environment
  • Tor Browser: Pre-configured browser for anonymous browsing
  • VPN + Tor: Additional layer (use VPN before Tor)
  • MAC Address Changer: Randomize hardware identifiers

Testing Your Anonymity

Verify your setup is working correctly: 
# Check your public IP
curl -s https://api.ipify.org

# Check Tor connectivity
curl --socks5 localhost:9050 https://check.torproject.org/api/ip

# DNS leak test
dig +short myip.opendns.com @resolver1.opendns.com
Regular IP Changes: Rotate your Tor circuit regularly to prevent long-term tracking:
sudo anonsurf changeid  # For Anonsurf
killall -HUP tor       # For standard Tor

Troubleshooting

Tor won’t start
# Check Tor status
sudo systemctl status tor

# View Tor logs
sudo tail -f /var/log/tor/log

# Restart Tor service
sudo systemctl restart tor
Performance optimization
  • Tor naturally reduces speed (expect 70-90% reduction)
  • Use faster exit nodes by configuring country preferences
  • Increase circuit build timeout in torrc
  • Consider using bridges for better connectivity
Verification steps
# Check iptables rules
sudo iptables -L -n -v

# Verify Tor is running
ps aux | grep tor

# Test with curl
curl --socks5 localhost:9050 https://check.torproject.org

Additional Resources

Legal Disclaimer: Using these tools does not make you completely anonymous. Advanced adversaries with significant resources may still be able to trace your activities. Always comply with local laws and regulations.

Build docs developers (and LLMs) love

Get started for freeTalk to us