What's inside.

Wrab uses our own protocol built on modern encryption standards. The channel between your device and our servers is private: no one between you and the app can see what data is being transferred.

The client picks a working path for your current network on its own — corporate Wi-Fi, a hotel, the metro, a trip abroad. A successful path is remembered and tried first in the next session. Two modes are available — “our own” (for the most demanding networks) and “classic” (a proven international standard). You can leave it on “Auto” — the app will choose for you.

Wrab is not a tunnel — a filter. The client knows the list of addresses of local services and sends that traffic directly through your provider, just like without the app. Everything else goes through the private channel.

The list is updated centrally and arrives in the client together with the config — there is nothing to set up by hand. DNS is not substituted, and apps for banks, marketplaces and Gosuslugi work as usual.

Cryptographic keys are generated on the device itself and live in the iPhone Keychain — we never have them. On the server we store the minimum: email, payments and a technical identifier for your device. We do not keep logs of visits, DNS requests or connection times — we do not need them to run the service.

Learn more — privacy policy.