Everyone deserves a safe connection. We start with the network you’re on right now.
On public WiFi, an attacker can quietly read your traffic. We detect it — free, forever — then break their targeting and route you through our own VPN. One network at a time, toward an internet that’s safe for everyone.
Free download. Detection forever free. Try Active Defense + VPN free for 10 minutes.
DETECT · DEFEND · ENCRYPT · SELF-HOSTED VPN · WINDOWS
Detect. Defend. Encrypt.
A VPN does one of these. WifiThreatWatch does all three — in that order — every time you tap Protect Me.
DETECT
FREE FOREVERWe sniff ARP frames off the wire in real time and watch for evil-twin access points, rogue devices, rogue DHCP servers, deauth floods, and DNS tampering — catching the attack as it happens, not by polling a table the attacker already rewrote.
[ LIVE PACKET CAPTURE ]DEFEND
WITH SUBSCRIPTIONThe moment an attack is confirmed, we disconnect, randomize your MAC address, and pull a fresh IP — before the VPN even connects. The attacker is left poisoning an address that no longer exists.
[ ACTIVE DEFENSE ]ENCRYPT
WITH SUBSCRIPTIONThen we route you through a self-hosted encrypted tunnel and verify your traffic is actually flowing through our server. Your keys are generated on your device and never leave it. Private keys are stored in Windows Credential Manager with OS-level encryption.
[ SELF-HOSTED VPN ]Detect is free forever. Try Defend + Encrypt free for 10 minutes — no credit card needed.
SEE WHAT YOUR
ROUTER WON'T.
Every device. Every threat. Every second. Live.
Your VPN hides your traffic.
We stop the attacker.
A VPN is a privacy tool. WifiThreatWatch is a security tool. Different category — and on a hostile network, you want both.
It hides what you send from your ISP and from anyone watching the wire. That’s real, and it matters.
On public WiFi, an attacker who poisons ARP is impersonating your router. Even with a VPN, they still hold your device’s network identity and can keep interfering with the connection.
Before the tunnel comes up, we change your MAC address and pull a fresh IP from the real router. The attacker is left intercepting an address that’s already gone — then we encrypt.
WifiThreatWatch is free to download, and detection is always free. Add Active Defense + VPN when you need to stay connected on hostile networks.
The database that documents the attacker — and hashes everything of yours.
When one WifiThreatWatch device confirms an attack, it can anonymously warn every other one — before they connect. That turns a single-device tool into a network: every user makes every other user safer.
Most “threat intelligence” works by collecting more about you. This one walks a sharper line: it documents the attacker’s hardware in full, and hashes yours. A rogue hotspot caught running an attack is reported by its real name, hardware address, radio fingerprint, and rough area — so every other device can recognize it the moment it reappears.
Your own network never gets that treatment. Before anything about it leaves your computer, its identifiers become a one-way hash — a fingerprint that can be matched, but never turned back into a name. Reports are anonymized for good after at most 90 days, and warnings never say who reported what.
Every scan, checked
Every network you can see is checked against the community’s flags — so the warning is already in your list before you tap connect.
Re-checked every ~30 seconds
If another user’s device flags the network you’re on, the app warns you on the next re-check — not the next time you happen to scan.
Defense that compounds
The database is young and grows with every device that joins. One person’s bad afternoon becomes everyone else’s heads-up.
[ it warns — it doesn’t block · every copy contributes — that’s what makes it work · grows with the community ]
How the guarded collection model works →Detection is free. Protection is easy.
Download the app and know the moment you’re under attack — free, forever. Add Active Defense and the self-hosted VPN when you need to break the attacker’s hold and stay connected.
- Real-time threat detection (ARP spoof, evil twin, rogue device & more)
- Real-time threat dashboard & device tracking
- Live alerts the moment an attack starts
- Two-signal verification so it doesn’t cry wolf
- 10-minute Active Defense + VPN trial — no subscription needed
- Everything in Free
- Active Defense — MAC + IP randomization under attack
- Self-hosted encrypted VPN tunnel (your keys, no traffic content logs)
- Priority support
First time you’re attacked? Get 10 minutes of Active Defense free.
No subscription needed for your first emergency. We don’t take payments through the website — subscribe in the app after download.
Know what’s actually out there.
Detection that sees the whole network — not just the device it runs on.
See every node behind your network name
FREE FOREVERMesh WiFi hides a crowd of access points behind one network name. WifiThreatWatch lists every one broadcasting your SSID — its signal, band, vendor, and the load the AP reports it’s carrying — and tags each with a trust verdict from the evil-twin engine: trusted, new, or flagged.
When your current node is congested, it points you at a stronger, quieter one and can ask your adapter to prefer it — honest best-effort steering, and it tells you plainly whether the mesh actually moved you. It’s also how a rogue AP wearing your network’s name stops hiding in the crowd.
A safer internet,
for everyone.
Protecting one device on one network is where we start — not where we stop. Every attack WifiThreatWatch catches is a data point that could keep the next person safe. We’re building toward a world where attackers run out of places to hide.
- →A shared threat database, fed by attacks caught in the wild
- →A living blacklist that helps track repeat attackers
- →A router built secure from the first packet
WiFiThreatWatch Nano — a sentry that never sleeps.
The app protects the device it runs on. The Nano protects the whole network — a small, always-on box that watches the air around the clock, so an attack at 3 a.m. is caught and logged even with every laptop in the house asleep.
Windows can’t put a WiFi card into monitor mode — so the app detects some attacks by their symptoms. The Nano runs Linux with a dedicated monitor radio, which is where frame-level detection of real deauth floods and evil-twin beacons finally becomes possible. It advertises itself on your LAN, so the app can show “🛡 Protected by Nano.”
[ hardware in prototype — not yet for sale ]
Download WifiThreatWatch for Windows. Free forever — see attacks the moment they happen. Try Active Defense + VPN free for 10 minutes, then subscribe in the app for ongoing protection at $6.99/month or $69.99/year. Your VPN keys are generated on your device and never leave it.
FREE DOWNLOAD · WINDOWS 10 / 11 · NPCAP BUNDLED · SELF-HOSTED VPN