Invitation Only · Private Beta

Private messaging.
Zero compromises.

RAILGUN is civic infrastructure for private communication. End-to-end encrypted messaging where your keys never leave your device. Truth without permission.

Download NowLearn About Security
X3DH + Double RatchetSignal Protocol key exchange
Curve25519Modern elliptic curve cryptography
ChaCha20-Poly1305AEAD authenticated encryption

Download RAILGUN

Get RAILGUN for your platform and start messaging with true privacy. Your keys never leave your device.

Desktop Apps

Windows

Windows 10+ (64-bit)

Coming Soon

macOS

macOS 11+ (Apple Silicon & Intel)

Coming Soon

Linux

AppImage or .deb package

Coming Soon

Mobile Apps

iOS

iPhone & iPad

Coming Soon

Android

Android phones & tablets

Coming Soon
Pre-release•Release Notes•Source Code

Automatic Updates

RAILGUN automatically checks for updates and installs them securely. All updates are cryptographically signed to ensure authenticity.

Verify Your Download (Advanced)

1. Download the checksums file:

SHA256SUMS.txt

2. Verify the checksum:

# macOS/Linux sha256sum -c SHA256SUMS.txt --ignore-missing # Windows PowerShell Get-FileHash Rail-Gun-*.exe | Format-List

Why RAILGUN?

Built from the ground up with privacy and security as the foundation, not an afterthought.

Signal Protocol

Double Ratchet (KDF chains) + X3DH key exchange. Industry-standard end-to-end encryption with libsignal

Curve25519 Encryption

Modern elliptic curve cryptography (Curve25519) for key exchange and signatures via NaCl

ChaCha20-Poly1305

AEAD cipher providing authenticated encryption with associated data (AEAD) for message confidentiality

Group Encryption

Communities with encrypted channels using Signal Protocol group sessions and per-recipient keys

Perfect Forward Secrecy

Each message uses ephemeral keys. Compromised long-term keys cannot decrypt past messages

Open Source & Auditable

Full transparency on GitHub. Cryptographic implementations reviewed and auditable by security experts

Relay-Only Architecture

Server never stores messages. Encrypted envelopes are relayed in real-time and queued temporarily for offline users. Zero plaintext exposure

Cross-Platform

Native apps for macOS, Windows, Linux, iOS, and Android. Message history stays on your devices—synced peer-to-peer

Nuke Button

One-click account self-destruct with military-grade secure wipe. 100-pass overwrite destroys all keys, messages, and local data beyond forensic recovery

Production-Grade Infrastructure

Built to Scale

RAILGUN's relay infrastructure is engineered for 100,000+ concurrent connections with sub-100ms message delivery. No compromises on speed or privacy.

100K+
Concurrent Connections
10M+
Messages Per Second
<100ms
p95 Relay Latency
99.99%
Target Uptime

NATS JetStream Event Bus

High-throughput inter-service messaging at 10M+ messages/sec. Durable streams for push notifications, ephemeral for presence and typing

Dedicated Gateway Service

Stateless WebSocket relay decoupled from the API. Scales independently to handle connection surges without impacting REST endpoints

Multi-Region Deployment

Deployed across multiple Fly.io regions with Redis pub/sub for cross-machine broadcasting. Your messages take the shortest path

P2P Hybrid Transport

50%+ of messages bypass servers entirely via WebRTC data channels. Reduces latency, cost, and surveillance surface simultaneously

Full Observability Stack

Prometheus metrics, Grafana dashboards, OpenTelemetry distributed tracing, and Jaeger. Every relay hop is measurable

Auto-Scaling

Metric-driven scaling across API, gateway, and worker processes. Scales up in seconds based on connection count and queue depth

Push Notifications

FCM (Android) and APNs (iOS) push notifications for offline message delivery. No metadata stored—only encrypted wake-up signals

Load Tested to 100K

k6 stress-tested with 100,000 concurrent WebSocket connections, message relay under load, and burst traffic simulation

Automated CI/CD Pipeline

GitHub Actions builds, tests, signs, and deploys every commit. Desktop binaries are code-signed and notarized. Zero-touch deployment to Fly.io

Stripe Billing Integration

Secure subscription management with Stripe. Ed25519-signed entitlement tokens verified on-device. No billing data touches RAILGUN servers

Security Built-In

Your messages are truly private

RAILGUN uses the same encryption protocol trusted by billions of users worldwide. Your private keys are generated locally and never touch our servers.

  • Signal Protocol (X3DH + Double Ratchet)
  • Perfect Forward Secrecy (PFS)
  • Extended Triple Diffie-Hellman (X3DH)
  • Double Ratchet Algorithm (KDF Chain)
  • libsodium / NaCl (Curve25519, ChaCha20-Poly1305)
  • HMAC-based Key Derivation Function (HKDF)
  • Local key generation and storage (never transmitted)
  • Relay-only architecture (messages never stored on server)
  • Open source and auditable (GitHub)
  • No phone number required
  • Metadata minimization (routing only)
  • Forward Secrecy & Backward Secrecy
  • Deniable Authentication
  • P2P hybrid transport (WebRTC, 50%+ off-server)

Verify Your Download

Always verify downloads to ensure they haven't been tampered with.

1. Import our GPG key:

gpg --keyserver keys.openpgp.org --recv-keys [KEY_ID]

2. Verify the signature:

gpg --verify SHA256SUMS.txt.asc SHA256SUMS.txt

3. Check the checksum:

# macOS/Linux sha256sum -c SHA256SUMS.txt --ignore-missing
Full checksums available in SHA256SUMS.txt

Available Everywhere

Download RAILGUN for your platform or use the web version.

macOS

macOS, Windows, Linux

Download

Web App

Web App

Coming Soon

iOS & Android

iOS, Android

Coming Soon

Ready to take back your privacy?

Join thousands of users who trust RAILGUN for secure communication.

Get StartedGet Started