CleanSlate is an Android application designed to ensure user privacy and protect sensitive data. It allows users to remotely wipe their device in the unfortunate event of it being lost or stolen. With CleanSlate, your privacy is always in your hands.
Or download the latest APK from the Releases Section.
- Remote Wipe: Securely erase all data on your device remotely.
- Authentication System: Prevent unauthorized access to the wiping function.
- Customizable Wipe Triggers: Configure how and when the remote wipe can be initiated.
- Minimal Footprint: Lightweight and optimized for minimal impact on device performance.
- Clone this repository to your local machine:
git clone https://github.com/khalifarsm/botox-android.git
- Open the project in Android Studio.
- Sync the Gradle files and ensure all dependencies are installed.
- Build and run the app on your Android device or emulator.
- install the app to your device and grant all priveleges required.
- register your account
- save you user ID and password in a safe place.
- In case of a lost or stolen device, initiate a wipe through the chosen trigger.
CleanSlate requires the following permissions for full functionality:
- Device Administration: To securely wipe the device.
- Internet Access: For online dashboard or email notifications.
CleanSlate ensures your data is securely erased and inaccessible to unauthorized users. It does not store or share user data without consent. https://cleanslate.mobi/privacy
To enhance security, we have replaced Firebase FCM with secure WebSocket communication, implemented a wipe token system, ensured that remote wipe commands are decryptable only by the application, added advanced in-app logging for remote commands, and enforced user confirmation before any wipe action can be executed.
| Feature | Status |
|---|---|
| Implement a wipe token: Each user should generate a local-only encrypted token during setup, used to validate remote wipe requests. This token is never stored on your server. | ✅ Complete |
Strip debug metadata before production (minifyEnabled true and remove DebugProbesKt.bin). |
✅ Complete |
| Make remote wipe command decryptable only by the app (client-side). | ✅ Complete |
| Show clear user onboarding before enabling Device Admin, explaining its impact. | ✅ Complete |
| Disable Firebase Analytics and tracking features in production. Replaced with secure WebSocket. |
✅ Complete |
| Provide an activity log within the app to show received remote commands. | ✅ Complete |
| Use self-hosted FCM alternatives (like ntfy.sh) or open-source push systems if needed. Replaced with secure WebSocket. |
✅ Complete |
| Ensure app cannot silently wipe without visible confirmation unless explicitly set by user. | ✅ Complete |
Contributions are welcome! Follow these steps to contribute:
- Fork the repository.
- Create a new branch for your feature or bug fix:
git checkout -b feature-name
- Commit your changes and push the branch:
git commit -m "Add feature or fix bug" git push origin feature-name - Create a pull request to the
mainbranch of this repository.
This project is licensed under the MIT License.
For any questions or feedback, please reach out to us at [email protected].
We hope CleanSlate helps you feel secure, knowing your privacy is protected even in challenging situations.