Every download should come with a receipt
Most APK sites ask you to trust them. That is a strange thing to ask, because you have no way to check. You cannot see where the file came from, whether anyone modified it, or what got added on the way to your phone.
Apkoras is built on the opposite idea: you should not have to trust us at all.
What that means in practice
Every application on this site publishes:
- Its package name — the one unambiguous identifier an Android app has.
- A SHA-256 checksum — run it against your download. If it matches, the file is bit-for-bit what we listed. If it does not, something is wrong and you should not install it.
- Its licence — the written permission that lets us host it at all.
- Its source code — you do not have to take our word for what is inside. Go and read it.
- The official release page we obtained the file from.
What we will not do
No MOD APKs. No cracks. No repacks. Not ever.
This is not squeamishness — it is the entire point. The moment a file has been modified by an anonymous third party, nobody can tell you what is in it, and every promise on this page becomes worthless. A “MOD” is a stranger’s binary running with your permissions.
We only list applications whose licence explicitly permits redistribution — GPL, Apache, MIT and similar. There are hundreds of genuinely excellent apps in that category, and we would rather do that small thing honestly than a large thing we would have to hide.
If you are a developer
If your app is listed and you would prefer it were not, email us and it comes down. No argument. If you would like it listed, or want to correct something, we would be glad to hear from you.
