@@ -154,107 +154,107 @@ Distributed under the GNU GPL v3 License. See `LICENSE` for more information.
154154
155155## 📝 Changelog
156156
157- ** v0.4.1**
158- - Improve blocking GSM/2G Downgrade Attack
159- - improve blocking A5/0 Cipher Attack
160-
161- ** v0.4.0**
157+ ** v0.4.2-beta**
158+ - ** Enhanced CVE Detection & Chipset Compatibility:**
159+ - Added codename-to-technical-name mapping for Qualcomm chipsets (e.g., "LAHAINA" → "SM8350").
160+ - Expanded VulnerabilityMatcher with additional chipset aliases for better matching.
161+ - Enhanced NVD API rate limiting handling with intelligent delays.
162+ - Implemented consistent test CVE fallback system for reliable detection.
163+ - ** Improved Cache Management:**
164+ - Added detailed logging for cache refresh decisions and API operations.
165+ - Fixed cache clearing issues that caused inconsistent CVE counts.
166+ - ** System Stability Fixes:**
167+ - Resolved coroutine scope issues in MainActivity for proper async operations.
168+ - Fixed import references and compilation errors.
169+ - Enhanced error handling throughout the vulnerability detection pipeline.
170+ - ** Map Tab Optimization:**
171+ - Improved cell tower radius circles visibility by removing fill color and using only outline strokes.
172+ - Increased line thickness for better visibility (4px normal, 8px for missing towers).
173+ - Fixed overlapping circle visibility issues in high-density cell tower areas.
174+ - ** Improved Module Updates**
175+ - Added Module Update Notification in Status Tab.
176+ - Added Module Reboot Dialog after Install/Update in Settings Tab.
177+
178+ - ** v0.4.1-beta**
179+ - Improve blocking GSM/2G Downgrade Attack
180+ - improve blocking A5/0 Cipher Attack
181+
182+ ** v0.4.0-beta**
162183- ** Advanced Panic Mode & Recovery System:**
163- - Implemented Extended Panic Mode with full system lockdown and hardware radio disable.
164- - Added automated recovery procedures with panic validation for post-incident analysis.
165- - Enhanced panic controls with hardware shutdown commands and validation feedback.
166- - Persistent panic state management across device reboots with automatic restoration.
167- - Multi-layer network isolation using Android APIs, iptables, and hardware-level controls.
184+ - Implemented Extended Panic Mode with full system lockdown and hardware radio disable.
185+ - Added automated recovery procedures with panic validation for post-incident analysis.
186+ - Enhanced panic controls with hardware shutdown commands and validation feedback.
187+ - Persistent panic state management across device reboots with automatic restoration.
188+ - Multi-layer network isolation using Android APIs, iptables, and hardware-level controls.
168189- ** Improved Hardening Module Integration:**
169- - Updated Sentry Radio Hardening Module to v0.4.0 with enhanced system integration.
170- - Improved command execution reliability with fallback path handling for all operations.
171- - Added comprehensive recovery and validation commands with enhanced error handling.
172- - Enhanced boot service with automatic panic state restoration and symlink management.
173- - Improved hardware radio control with multiple reset methods and service management.
190+ - Updated Sentry Radio Hardening Module to v0.4.0 with enhanced system integration.
191+ - Improved command execution reliability with fallback path handling for all operations.
192+ - Added comprehensive recovery and validation commands with enhanced error handling.
193+ - Enhanced boot service with automatic panic state restoration and symlink management.
194+ - Improved hardware radio control with multiple reset methods and service management.
174195- ** App Update Management System:**
175- - Implemented automatic app update detection via GitHub API integration.
176- - Added secure overlay notifications for new releases with version comparison.
177- - Enhanced version parsing to support GitHub's "versionCode-versionName" format.
178- - Integrated update manager with callback system for real-time update notifications.
179- - Added automatic module version checking and update availability indicators.
196+ - Implemented automatic app update detection via GitHub API integration.
197+ - Added secure overlay notifications for new releases with version comparison.
198+ - Enhanced version parsing to support GitHub's "versionCode-versionName" format.
199+ - Integrated update manager with callback system for real-time update notifications.
200+ - Added automatic module version checking and update availability indicators.
180201- ** Enhanced Security Controls:**
181- - Improved root command execution with better error handling and fallback mechanisms.
182- - Added comprehensive logging for panic and recovery operations with detailed status reporting.
183- - Enhanced system integrity monitoring with detailed telemetry and validation procedures.
184- - Implemented persistent configuration storage for panic states and security settings.
185- - Added hardware-level radio controls with Qualcomm-specific interface support.
202+ - Improved root command execution with better error handling and fallback mechanisms.
203+ - Added comprehensive logging for panic and recovery operations with detailed status reporting.
204+ - Enhanced system integrity monitoring with detailed telemetry and validation procedures.
205+ - Implemented persistent configuration storage for panic states and security settings.
206+ - Added hardware-level radio controls with Qualcomm-specific interface support.
186207- ** UI/UX Improvements:**
187- - Updated Security Tab with new panic, recovery management controls.
188- - Enhanced Settings Tab with app update notification preferences and module management.
189- - Improved error messaging and user feedback throughout the application.
190- - Added real-time validation feedback and status indicators for all security operations.
191- - Streamlined button layout with improved accessibility and visual hierarchy.
208+ - Updated Security Tab with new panic, recovery management controls.
209+ - Enhanced Settings Tab with app update notification preferences and module management.
210+ - Improved error messaging and user feedback throughout the application.
211+ - Added real-time validation feedback and status indicators for all security operations.
212+ - Streamlined button layout with improved accessibility and visual hierarchy.
192213- ** Network & Connectivity Enhancements:**
193- - Advanced network isolation with multiple fallback mechanisms for maximum compatibility.
194- - Enhanced mobile data recovery with forced reconnection procedures and service restart.
195- - Improved WiFi management with automated enable/disable sequences and state validation.
196- - Added comprehensive network interface monitoring and control across all radio technologies.
214+ - Advanced network isolation with multiple fallback mechanisms for maximum compatibility.
215+ - Enhanced mobile data recovery with forced reconnection procedures and service restart.
216+ - Improved WiFi management with automated enable/disable sequences and state validation.
217+ - Added comprehensive network interface monitoring and control across all radio technologies.
197218- ** System Resilience Features:**
198- - Automatic service recovery and restart capabilities for telephony and radio services.
199- - Enhanced error recovery with multiple fallback strategies for different device configurations.
200- - Improved system state validation with comprehensive health checks and status reporting.
201- - Added forensic data collection and analysis capabilities for incident investigation.
202-
203- ** v0.4.2-beta**
204- - ** Enhanced CVE Detection & Chipset Compatibility:**
205- - Added codename-to-technical-name mapping for Qualcomm chipsets (e.g., "LAHAINA" → "SM8350").
206- - Expanded VulnerabilityMatcher with additional chipset aliases for better matching.
207- - Enhanced NVD API rate limiting handling with intelligent delays.
208- - Implemented consistent test CVE fallback system for reliable detection.
209- - ** Improved Cache Management:**
210- - Added detailed logging for cache refresh decisions and API operations.
211- - Fixed cache clearing issues that caused inconsistent CVE counts.
212- - ** System Stability Fixes:**
213- - Resolved coroutine scope issues in MainActivity for proper async operations.
214- - Fixed import references and compilation errors.
215- - Enhanced error handling throughout the vulnerability detection pipeline.
216- - ** Map Tab Optimization:**
217- - Improved cell tower radius circles visibility by removing fill color and using only outline strokes.
218- - Increased line thickness for better visibility (4px normal, 8px for missing towers).
219- - Fixed overlapping circle visibility issues in high-density cell tower areas.
220- - ** Improved Module Updates**
221- - Added Module Update Notification in Status Tab.
222- - Added Module Reboot Dialog after Install/Update in Settings Tab.
219+ - Automatic service recovery and restart capabilities for telephony and radio services.
220+ - Enhanced error recovery with multiple fallback strategies for different device configurations.
221+ - Improved system state validation with comprehensive health checks and status reporting.
222+ - Added forensic data collection and analysis capabilities for incident investigation.
223223
224224** v0.3.0-beta**
225225- ** Deep System Hardening (Magisk/KSU Module):**
226- - Introduced the Sentry Radio Hardening Module for Magisk and KernelSU.
227- - Enforces secure modem parameters at the system level (e.g., disables insecure network fallbacks).
228- - Provides a low-level interface (` sentry-ctl ` ) for direct modem interaction.
226+ - Introduced the Sentry Radio Hardening Module for Magisk and KernelSU.
227+ - Enforces secure modem parameters at the system level (e.g., disables insecure network fallbacks).
228+ - Provides a low-level interface (` sentry-ctl ` ) for direct modem interaction.
229229- ** Dynamic CVE Vulnerability Management:**
230- - Replaced static vulnerability list with live NVD API v2.0 fetching for up-to-the-minute modem CVEs.
231- - Implemented intelligent matching for device chipsets (Qualcomm, MediaTek, Exynos) against the CVE database.
232- - Added a local Room cache for offline vulnerability scanning.
230+ - Replaced static vulnerability list with live NVD API v2.0 fetching for up-to-the-minute modem CVEs.
231+ - Implemented intelligent matching for device chipsets (Qualcomm, MediaTek, Exynos) against the CVE database.
232+ - Added a local Room cache for offline vulnerability scanning.
233233- ** Enhanced Forensic Mapping Experience:**
234- - Map state (position and zoom) is now saved and restored automatically.
235- - The map now intelligently centers on the user's location on first launch or when no state is saved.
236- - UI-Fix: Fixed a bug causing empty pop-up bubbles; info windows now only appear for cell tower markers.
234+ - Map state (position and zoom) is now saved and restored automatically.
235+ - The map now intelligently centers on the user's location on first launch or when no state is saved.
236+ - UI-Fix: Fixed a bug causing empty pop-up bubbles; info windows now only appear for cell tower markers.
237237- ** System Integrity Dashboard Upgrade:**
238- - Added Android Security Patch level to the System Integrity Scan card.
239- - Added the timestamp of the last CVE database sync for transparency.
238+ - Added Android Security Patch level to the System Integrity Scan card.
239+ - Added the timestamp of the last CVE database sync for transparency.
240240- ** Stability & API Fixes:**
241- - Repaired and optimized API communication for OpenCellID and BeaconDB.
242- - Enhanced Xposed module hooks for better compatibility with modern Android versions.
241+ - Repaired and optimized API communication for OpenCellID and BeaconDB.
242+ - Enhanced Xposed module hooks for better compatibility with modern Android versions.
243243
244244** v0.2.1-beta**
245- - Added security hardening (8 new security modules)
246- - Full-screen Overlay Alarms (requires SYSTEM_ALERT_WINDOW permission)
247- - Certificate pinning for all APIs
248- - AES-256-GCM encryption for API keys in Keystore
249- - Input validation framework
250- - Comprehensive audit logging
251- - Memory leak prevention
252- - Thread-safe operations
253- - New Security Tab with active threat blocking:
254- - Block GSM Registrations (prevents 2G downgrade attacks)
255- - Reject A5/0 Cipher (blocks unencrypted connections)
256- - Threats Blocked Dashboard (real-time blocking statistics)
257- - Blocking Events Log (detailed forensic history)
245+ - Added security hardening (8 new security modules)
246+ - Full-screen Overlay Alarms (requires SYSTEM_ALERT_WINDOW permission)
247+ - Certificate pinning for all APIs
248+ - AES-256-GCM encryption for API keys in Keystore
249+ - Input validation framework
250+ - Comprehensive audit logging
251+ - Memory leak prevention
252+ - Thread-safe operations
253+ - New Security Tab with active threat blocking:
254+ - Block GSM Registrations (prevents 2G downgrade attacks)
255+ - Reject A5/0 Cipher (blocks unencrypted connections)
256+ - Threats Blocked Dashboard (real-time blocking statistics)
257+ - Blocking Events Log (detailed forensic history)
258258
259259---
260260
0 commit comments