Product
What Baselyt does, what it does not do, and what kinds of things it is designed to catch.
Core features
Baseline learning
Baselyt observes each app over time: which servers it connects to, what permissions it uses, how active it is in the background. All metadata, never content.
Drift detection
When an app starts doing something it did not do before, Baselyt notices. App updates get a grace period so you do not get spammed with false alarms.
Explainable alerts
Every alert tells you exactly what changed and why it matters. You see the before and after, not a vague "threat detected" message.
Per-app controls
Set different rules for different apps. You might trust your banking app but want to keep a closer eye on a free game.
VPN containment
A local VPN on your phone can block any app's internet access. No remote servers, no data leaving your device.
Privacy Center (planned)
See exactly what Baselyt has stored, delete anything, or export it all. Your data, your control.
What Baselyt is and is not
Baselyt is
- Metadata-only behavior monitoring
- On-device baseline learning
- Local drift detection and scoring
- VPN-based network containment (local only)
- Explainable security alerts
- Privacy-first by architecture
Baselyt is not
- Content inspection or TLS interception
- Remote VPN or cloud processing
- Antivirus signature matching
- App store replacement
- Root or system-level access required
- Guaranteed detection of all threats
What Baselyt is designed to catch
Risky permission combinations
Apps that suddenly request camera, location, and microphone together when they previously used none.
Unusual background networking
Apps that go from minimal background activity to constant network chatter after an update.
Suspicious persistence patterns
Apps that start using wake locks, foreground services, or boot receivers when they did not before.
Sideloaded app tracking
See which apps came from the Play Store versus unknown sources and how they behave over time.