Special Event! 🤙 Create a private ephemeral Web Proxy hosted on your GitHub Actions minutes by opening an issue on this repo
HOLD UP You need to fork or generate this repo first, so you have your own copy. Then open an issue and you will be guided through the process (1 manual step, rest is automatic), while your browser VPN is created.
By default they remain open for 5 minutes, but you can make that longer by editing the workflow YAML file. Each minute used counts against your GitHub actions quota. Also, don't do anything abusive with this, remember you are browsing the web from inside GitHub's infrastructure (actions runners), so treat them with respect!
Limitations: no audio, no DevTools, no docviewer (Because the ports are not accesible, although the services are running)
DOSY
P.S want a real VPN? Then check out Mullvad (no affiliation). They also have a Mullvad Browser!
regular README starts below this line
BrowserBox is a leading-edge solution in the Zero Trust landscape, enabling embeddable multiplayer browsers in any web page on any device. Our cybersecurity focus is on ensuring that every web interaction is treated as potentially hostile, and isolating it, so that we protect your devices and network from harm.
By leveraging the principles of Remote Browser Isolation (RBI), real-time streaming and collaborative browserin (co-browsing or "multiplayer browsers"), BrowserBoxPro ensures that no web content directly interacts with the end user's device, while remaining accessible through a shareable, collaborative interface.
This guide will walk you through the seamless integration of BrowserBoxPro into your Zero Trust architecture.
NOTE: If you are installing on MacOS please be aware that performance will be very slow because headless Chrome on MacOS is 'fake headless' (just a hidden window) because of limitations of the MacOS ecosystem faced by the Chrome authors.
- BrowserBox: Zero Trust Browsing
- Embracing Zero Trust with BrowserBox
- Key Features
- Deploying BrowserBoxPro in a Zero Trust Environment with Docker
- Zero Trust Installation Guide
- Installation
- Applications in a Zero Trust Framework
- Features of BrowserBox Pro in a Zero Trust Environment
- Licensing for Zero Trust
- Pricing
- Elevate Your Zero Trust Strategy with BrowserBoxPro
- Copyright
In the evolving cybersecurity landscape, the Zero Trust model has emerged as a cornerstone. By assuming no trust by default and verifying every access request irrespective of its source, Zero Trust ensures robust security. BrowserBoxPro is at the forefront of this paradigm shift, offering:
- Web Isolation: Every web session is isolated, ensuring malicious content doesn't reach the end-user's device.
- Co-Browsing: Collaborative browsing without compromising security.
- Zero Trust Integration: Easily integrates into your existing Zero Trust infrastructure.
For the latest on how BrowserBox is shaping the Zero Trust landscape, visit our Company Blog.
- Updated Pricing - now with even more tiers for smaller use cases!
- BrowserBox Pro Goes Open Source with Multiple Licenses
- Tunnelling over SSH - You're guide to using Localhost Certificates and SSH port-forwarding to run BrowserBox Pro on a remote machine without a domain name, using SSH tunneling
- Advanced Streaming: BrowserBoxPro offers advanced streaming capabilities, allowing you to seamlessly browse websites, stream videos, and access web applications with superior performance.
- Enhanced Feature Set: Enjoy a wide range of enhanced features that enhance your browsing experience, including improved security, customizable settings, and optimized resource management.
- Superior Performance: BrowserBoxPro delivers exceptional performance, ensuring smooth and responsive browsing even for resource-intensive websites and applications.
- Flexible Usage: Whether you are a non-commercial user or using BrowserBoxPro for commercial purposes, you can benefit from the full range of pro features to enhance your browsing capabilities.
Before diving in, ensure you have docker installed!
Deploying BrowserBoxPro within a Zero Trust framework is straightforward:
-
Obtain the latest Docker container for BrowserBoxPro from our packages page on GitHub Container Registry.
-
Deploy the Docker container using our Zero Trust compliant run script. Choose a primary port number (
$PORT
) ensuring two extra ports are free both preceding and succeeding$PORT
. Deploy by running:
PORT=8080 # or your preferred port
bash <(curl -s https://raw.githubusercontent.com/dosyago/BrowserBoxPro/7461dd1edb5e9e5b4f44da8961228e66cdcdf276/deploy-scripts/run_docker.sh) $PORT
Upon successful deployment, BrowserBoxPro will be operational, reinforcing your Zero Trust strategy. Access the browser using the provided login link: https://<your-host>:$PORT/login?token=<random token>
.
For support or to purchase licenses, connect with us at [email protected] or visit: https://dosyago.com.
🌟 Video Installation Guide for Pro: https://youtu.be/cGUJCCPDWNE
For detailed information and progress updates, please refer to the official documentation.
Follow these instructions to install BrowserBoxPro on your system.
Before installing BrowserBoxPro, ensure that your system meets the following requirements:
- Debian VPS with 1 cores, 1 GB RAM, and 25 GB SSD (e.g. Nanode from Linode)
- At least 5 Mbps internet connection
- A public hostname with a DNS A record pointing to your VPS's IP address, or localhost certificates installed on your local and remote machine (for example using mkcert)
First, update your distribution:
apt update && apt -y upgrade
And install a few basic tools:
apt install curl git wget
Now, prepare the machine by following these steps:
-
Create a new user to operate BrowserBoxPro:
adduser pro
-
Disable the password for the newly created user:
usermod -L pro
-
Create a new group for sudo privileges:
addgroup sudoers
-
Add the following line to the sudoers file to avoid entering a password for sudo operations:
%sudoers ALL=(ALL) NOPASSWD:ALL
Use the
visudo
command to edit the sudoers file. -
Grant sudo privileges to the user:
usermod -G sudoers pro
Switch to the pro
user by executing the following command:
sudo -u pro bash
Follow these steps to install BrowserBoxPro:
-
Clone the BrowserBoxPro repository:
git clone https://github.com/dosyago/BrowserBoxPro
-
Navigate to the cloned repository:
cd BrowserBoxPro
-
Run the global installation script, replacing
<domain_name>
with your domain name that points to the machine you're setting up (if you want to use it without a domain name, just use localhost here for the domain name, but you'll still need to copy the correct mkcert localsthost certificates to $HOME/sslcerts later):./deploy-scripts/global_install.sh <domain_name>
-
Start the main service on port 8080 and generate the login link:
setup_bbpro --port 8080
-
Launch BrowserBoxPro:
bbpro
During the installation process, BrowserBoxPro will automatically install the required dependencies and configure the necessary settings.
BrowserBoxPro isn't just a tool; it's a comprehensive solution designed to fit seamlessly into a Zero Trust architecture. Here's how:
- Remote Browser Isolation: Fundamental to Zero Trust, ensuring no direct content interaction with user devices.
- Co-Browsing: Collaborate without compromising on security.
- VPN Alternatives: A more secure solution than traditional VPNs.
- Email Threat Mitigation: Content Disarm & Reconstruction (CDR) ensures safe email attachments.
- Secure Web Interaction: A user-friendly UI for secure third-party processes.
- A user-friendly UI that allows clients to perform 3rd-party processes without leaving your website.
- A fully customizable online hosted web browser that provides an alternative to downloadable browsers.
- The ability to record web app interactions to document bugs by capturing the event stream and viewport.
- A mechanism to create visual "How-To" guides illustrating key user stories.
- A tool for human-in-the-loop intervention to resolve stuck browser automation jobs and identify "selector drift" and script-page mismatch issues.
- A robust web proxy to seamlessly integrate 3rd-party processes lacking APIs.
- An interactive console to inspect, observe, and interact with browser automation tasks.
- A browser that can be automated, offering effective evasion of bot detection mechanisms that target pure headless Chrome.
- A scriptable console and interactive simulator for automation tasks, creating an intuitive feedback loop.
- An open web
<WebView>
tag. - An
<iframe>
without cross-origin restrictions. - A 'head' for headless browsers.
For a comprehensive list of features and their availability in BrowserBoxPro, refer to the feature table below.
BrowserBox Pro offers an array of advanced features that set it apart from other versions of remote browser isolation. With fully open source-code, non-commercial use for free, frequent updates and cutting-edge technology, BrowserBox Pro provides an enhanced browsing experience with superior rendering, top-tier graphics, and minimal lag. Here are the key features of BrowserBox Pro:
- Advanced streaming technology and variable bitrate innovations for smoother browsing experience
- Superior rendering and graphics capabilities
- Structured, weekly update schedule with quarterly major improvements
- Exclusive advanced features not available in other versions
- Commercial use availability with Individual server and Self-hosted options
- Advanced security mechanisms and privacy safeguards
- Customizable browser UI
- Docker image compatibility for easy deployment
- Cloud and platform independence
- Multi-user security features (Pro exclusive)
- Auto-scaling and resource control (Pro exclusive)
- WebRTC/WebSocket viewport streaming (Pro exclusive)
- Fastest-path lag reduction (Pro exclusive)
- Built-in multiplayer mode with chat (Pro exclusive)
- Puppeteer scripting REPL console (Pro exclusive)
- Embeddable inside
<iframe>
(Pro exclusive) - Kiosk mode (Pro exclusive)
- Adobe Flash Player compatibility (Pro exclusive)
- User-friendly API (Pro exclusive)
- SSH tunneling (Pro exclusive)
These features make BrowserBox Pro the ideal choice for businesses and organizations looking to enhance their cybersecurity, privacy, and browsing capabilities.
For more information about commercial options and licensing, please refer to the relevant sections below.
BrowserBoxPro is licensed separately under the following licenses:
- GNU Affero General Public License v3 (or later)
- Polyform Non-Commercial License 1.0
- BrowserBox Pro perpetual commercial license
- BrowserBox Pro subscription commercial license
You may use BrowserBox Pro under the terms of the AGPLv3 (or later).
Are you modifying BrowserBox Pro or developing software that uses BrowserBox Pro and willing to license those changes under the AGPL?
You may use BrowserBox Pro under the terms of the AGPLv3 (or later).
Are you using BrowserBox Pro, modifying BrowserBox Pro, or developing software that uses BrowserBox Pro in a non-commercial capacity but do not wish to comply with the license terms of the AGPLv3?
You may use BrowserBox Pro under the terms of the Polyform Non-Commercial License 1.0.0.
Are you using BrowserBox Pro, modifying BrowserBox Pro, or developing software that uses BrowserBox Pro in a commercial capacity but do not wish to comply with the license terms of the AGPLv3?
You may purchase a perpetual or subscription based commercial license.
Purchasing takes a minute. Our purchasing form accepts credit cards, bank transfers and many other forms of payment. Once purchased, you'll receive a commercial license PDF including your agreement and valid Order receipt and you will be all set to use BrowserBox Pro in your commercial applications. With the purchase of a commercial license:
- You may use BrowserBox Pro in as many commercial applications you like.
- You may use BrowserBox Pro in your own commercial applications and products. For example: premium VPN services, RBI systems, system integration portals, web automation and scraping products, educational platforms, and other products and apps.
- Customers and users of your products do not need to purchase their own license — so long as they are not developing their own commercial products with BrowserBox Pro.
Please note that we cannot transact with sanctioned countries, entities or individuals.
Commercial Licenses are priced per seat. A seat is someone who uses the BrowserBox Pro system, either in an internal application (like secure email attachment viewing), or an external customer-facing application (such as a customer of your remote browser isolation product). Commercial Licenses come in two flavors:
- Perpetual License This is a license to use the version of BrowserBox Pro you purchase forever. The version can be updated to the latest via purchase of yearly licenses.
- Yearly License This is a license to use the latest version available within the 12-months from your purchase. It can be manually renewed every year, or you can subscribe so it renews automatically.
Commercial Licenses are available in two sizes:
- Individual License Purchasable at our GumRoad site. This is suitable for individuals or small teams working on commercial projects who don't want to use the AGPLv3.
- License Pack Available in multiple sizes, from the small to the truly epic, with commensurately epic discounts at scale. These are purchasable at our main website.
By obtaining a commercial license, you gain the freedom to tailor BrowserBox Pro to your specific requirements and integrate it seamlessly into your workflow. This empowers organizations to leverage the advanced features and capabilities of BrowserBox Pro while maintaining full control over its customization and usage.
Support tiers and customization may be separately negotiated and purchased. To discuss your needs, please reach out to our helpful support team here.
Are you an OEM and want to deploy BBPro on a hardware device that you sell to your customers? Contact us for special access to Appliance License pricing with Volume Discounts. This pricing sheet and terms are tailored to suit OEM's delivering security products for business and industry. Please note that if you are supplying government or other non-commercial users you cannot "pass through" DOSYAGO's non-commercial license to your customers without licensing a Commercial license from us.
Unfotunately if you or your company are an OFAC sanctioned entity or other entity sanctioned by the US Government (e.g. designated on OFAC's SDN List, BIS's DPL or Entity List, DDTC's DPL, or on the FBI's various lists, among others) we are unable to offer you a license of any form. Please note that in some cases we may conduct necessary checks to ensure sanctions compliance.
BrowserBox Pro offers flexible licensing options to cater to different usage scenarios. As previously mentioned, BBPro software is available for free for non-commercial use under the PolyForm NonCommercial license. This allows individuals and non-profit organizations to enjoy the benefits of BrowserBox Pro without any licensing fees when using the software without any participation in or anticipation of commercial application. The PolyForm NonCommercial license ensures that the software is used strictly for non-commercial purposes.
Whether it's for non-commercial or commercial purposes, BrowserBox Pro provides a range of licensing options to accommodate different user needs and ensure a secure and powerful browsing experience.
See our website and our GumRoad for accurate latest pricing or reach out to us, but here is a summary below:
License Type | Quantity | Price Per Unit/Pack | Includes |
---|---|---|---|
Yearly | Up to 1 | $84/seat/year |
|
Yearly | 2-50 | $64.92 | Same as above |
Yearly | 51-500 | $46.25 | Same as above |
Yearly | 501-5000 | $35.58 | Same as above |
Yearly | 5001-100000 | $10.67 | Same as above |
Yearly | 100001+ | $9.99 | Same as above |
Perpetual | 10-pack | $1,947.60 |
|
Perpetual | 100-pack | $13,875.00 | Same as above |
Perpetual | 10,000-pack | $320,100.00 | Same as above |
Notes:
- Perpetual Packs contain multiple seats. For example, the 10-pack contains 10 licenses.
- Each 'seat' represents a concurrent user.
In the modern digital landscape, Zero Trust isn't just a model; it's a necessity. BrowserBoxPro stands as a testament to this, offering an unparalleled browsing experience while ensuring every interaction is verified, validated, and secure.
Our commitment goes beyond just providing a product. We offer a partnership, ensuring that as the cybersecurity landscape evolves, so do our solutions. With BrowserBoxPro, you're not just adopting a tool; you're embracing a future where every interaction is secure.
Join us in navigating the Zero Trust landscape. Secure your commercial license today and fortify your cybersecurity strategy with BrowserBoxPro.
This project is copyright The Dosyago Corporation and Cris Stringfellow 2023. All rights reserved.
For detailed information and progress updates, please refer to the official documentation.