AEGIS · redacted (visible text)

The Problem

Most messaging apps are free because you are the product. Your conversations are scanned, stored, and sold.

Centralised servers

Your messages pass through servers controlled by corporations, governments, and advertisers — none of whom you invited.

Metadata collection

Even when content is “encrypted”, who you talked to, when, and for how long is logged and sold.

Weak encryption

Many platforms hold the keys. They can read everything. So can anyone who compels them to.

No real control

You cannot audit the code, run your own server, or verify that messages are not being intercepted.

What is AEGIS

AEGIS is a self-hostable, end-to-end encrypted communication platform for text, voice, video, and file transfer. It runs on Windows, Linux, macOS, and Android — connecting through a server you control.

There are no accounts. No phone numbers. No tracking. When you close a session, ephemeral keys are discarded. Even if someone recorded every packet you ever sent, they cannot decrypt past sessions.

Run the server on a VPS, a home machine, or over Tailscale without exposing anything to the public internet at all.

Features

End-to-End Encryption

All messages, files, voice, and video are encrypted with NaCl / Curve25519. The server relays ciphertext it cannot read.

Forward Secrecy

Ephemeral keys are generated per-session and never written to disk. Compromising today’s key reveals nothing about past or future conversations.

Voice & Video

Encrypted real-time voice using Opus. Private webcam sharing between specific peers — not broadcast to the group unless you choose.

Screen Sharing

Share your screen with the group or with a single peer. AEGIS blurs your screen automatically when you step away.

File Transfer

Send files of any type to the group or privately. Files are chunked, encrypted individually, and reassembled on the receiving end.

Privacy Mode

Step away and AEGIS blurs your screen, disables your camera, and sets your status to away. Mouse movement or a password restores it.

Self-Hosted

Run the server on any Linux VPS or home machine. No subscription, no third party in the loop. Your server, your rules.

Admin Dashboard

A local HTML dashboard gives a live view of peers, auth events, and server health — without ever exposing message content.

Technology

Curve25519 / NaCl

Asymmetric key exchange and authenticated encryption for all traffic

Poly1305 MAC

Cryptographic message authentication — tampered packets are dropped before processing

Sliding Window

Per-peer replay protection with a 4096-packet window to handle reordered packets

Opus Codec

Low-latency 16 kHz voice compression optimised for real-time communication

Ephemeral Keys

New Curve25519 keypair generated each session — discarded on disconnect

Priority Queuing

Voice packets bypass file transfer queues so calls stay smooth during uploads

Why it matters

Privacy is not a luxury for people with something to hide. It is the baseline condition for free thought, honest conversation, and genuine human connection.

“When communication is surveilled, people change what they say. When people change what they say, they eventually change what they think.”

Journalists protect sources. Lawyers protect clients. Doctors protect patients. Activists protect movements. Families protect each other. Everyone has a legitimate reason to communicate privately.

AEGIS does not ask you to justify your privacy. It simply provides it — with open, auditable technology, no central authority, and no business model built on your data.

The server is yours. The keys are yours. The conversation is yours.

Platforms

🖥

Desktop

Full-featured client for Windows, Linux, and macOS. Voice, video, screen share, and file transfer.

📱

Android

Native Android client with background notifications and encrypted file sharing from your gallery.

⚙

Headless Server

Lightweight VPS server with no GUI. Runs as a systemd service with a local admin dashboard.

Your conversationsbelong to you.