Sus Detector

Sus Detector is a privacy audit for your Android phone. It tells you — in plain English — what your apps are actually doing, which permissions they've been granted, what's broadcasting nearby, and whether your network and cell connection are safe.

No servers. No accounts. No analytics. No ads. Everything happens on your device, and only on your device.

WHY WE BUILT IT
We were frustrated with "privacy" apps that quietly ship user data off to their own servers. So we built one that physically can't. The Sus Detector binary contains zero third-party SDKs, zero tracking code, and zero network code that touches your personal data. You can decompile the APK and check.

WHAT IT DOES

• PERMISSION SCANNER — scans every installed app against 40+ Android permissions and tells you which are "always on," which are risky given the app's category, and exactly how each one could be misused. Plain-English explanations. One-tap deep links to fix each setting. Trust tiers reduce the score for major apps with strong reputations.

• DEVICE SECURITY AUDIT — nine real-time checks: WiFi encryption, VPN status, captive portal, Bluetooth, USB debugging, NFC, screen lock, hotspot, and device encryption. Every flag explains the attack vector and ships a one-tap fix that deep-links to the exact Android setting.

• NEARBY DEVICES — discovers what's around your phone right now: paired Bluetooth gear, BLE devices broadcasting (AirTags, Tiles, headphones in pairing mode), WiFi peers via subnet ping sweep, mDNS/Bonjour services, SSDP/UPnP devices (smart TVs, media servers), and an HTTP fingerprint of your gateway that names your router brand (Starlink, Eero, Netgear, Asus, TP-Link, and 50+ others).

• ANTI-STALKING RADAR — flags BLE trackers like AirTags and Tiles, persists sightings, and surfaces ones following you over time. Mark your own gear as "mine" so it stops alerting.

• CELL TOWER / STINGRAY MONITOR — reads serving cell tower IDs and signal strength to flag the IMSI-catcher signatures: 2G downgrade, unusually strong signal close to you, towers that pop up and disappear quickly. Background mode keeps watching while the app is closed and pushes a notification when something looks off — the threat scenario is "you don't know you're being targeted," so detection has to keep running when you're not staring at the screen.

• "AM I SAFE HERE?" — one-tap check of your current WiFi: encryption strength, captive portal detection, DNS integrity, ARP spoofing. Every failed check has a fix button.

• SECURITY PROFILES — five one-tap privacy modes (Home / Shopping / Work / Travel / Lockdown) that check your device settings against a recommended configuration for each context, then deep-link you to the toggles that don't match.

• PER-APP TRAFFIC — uses Android's NetworkStats to show which installed apps moved the most bytes recently. No content inspection — counters only.

WHAT WE DON'T DO
• We don't have an account system
• We don't collect a single byte of telemetry
• We don't contain any ads
• We don't sell data (we don't HAVE data)
• We don't phone home
• We don't require root


REQUIREMENTS
Android 7.0 (Nougat) or later. No root required. No internet connection required for the core features — the app works entirely offline.

PRIVACY POLICY
https://dingledropper.com/susdetector/privacy.html