TOOR.sh is a cloud and VM hosting service operated by the ToorCon non-profit organization. We provide free cloud resources to security researchers and non-profit organizations working on projects that benefit the public good.
If you have a project that could benefit from our cloud resources, contact us with your project details. We're here to help bring your vision to life.
To request cloud resources for your project, email us at hello[at]toor.sh with the following information:
We prioritize projects that align with our mission of supporting security research and non-profit initiatives. Applications are reviewed on a rolling basis.
DNS.Coffee - Public DNS zone file database for security research and analysis
NaumachiaCTF - Open source network-based CTF platform for practicing network exploits
ToorCamp - Biennial hacker camp and conference in the Pacific Northwest
ToorCon - San Diego-based information security conference
BSidesSF - San Francisco security conference focused on community-driven content
ConWiFi.org - Secure WiFi infrastructure for conferences and events
The National Upcycled Computing Collective - Non-profit providing technology education for students and veterans
Tools - Public utilities including IP lookup, speed test, and privacy services
Our infrastructure is built from the ground up with dedicated servers for virtual machines, storage, databases, and networking.
We operate our own ISP (AS22296) providing direct network connectivity and peering capabilities for all hosted projects.
Generous donations have made this project possible. If you have an interest in contributing, particularly with hardware, network peering/transit, or funds, we would be delighted to hear from you.
ToorCon/TOOR.sh is a 501c3 nonprofit organization.
Is this really free? - Yep.
How do I apply for resources? - Email hello[at]toor.sh with your project details. See the "How to Apply" section above for what to include.
What types of projects do you support? - We prioritize security research, educational initiatives, privacy tools, and non-profit projects that benefit the public good.
How long does the approval process take? - Applications are reviewed on a rolling basis. We typically respond within a few weeks.
Is there a SLA? - We operate on a "best effort" basis. We are unpaid volunteers working on this in our free time.
Can I use TOOR.sh for bug bounty research? - Our service is only free for public benefit projects. We do not provide resources for individual bug bounty work.
What is your Acceptable Use Policy? - Resources must be used for the approved project only. Spam, abuse, or illegal activity will result in immediate termination of service.
What does "toor" mean? - It's root backwards.
Are you related to the Tor Project? - No, but we like what they do too. Tor Project
For project applications, partnership inquiries, or general questions, reach out to us at:
hello[at]toor.sh
When applying for resources, please include the information outlined in the "How to Apply" section above.