Skip to content
/ device-activity-tracker Public
forked from gommzystudio/device-activity-tracker

A phone number can reveal whether a device is active, in standby or offline (and more). This PoC demonstrates how delivery receipts + RTT timing leak sensitive device-activity patterns. (WhatsApp / Signal)

License

View license
2 stars 564 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

devinoldenburg/device-activity-tracker

BranchesTags
 
 

Repository files navigation

WhatsApp Activity Tracker (Docker + Next UI)

Fork of the original WhatsApp Activity Tracker. MIT license. Focus: always-on Docker stack, SQLite persistence, and a Next.js dashboard.

Security hazard / research-only. This probes messaging platforms to infer presence. Using it without explicit consent can be illegal and unethical. See docs/README.md and do not run it against accounts you do not own or administer with permission.

Features

  • WhatsApp (Baileys) probing with RTT analysis
  • SQLite persistence for all probes, profile-pic proxy, aliasing
  • Next.js dashboard (live Socket.IO, sortable table, detail charts, CSV export)
  • Dockerized stack with persisted auth (WA)

Quick start (Docker)

docker-compose up --build -d
# UI:        http://localhost:3002
# API/WS:    http://localhost:3005
# API/WS:    http://localhost:3005

Then in the UI: scan the WhatsApp QR once; auth stays in volumes.

Reset everything (drops DB and auth):

docker-compose down -v && docker-compose up --build -d

Authentication

  • Default user: admin / changeme (stored in SQLite). Change immediately after first login.
  • Env: ALLOW_REGISTRATION=true to enable self-signup; otherwise only existing users can log in.
  • Env: JWT_SECRET for signing auth cookies (defaults to a dev secret); set to a strong random string in production.
  • Env: COOKIE_SECURE=true to force secure cookies behind HTTPS.

Local dev

npm install
cd client-next && npm install && cd ..

# Backend
npm run start:backend   # serves API/WS on :3001

# Frontend (Next)
cd client-next && npm run dev -- -H 0.0.0.0 -p 3002

Env for the frontend (host dev):

Architecture

  • src/server.ts – Express + Socket.IO; WhatsApp via Baileys; persists to SQLite
  • src/tracker.ts – probe loops, RTT/state calc, ping events
  • src/storage.ts – better-sqlite3 store (contacts, pings)
  • client-next/ – Next.js app with live table, detail pane, charts, CSV export
  • Docker: docker-compose.yml runs dat-server, dat-client; volumes wa-auth, mysql-data

Ports

  • Backend container: 3001 (mapped to host 3005)
  • Frontend container: 3002

Troubleshooting

  • No QR (WA): refresh UI
  • “Online” stale: UI marks sessions stale if no update >30s; reload and rescan if needed
  • Reset stack: docker-compose down -v && docker-compose up --build -d

Security / ethics

License

MIT. Copyright (c) 2025 WhatsApp Activity Tracker Contributors.

About

A phone number can reveal whether a device is active, in standby or offline (and more). This PoC demonstrates how delivery receipts + RTT timing leak sensitive device-activity patterns. (WhatsApp / Signal)

Resources

Readme

License

View license

Contributing

Contributing
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • TypeScript 99.3%
  • Other 0.7%