# uazo/cromite **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/uazo-cromite).** 6,684 stars · 215 forks · C++ · gpl-3.0 · fork ## Links - GitHub: https://github.com/uazo/cromite - Homepage: https://www.cromite.org/ - awesome-repositories: https://awesome-repositories.com/repository/uazo-cromite.md ## Description Cromite is a privacy-focused browser built as a fork of Chromium that embeds a network-level content blocking engine to intercept advertisements, pop-ups, and tracking scripts before they reach the page. It applies community-maintained public filter lists directly within the browser, eliminating the need for external extensions, and uses a curated patch system applied to the Chromium source tree at build time to add or modify features without maintaining a separate codebase. The browser is hardened against tracking and data leakage through a comprehensive set of privacy and security measures. It blocks browser fingerprinting by disabling or spoofing dozens of APIs including Canvas, WebGL, WebRTC, and the GamePad API, and prevents Google data collection by disabling all communication with Google servers for metrics, sync, translation, autofill, and updates. Additional protections include enforcing HTTPS connections, blocking third-party cookies, stripping URL tracking parameters, partitioning network state by site, and preventing WebRTC IP leakage. Users can enforce strict site isolation, disable JavaScript JIT compilation, and control certificate acceptance, while per-site permission overrides allow granular management of autoplay, cookies, JavaScript, and other features. Cromite offers extensive configuration and customization options, exposing Chromium's internal feature flags through the UI so users can toggle individual browser capabilities without recompiling. It supports user script execution on Android, native Android autofill, bookmark import and export, and interface customization including toolbar position and tab management. The browser can be set to permanent incognito mode, clearing all session data on restart, and includes a privacy-first default configuration that disables telemetry, network predictions, and other privacy-invasive features at first launch. The project provides a Docker-based build pipeline for Android, Linux, and Windows targets, with automated testing and automatic updates on Android. It is available for installation via an official F-Droid repository. ## Tags ### Business & Productivity Software - [Patch-Based Forks](https://awesome-repositories.com/f/business-productivity-software/chromium-based-browsers/patch-based-forks.md) — Applies a curated set of patches to the Chromium source tree at build time to add or modify features without maintaining a separate codebase. - [Automatic Software Updates](https://awesome-repositories.com/f/business-productivity-software/automatic-software-updates.md) — Receives and installs new browser versions automatically on Android, with a prompt during first startup to enable the feature. ([source](https://cdn.jsdelivr.net/gh/uazo/cromite@master/README.md)) - [API Blocking Mechanisms](https://awesome-repositories.com/f/business-productivity-software/payment-integrations/multi-merchant-payment-support/api-blocking-mechanisms.md) — Blocks the PaymentRequest API by default so no payment information is shared with merchants unless the user explicitly enables it. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) ### Content Management & Publishing - [Browser Privacy Defaults](https://awesome-repositories.com/f/content-management-publishing/privacy-configuration-defaults/browser-privacy-defaults.md) — Sets a hardened set of Chromium preferences and command-line switches at first launch to disable telemetry, tracking, and network predictions by default. - [Process-Level Isolations](https://awesome-repositories.com/f/content-management-publishing/site-instance-isolation/process-level-isolations.md) — Forces every website into its own operating system process for security. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) ### Data & Databases - [Browser](https://awesome-repositories.com/f/data-databases/local-state-stores/state-partitioning/browser.md) — Isolates cookies, caches, and other browsing data per top-level domain to prevent cross-site tracking, similar to Total Cookie Protection. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Search Suggestions](https://awesome-repositories.com/f/data-databases/search-suggestions.md) — Blocks the browser from sending typed input to search engines for autocomplete suggestions. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) ### Development Tools & Productivity - [Google Data Collection Blocking](https://awesome-repositories.com/f/development-tools-productivity/google-service-sdks/google-data-collection-blocking.md) — Disables all communication with Google servers for metrics, sync, translation, autofill, updates, and other services to prevent data leakage. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Google Service Integration Blocking](https://awesome-repositories.com/f/development-tools-productivity/google-service-sdks/google-service-integration-blocking.md) — Disables integration with Google Play Services, Google Sign-In, Google Feeds, and other Google-specific features on Android and desktop. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Browser Update Suppression](https://awesome-repositories.com/f/development-tools-productivity/update-management/automatic-update-suppression/browser-update-suppression.md) — Prevents the browser from checking for updates or downloading components from remote servers unless the user explicitly activates the feature. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) ### Networking & Communication - [Google Integration Blocking](https://awesome-repositories.com/f/networking-communication/google-api-integrations/google-integration-blocking.md) — Disables all built-in connections to Google services, including sync, translate, sign-in, and autofill. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Tracking Parameter Removers](https://awesome-repositories.com/f/networking-communication/url-parameter-parsers/tracking-parameter-removers.md) — Removes known tracking query parameters from URLs before navigation. ([source](https://www.cromite.org/)) - [Browser Session Restorations](https://awesome-repositories.com/f/networking-communication/chat-session-managers/session-restoration/browser-session-restorations.md) — Restores the list of tabs from the last browsing session on startup and clears all browsing data when the browser closes. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) - [Prefetching Disablers](https://awesome-repositories.com/f/networking-communication/dns-resolution/dns-prefetching/prefetching-disablers.md) — Prevents the browser from performing DNS prefetching, TCP/TLS preconnections, and page prefetching to avoid leaking browsing patterns. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) ### Security & Cryptography - [Site Permission Overrides](https://awesome-repositories.com/f/security-cryptography/ai-access-control-policies/permission-management/site-permission-overrides.md) — Controls per-site access to location, camera, and notifications with granular grant or deny options. ([source](https://www.cromite.org/)) - [Community Filter Lists](https://awesome-repositories.com/f/security-cryptography/application-and-system-security/browser-security/content-filtering-blocking/community-filter-lists.md) — Blocks advertisements by applying community-maintained public filter lists that users configure in settings. ([source](https://github.com/uazo/cromite/blob/master/docs/FAQ.md)) - [Fingerprint Mitigation Tools](https://awesome-repositories.com/f/security-cryptography/browser-fingerprinting-services/browser-fingerprint-generators/fingerprint-mitigation-tools.md) — Disables dozens of browser APIs to block fingerprinting, a core privacy feature. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Spoofing Tools](https://awesome-repositories.com/f/security-cryptography/browser-fingerprinting-services/browser-fingerprint-generators/spoofing-tools.md) — Provides built-in browser fingerprint spoofing to prevent device tracking. ([source](https://www.cromite.org/)) - [Fingerprint Mitigation Tools](https://awesome-repositories.com/f/security-cryptography/browser-fingerprinting-services/fingerprint-mitigation-tools.md) — Disables or mitigates dozens of browser APIs and features that can uniquely identify a user across sites. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Exploit Mitigations](https://awesome-repositories.com/f/security-cryptography/browser-security-hardening/exploit-mitigations.md) — Implements strict site isolation, certificate transparency, DNS-over-HTTPS, and JIT disabling to harden the browser against exploits. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Third-Party Tracking Restrictions](https://awesome-repositories.com/f/security-cryptography/data-privacy-management/privacy-compliance-tools/third-party-tracking-restrictions.md) — Blocks cookies set by domains other than the one the user is visiting to prevent cross-site tracking. ([source](https://www.cromite.org/)) - [Fingerprinting Defenses](https://awesome-repositories.com/f/security-cryptography/fingerprinting-defenses.md) — Blocks the GamePad API to prevent a fingerprinting vector, enhancing user privacy. ([source](https://github.com/uazo/cromite/blob/master/docs/PATCHES.md)) - [Browser Incognito Sessions](https://awesome-repositories.com/f/security-cryptography/identity-provider-connections/incognito-modes/browser-incognito-sessions.md) — Provides a temporary in-memory browsing session that deletes history and cookies when the last incognito window is closed. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) - [Diskless Incognito Sessions](https://awesome-repositories.com/f/security-cryptography/identity-provider-connections/incognito-modes/diskless-incognito-sessions.md) — Ensures incognito browsing stores no history or cookies on disk, deleting them when the last incognito window closes. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) - [Forced Incognito Sessions](https://awesome-repositories.com/f/security-cryptography/identity-provider-connections/incognito-modes/forced-incognito-sessions.md) — Forces all browsing sessions into incognito mode by overriding Chromium's tab creation logic and clearing session data on restart. - [Persistent Incognito Sessions](https://awesome-repositories.com/f/security-cryptography/identity-provider-connections/incognito-modes/persistent-incognito-sessions.md) — Forces all tabs and links to open in incognito mode by default, preventing browsing history and cookies from being saved. ([source](https://github.com/uazo/cromite/blob/master/docs/PATCHES.md)) - [Security Policy Enforcers](https://awesome-repositories.com/f/security-cryptography/infrastructure-policy-enforcement/security-policy-enforcers.md) — Enables strict site isolation, certificate transparency, secure DNS, and disables JIT compilation. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Security & HTTPS](https://awesome-repositories.com/f/security-cryptography/network-infrastructure-security/web-network-security/security-https.md) — Upgrades all HTTP requests to HTTPS automatically, encrypting traffic and protecting against man-in-the-middle attacks. ([source](https://www.cromite.org/)) - [HTTPS Enforcements](https://awesome-repositories.com/f/security-cryptography/network-infrastructure-security/web-network-security/security-https/https-enforcements.md) — Blocks all non-HTTPS connections to ensure encrypted communication with every website. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Site Permission Overrides](https://awesome-repositories.com/f/security-cryptography/permission-management-tools/tool-permission-controllers/site-permission-overrides.md) — Provides per-site controls for autoplay, cookies, JavaScript, images, and ad blocking. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Privacy and Ad Blocking](https://awesome-repositories.com/f/security-cryptography/privacy-and-ad-blocking.md) — Blocks advertisements and all pop-up windows using a built-in adblock engine. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Network-Level Content Blocking Engines](https://awesome-repositories.com/f/security-cryptography/privacy-and-ad-blocking/network-level-content-blocking-engines.md) — Embeds a network-level content blocking engine that applies community filter lists to intercept and block requests before they reach the renderer. - [Telemetry Blocking](https://awesome-repositories.com/f/security-cryptography/privacy-and-ad-blocking/telemetry-blocking.md) — Blocks the browser from sending usage metrics, crash reports, and other data to remote servers. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Google Telemetry and Service Blocking](https://awesome-repositories.com/f/security-cryptography/privacy-and-ad-blocking/telemetry-blocking/google-telemetry-and-service-blocking.md) — Disables all communication with Google servers for data collection, sync, translation, updates, and other integrated services. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Browser Privacy Configurations](https://awesome-repositories.com/f/security-cryptography/privacy-data-protection/privacy-tools/browser-privacy-configurations.md) — Disables or restricts browser features that can be used to track user behavior and habits across websites. ([source](https://cdn.jsdelivr.net/gh/uazo/cromite@master/README.md)) - [Privacy Hardening Tools](https://awesome-repositories.com/f/security-cryptography/privacy-hardening-tools.md) — Disables telemetry, preconnections, background services, and other features that send data or profile user behavior without explicit consent. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Privacy Settings Interfaces](https://awesome-repositories.com/f/security-cryptography/privacy-management/privacy-settings-interfaces.md) — Provides a central place to toggle privacy features like fingerprinting protection, cookie controls, and WebRTC leak prevention. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [WebRTC IP Leak Protections](https://awesome-repositories.com/f/security-cryptography/referrer-leakage-prevention/webrtc-ip-leak-protections.md) — Prevents WebRTC from exposing the device's local and public IP addresses to websites. ([source](https://www.cromite.org/)) - [Omnibox Data Protections](https://awesome-repositories.com/f/security-cryptography/sensitive-data-access-controls/data-sensitivity-classifications/omnibox-data-protections.md) — Prevents the browser from sending credentials, file names, or encrypted URLs to search engines. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) - [JavaScript JIT Disablers](https://awesome-repositories.com/f/security-cryptography/two-factor-authentication/authentication-disabling/security-interface-disablers/javascript-jit-disablers.md) — Disables Just-In-Time compilation by default to reduce the attack surface, with per-site re-enablement available. ([source](https://github.com/uazo/cromite/blob/master/docs/FAQ.md)) - [WebRTC IP Leak Protections](https://awesome-repositories.com/f/security-cryptography/webrtc-leak-detection/webrtc-ip-leak-protections.md) — Prevents WebRTC from exposing the local IP address even when behind a VPN. ([source](https://www.cromite.org/)) - [Local-Only Autofill Stores](https://awesome-repositories.com/f/security-cryptography/credential-management-integrations/autofill-integrations/local-only-autofill-stores.md) — Stores autofill and password data only on the device without sending any information to external services. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) - [Extension Update Restrictions](https://awesome-repositories.com/f/security-cryptography/extension-security-policies/extension-installation-policies/extension-update-restrictions.md) — Prevents automatic extension updates that would send the list of installed extensions to Google servers. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) - [WebSocket Attack Blockers](https://awesome-repositories.com/f/security-cryptography/privacy-and-ad-blocking/network-level-content-blocking-engines/websocket-attack-blockers.md) — Blocks gateway attacks via WebSockets and provides an internal firewall to block unauthorized calls to external servers. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Certificate Acceptance Controls](https://awesome-repositories.com/f/security-cryptography/security/utilities/certificate-trust-managers/certificate-acceptance-controls.md) — Controls whether user-installed certificates are trusted for HTTPS connections, enhancing security against unauthorized interception. ([source](https://github.com/uazo/cromite/blob/master/docs/PATCHES.md)) - [Cleartext Traffic Controls](https://awesome-repositories.com/f/security-cryptography/traffic-filtering/cleartext-traffic-controls.md) — Controls whether apps are allowed to send unencrypted HTTP traffic, enforcing a stricter security policy for network requests. ([source](https://github.com/uazo/cromite/blob/master/docs/PATCHES.md)) ### User Interface & Experience - [Geolocation Leakage Prevention](https://awesome-repositories.com/f/user-interface-experience/geolocation-access/geolocation-consent-requirements/geolocation-leakage-prevention.md) — Prevents the browser from sending location data to the default search engine or any website without explicit user consent. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) - [Browser Interface Customizations](https://awesome-repositories.com/f/user-interface-experience/browser-interface-customizers/browser-interface-customizations.md) — Provides extensive interface customization options including toolbar position and tab management. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) - [Geolocation Consent Requirements](https://awesome-repositories.com/f/user-interface-experience/geolocation-access/geolocation-consent-requirements.md) — Requires explicit user consent before any website can access the device's location information. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) ### Web Development - [Feature Flag Toggles](https://awesome-repositories.com/f/web-development/browser-integration-utilities/browser-apis/browser-launchers/custom-browser-configurations/feature-flag-toggles.md) — Offers user-configurable flags and options to enable or disable experimental browser features and modify default behaviors. ([source](https://www.cromite.org/)) - [Session Data Clearing](https://awesome-repositories.com/f/web-development/browser-session-managers/session-data-clearing.md) — Deletes all browsing history, cookies, and open tabs when the browser is closed. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) - [Feature Enablement Controls](https://awesome-repositories.com/f/web-development/web-automation-scraping/browser-control-protocols/browser-control-apis/browser-interaction-controls/feature-enablement-controls.md) — Lets users choose which browser features to enable or disable, giving them control over functionality and privacy. ([source](https://cdn.jsdelivr.net/gh/uazo/cromite@master/README.md)) - [Tracking Feature Limiters](https://awesome-repositories.com/f/web-development/web-automation-scraping/browser-control-protocols/browser-control-apis/browser-interaction-controls/feature-enablement-controls/tracking-feature-limiters.md) — Provides built-in controls to disable or restrict browser features that can track user behavior. ([source](https://cdn.jsdelivr.net/gh/uazo/cromite@master/README.md)) - [Android User Scripts](https://awesome-repositories.com/f/web-development/user-scripting-tools/android-user-scripts.md) — Executes custom user scripts on Android to modify page behavior. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md)) ### Part of an Awesome List - [Payments](https://awesome-repositories.com/f/awesome-lists/devtools/payments.md) — Requires the user to enable the PaymentRequest API before it can be used for credit card purchases. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) - [Web Browsers](https://awesome-repositories.com/f/awesome-lists/devtools/web-browsers.md) — Privacy-focused browser based on Chromium with ad blocking. ### Hardware & IoT - [Web Bluetooth Permission Controls](https://awesome-repositories.com/f/hardware-iot/bluetooth-connectivity/web-bluetooth-permission-controls.md) — Requires explicit user permission before websites can communicate with Bluetooth Low Energy devices. ([source](https://github.com/uazo/cromite/blob/master/docs/PRIVACY_POLICY.md)) ### Mobile Development - [Android Application Update Systems](https://awesome-repositories.com/f/mobile-development/android-application-update-systems.md) — Checks for and installs new browser versions automatically on Android, notifying the user and requesting activation on first startup. ([source](https://cdn.jsdelivr.net/gh/uazo/cromite@master/README.md)) - [Web-to-App Launch Restrictions](https://awesome-repositories.com/f/mobile-development/app-to-app-data-export/web-to-app-launch-restrictions.md) — Prevents websites from opening external apps to avoid leaking browsing data, with an option to allow it. ([source](https://github.com/uazo/cromite/blob/master/docs/FAQ.md)) ### Software Engineering & Architecture - [User Interface Customizations](https://awesome-repositories.com/f/software-engineering-architecture/application-lifecycle-management/runtime-control-and-customization/user-interface-customizations.md) — Provides extensive UI customization including toolbar position, tab management, and bookmark controls. ([source](https://github.com/uazo/cromite/blob/master/docs/FEATURES.md))