Share VPN service webpage link: https://www.expressvpn.com/
Is it open source or not?
Only their leak test and browser extension are open source under GPLv2: https://github.com/ExpressVPN
Does it have a linux client? is it opensource ?
User friendly Linux CLI: https://www.expressvpn.com/support/vpn-setup/app-for-linux/
No mention if it’s open source, need confirmation from someone with an account who can download it.
Officially supports 32/64bit Debian, Ubuntu, Fedora and CentOS
Does it provide a browser extension? for which browsers ?
Under GPLv2: https://github.com/expressvpn/expressvpn_browser_extension
Does it provide a SOCKS5/SSH/HTTP/SSL proxy server ?
None of the above but they’ll tunnel through the client.
How many devices can you use per account ?
Available openvpn/openconnect/wireguard profiles ?
OpenVPN (TCP/UDP), SSTP, L2TP/IPSec, and PPTP
Does the provider Log traffic and info or not ?
Does the provider have proven security track record ?
Dec 2017, Turkish investigators seized an ExpressVPN server and were unable to find any logs: https://www.expressvpn.com/blog/expressvpn-statement-andrey-karlov-investigation/
Jan 2016, after being criticized by a former Google information security engineer over weak encryption ExpressVPN upgraded users from 1024-bit RSA key to 4096-bit RSA a month later: http://blog.zorinaq.com/my-experience-with-the-great-firewall-of-china/
Ongoing ownership and location anonymity:
According to their website in 2009 they originally claimed, “our network is located in Hong Kong”, currently they declare their corporate location as the British Virgin Islands.
Late 2019, HP partnered with ExpressVPN to have it pre-installed on HP Spectre x360 13 laptops with a 30-day free trial. ExpressVPN expects similar partnerships with more companies.
Did the provider ever undergo an external security audit? Is this a recurring process?
Jan 2019, invited Cure52 to test their browser extension: https://cure53.de/pentest-report_expressvpn.pdf
May 2019, PwC (Pricewaterhouse Coopers) hired to verify their VPN server’s codebase
No mention of commitments to reoccuring audits.
Link an external review if found any:
Top Spark: https://www.youtube.com/watch?v=N1MkWLyBSTI
Top Spark: https://www.youtube.com/watch?v=cJJMolC4RAM
Price per month/year:
$59.94/6 mo ($9.99/mo)
Accepting: Credit Card / Paypal / Bitcoin / Paymentwall
PROs & CONs found by reviewer:
Good speeds, good customer support, high price, anonymous location and leadership.
Live chat, Email form, wiki
Is there a bug bounty program?
Does it throttle or block specific ports or types of traffic like torrenting or TOR?
Does it provide a DNS service?
Yes but i’m not sure if it requires their Windows software to use it or if it’s applied on their servers. There’s also no mention of an IP you can use seperate from their VPN.