privacyguides · friadev · Jun 2, 2024 · Jun 4, 2024 · Jun 7, 2024 · Jun 7, 2024
diff --git a/docs/alternative-networks.md b/docs/alternative-networks.md
@@ -12,7 +12,7 @@ When it comes to anonymizing networks, we want to specially note that [Tor](adva
 ### Tor
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-purple">:material-incognito:</span> <span class="pg-teal">:material-server-network:</span> <span class="pg-blue">:material-eye-outline:</span> <span class="pg-brown">:material-account-cash:</span>
 ![Tor logo](assets/img/self-contained-networks/tor.svg){ align=right }
 
 The **Tor** network is a group of volunteer-operated servers that allows you to connect for free and improve your privacy and security on the Internet. Individuals and organizations can also share information over the Tor network with ".onion hidden services" without compromising their privacy. Because Tor traffic is difficult to block and trace, Tor is an effective censorship circumvention tool.
@@ -67,7 +67,7 @@ Running a Snowflake proxy is low-risk, even more so than running a Tor relay or
 ### I2P (The Invisible Internet Project)
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-purple">:material-incognito:</span> <span class="pg-teal">:material-server-network:</span> <span class="pg-blue">:material-eye-outline:</span> <span class="pg-brown">:material-account-cash:</span>
 ![I2P logo](assets/img/self-contained-networks/i2p.svg#only-light){ align=right }
 ![I2P logo](assets/img/self-contained-networks/i2p-dark.svg#only-dark){ align=right }
 

diff --git a/docs/android.md b/docs/android.md
@@ -105,7 +105,7 @@ End-of-life devices (such as GrapheneOS's or CalyxOS's "extended support" device
 ### GrapheneOS
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-red">:material-target-account:</span> <span class="pg-orange">:material-bug-outline:</span>
 ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right }
 ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right }
 
@@ -130,7 +130,7 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw
 ### DivestOS
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-red">:material-target-account:</span> <span class="pg-orange">:material-bug-outline:</span>
 ![DivestOS logo](assets/img/android/divestos.svg){ align=right }
 
 **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org).
@@ -180,7 +180,7 @@ A few more tips regarding Android devices and operating system compatibility:
 Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element.
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-red">:material-target-account:</span> <span class="pg-orange">:material-bug-outline:</span>
 ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right }
 
 **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems.
@@ -248,7 +248,7 @@ When using Shelter, you are placing complete trust in its developer, as Shelter
 ### Secure Camera
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-green">:material-account-search:</span>
 ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right }
 ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right }
 
@@ -288,7 +288,7 @@ The image orientation metadata is not deleted. If you enable location (in Secure
 ### Secure PDF Viewer
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-red">:material-target-account:</span> <span class="pg-orange">:material-bug-outline:</span>
 ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right }
 ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right }
 

diff --git a/docs/browser-extensions.md b/docs/browser-extensions.md
@@ -16,7 +16,7 @@ Don't install extensions which you don't immediately have a need for, or ones th
 ### uBlock Origin
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-brown">:material-account-cash:</span>
 ![uBlock Origin logo](assets/img/browsers/ublock_origin.svg){ align=right }
 
 **uBlock Origin** is a popular content blocker that could help you block ads, trackers, and fingerprinting scripts.
@@ -55,7 +55,7 @@ uBlock Origin also has a "Lite" version of their extension, which offers a very
 <div class="admonition recommendation" markdown>
 
 ![uBlock Origin Lite logo](assets/img/browsers/ublock_origin_lite.svg){ align=right }
-
+<span class="pg-orange">:material-bug-outline:</span> <span class="pg-brown">:material-account-cash:</span>
 **uBlock Origin Lite** is a Manifest V3 compatible content blocker. Compared to the original *uBlock Origin*, this extension does not require broad "read/modify data" permissions to function.
 
 [:octicons-repo-16: Repository](https://github.com/uBlockOrigin/uBOL-home#readme){ .md-button .md-button--primary }
@@ -88,7 +88,7 @@ We recommend [Safari](mobile-browsers.md#safari) for iOS users, which unfortunat
 <div class="admonition recommendation" markdown>
 
 ![AdGuard logo](assets/img/browsers/adguard.svg){ align=right }
-
+<span class="pg-brown">:material-account-cash:</span>
 **AdGuard for iOS** is a free and open-source content-blocking extension for Safari that uses the native [Content Blocker API](https://developer.apple.com/documentation/safariservices/creating_a_content_blocker).
 
 [:octicons-home-16: Homepage](https://adguard.com/en/adguard-ios/overview.html){ .md-button .md-button--primary }

diff --git a/docs/calendar.md b/docs/calendar.md
@@ -9,7 +9,7 @@ Calendars contain some of your most sensitive data; use products that implement
 ## Tuta
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-orange">:material-bug-outline:</span> <span class="pg-teal">:material-server-network:</span>
 ![Tuta logo](assets/img/email/tuta.svg#only-light){ align=right }
 ![Tuta logo](assets/img/email/tuta-dark.svg#only-dark){ align=right }
 
@@ -41,7 +41,7 @@ Multiple calendars and extended sharing functionality is limited to paid subscri
 ## Proton Calendar
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-orange">:material-bug-outline:</span> <span class="pg-teal">:material-server-network:</span>
 ![Proton](assets/img/calendar/proton-calendar.svg){ align=right }
 
 **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier gain access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers.

diff --git a/docs/cloud.md b/docs/cloud.md
@@ -19,7 +19,7 @@ Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file
 ## Proton Drive
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-orange">:material-bug-outline:</span> <span class="pg-teal">:material-server-network:</span>
 ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right }
 
 **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). The initial free storage is limited to 2GB, but with completion of certain steps, additional storage can be obtained up to 5GB.
@@ -48,7 +48,7 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a
 ## Tresorit
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-orange">:material-bug-outline:</span> <span class="pg-teal">:material-server-network:</span>
 ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right }
 
 **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland.
@@ -87,7 +87,7 @@ They have also received the Digital Trust Label, a certification from the [Swiss
 ## Peergos
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-orange">:material-bug-outline:</span> <span class="pg-teal">:material-server-network:</span> <span class="pg-blue-gray">:material-close-outline:</span>
 ![Peergos logo](assets/img/cloud/peergos.svg){ align=right }
 
 **Peergos** is a decentralized protocol and open-source platform for storage, social media, and applications. It provides a secure and private space where users can store, share, and view their photos, videos, documents, etc. Peergos secures your files with quantum-resistant end-to-end encryption and ensures all data about your files remains private. It is built on top of [IPFS (InterPlanetary File System)](https://ipfs.tech).

@@ -19,7 +19,7 @@ Many if not most cryptocurrency projects are scams. Make transactions carefully
 ## Monero
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-purple">:material-incognito:</span> <span class="pg-blue">:material-eye-outline:</span> <span class="pg-blue-gray">:material-close-outline:</span>
 ![Monero logo](assets/img/cryptocurrency/monero.svg){ align=right }
 
 **Monero** uses a blockchain with privacy-enhancing technologies that obfuscate transactions to achieve anonymity. Every Monero transaction hides the transaction amount, sending and receiving addresses, and source of funds without any hoops to jump through, making it an ideal choice for cryptocurrency novices.

diff --git a/docs/desktop-browsers.md b/docs/desktop-browsers.md
@@ -63,7 +63,7 @@ If you need to browse the internet anonymously, you should use [Tor](tor.md) ins
 ## Mullvad Browser
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-blue">:material-eye-outline:</span> <span class="pg-brown">:material-account-cash:</span>
 ![Mullvad Browser logo](assets/img/browsers/mullvad_browser.svg){ align=right }
 
 **Mullvad Browser** is a version of [Tor Browser](tor.md#tor-browser) with Tor network integrations removed, aimed at providing Tor Browser's anti-fingerprinting browser technologies to VPN users. It is developed by the Tor Project and distributed by [Mullvad](vpn.md#mullvad), and does **not** require the use of Mullvad's VPN.
@@ -109,7 +109,7 @@ Mullvad Browser comes with DuckDuckGo set as the default [search engine](search-
 ## Firefox
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-brown">:material-account-cash:</span>
 ![Firefox logo](assets/img/browsers/firefox.svg){ align=right }
 
 **Firefox** provides strong privacy settings such as [Enhanced Tracking Protection](https://support.mozilla.org/kb/enhanced-tracking-protection-firefox-desktop), which can help block various [types of tracking](https://support.mozilla.org/kb/enhanced-tracking-protection-firefox-desktop#w_what-enhanced-tracking-protection-blocks).
@@ -221,7 +221,7 @@ Arkenfox only aims to thwart basic or naive tracking scripts through canvas rand
 ## Brave
 
 <div class="admonition recommendation annotate" markdown>
-
+<span class="pg-brown">:material-account-cash:</span>
 ![Brave logo](assets/img/browsers/brave.svg){ align=right }
 
 **Brave Browser** includes a built-in content blocker and [privacy features](https://brave.com/privacy-features), many of which are enabled by default.

diff --git a/docs/device-integrity.md b/docs/device-integrity.md
@@ -63,7 +63,7 @@ These tools can trigger false-positives. If any of these tools finds indicators
 ### Mobile Verification Toolkit
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-red">:material-target-account:</span>
 ![MVT logo](assets/img/device-integrity/mvt.webp){ align=right }
 
 **Mobile Verification Toolkit** (**MVT**) is a collection of utilities which simplifies and automates the process of scanning mobile devices for potential traces of targeting or infection by known spyware campaigns. MVT was developed by Amnesty International and released in 2021 in the context of the [Pegasus Project](https://forbiddenstories.org/about-the-pegasus-project).
@@ -106,7 +106,7 @@ MVT allows you to perform deeper scans/analysis if your device is jailbroken. Un
 <div class="admonition recommendation" markdown>
 
 ![iMazing logo](assets/img/device-integrity/imazing.png){ align=right }
-
+<span class="pg-red">:material-target-account:</span>
 **iMazing** provides a free spyware analyzer tool for iOS devices which acts as a GUI-wrapper for [MVT](#mobile-verification-toolkit). This can be much easier to run compared to MVT itself, which is a command-line tool designed for technologists and forensic investigators.
 
 [:octicons-home-16: Homepage](https://imazing.com){ .md-button .md-button--primary }
@@ -139,7 +139,7 @@ Using these apps is insufficient to determine that a device is "clean", and not
 ### Auditor (Android)
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-red">:material-target-account: Targeted Attacks</span> <span class="pg-orange">:material-bug-outline:</span>
 ![Auditor logo](assets/img/device-integrity/auditor.svg#only-light){ align=right }
 ![Auditor logo](assets/img/device-integrity/auditor-dark.svg#only-dark){ align=right }
 
@@ -192,7 +192,7 @@ Using these apps is insufficient to determine that a device is "clean", and not
 ### Hypatia (Android)
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-orange">:material-bug-outline:</span>
 ![Hypatia logo](assets/img/device-integrity/hypatia.svg#only-light){ align=right }
 ![Hypatia logo](assets/img/device-integrity/hypatia-dark.svg#only-dark){ align=right }
 
@@ -217,7 +217,7 @@ Hypatia is particularly good at detecting common stalkerware: If you suspect you
 ### iVerify Basic (iOS)
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-red">:material-target-account: Targeted Attacks</span> <span class="pg-orange">:material-bug-outline:</span>
 ![iVerify logo](assets/img/device-integrity/iverify.webp){ align=right }
 
 **iVerify Basic** is an iOS app which can scan your device to check configuration settings, patch level, and other areas of security. It also checks your device for indicators of compromise by jailbreak tools or spyware such as Pegasus.

diff --git a/docs/dns.md b/docs/dns.md
@@ -38,7 +38,7 @@ A self-hosted DNS solution is useful for providing filtering on controlled platf
 ### Pi-hole
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-brown">:material-account-cash:</span>
 ![Pi-hole logo](assets/img/dns/pi-hole.svg){ align=right }
 
 **Pi-hole** is an open-source [DNS-sinkhole](https://en.wikipedia.org/wiki/DNS_sinkhole) which uses [DNS filtering](https://cloudflare.com/learning/access-management/what-is-dns-filtering) to block unwanted web content, such as advertisements.
@@ -58,7 +58,7 @@ Pi-hole is designed to be hosted on a Raspberry Pi, but it is not limited to suc
 ### AdGuard Home
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-brown">:material-account-cash:</span>
 ![AdGuard Home logo](assets/img/dns/adguard-home.svg){ align=right }
 
 **AdGuard Home** is an open-source [DNS-sinkhole](https://en.wikipedia.org/wiki/DNS_sinkhole) which uses [DNS filtering](https://cloudflare.com/learning/access-management/what-is-dns-filtering) to block unwanted web content, such as advertisements.
@@ -81,7 +81,7 @@ These DNS filtering solutions offer a web dashboard where you can customize the
 ### Control D
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-brown">:material-account-cash:</span>
 ![Control D logo](assets/img/dns/control-d.svg){ align=right }
 
 **Control D** is a customizable DNS service which lets you block security threats, unwanted content, and advertisements on a DNS level. In addition to their paid plans, they offer a number of preconfigured DNS resolvers you can use for free.
@@ -108,7 +108,7 @@ These DNS filtering solutions offer a web dashboard where you can customize the
 ### NextDNS
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-brown">:material-account-cash:</span>
 ![NextDNS logo](assets/img/dns/nextdns.svg){ align=right }
 
 **NextDNS** is a customizable DNS service which lets you block security threats, unwanted content, and advertisements on a DNS level. They offer a fully functional free plan for limited use.
@@ -144,7 +144,7 @@ Encrypted DNS proxy software provides a local proxy for the [unencrypted DNS](ad
 ### RethinkDNS
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-brown">:material-account-cash:</span>
 ![RethinkDNS logo](assets/img/android/rethinkdns.svg#only-light){ align=right }
 ![RethinkDNS logo](assets/img/android/rethinkdns-dark.svg#only-dark){ align=right }
 
@@ -172,7 +172,7 @@ While RethinkDNS takes up the Android VPN slot, you can still use a VPN or Orbot
 <div class="admonition recommendation" markdown>
 
 ![dnscrypt-proxy logo](assets/img/dns/dnscrypt-proxy.svg){ align=right }
-
+<span class="pg-teal">:material-server-network:</span> <span class="pg-brown">:material-account-cash:</span> 
 **dnscrypt-proxy** is a DNS proxy with support for [DNSCrypt](advanced/dns-overview.md#dnscrypt), [DNS-over-HTTPS](advanced/dns-overview.md#dns-over-https-doh), and [Anonymized DNS](https://github.com/DNSCrypt/dnscrypt-proxy/wiki/Anonymized-DNS).
 
 [:octicons-repo-16: Repository](https://github.com/DNSCrypt/dnscrypt-proxy){ .md-button .md-button--primary }

diff --git a/docs/email-aliasing.md b/docs/email-aliasing.md
@@ -33,7 +33,7 @@ Using an aliasing service requires trusting both your email provider and your al
 ### addy.io
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-brown">:material-account-cash:</span> <span class="pg-green">:material-account-search:</span>
 ![addy.io logo](assets/img/email-aliasing/addy.svg){ align=right }
 
 **addy.io** lets you create 10 domain aliases on a shared domain for free, or unlimited "standard" aliases which are less anonymous.
@@ -69,7 +69,7 @@ Notable free features:
 ### SimpleLogin
 
 <div class="admonition recommendation" markdown>
-
+<span class="pg-brown">:material-account-cash:</span> <span class="pg-green">:material-account-search:</span>
 ![Simplelogin logo](assets/img/email-aliasing/simplelogin.svg){ align=right }
 
 **SimpleLogin** is a free service which provides email aliases on a variety of shared domain names, and optionally provides paid features like unlimited aliases and custom domains.