The latest articles on DEV Community by davvik (@davvikq). https://dev.to/davvikq https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3911901%2F0200a30c-fce8-4b87-8450-941977504d4f.png https://dev.to/davvikq en davvik Mon, 04 May 2026 10:57:29 +0000 https://dev.to/davvikq/why-i-built-an-offline-metadata-shredder-that-doesnt-just-delete-it-lies-4emg https://dev.to/davvikq/why-i-built-an-offline-metadata-shredder-that-doesnt-just-delete-it-lies-4emg <p>Hi everyone!</p> <p>I wanted to share a small project I’ve been working on lately. The premise is simple: every time we share a photo or a document, we inadvertently leak a massive amount of personal data — from home GPS coordinates to camera serial numbers and even the edit history of a PDF.</p> <p>Using "online privacy services" to clean your files always felt like a paradox to me (sending private data to a server to make it private?). So, I built my own tool that runs strictly locally. I call it <strong>DMS (Deceptive Metadata Shredder).</strong></p> <p><strong>What it does</strong><br> Beyond the standard "wipe everything" approach, I added a Spoofing Mode. Sometimes, having zero metadata looks suspicious or breaks the functionality of certain apps. Instead of just deleting, DMS replaces sensitive info with plausible "noise":</p> <p>GPS: Injects random coordinates, but keeps them within the same country (so your photo doesn't suddenly appear to be taken in the middle of the ocean or Antarctica).</p> <p>Hardware: You can pretend the photo was taken with a different camera or phone model.</p> <p>Timestamps: Shifts the creation date/time if you don't want to reveal the exact moment a file was generated.</p> <p><strong>Under the hood</strong><br> The project is built using Python 3.11 and leverages the power of ExifTool.<br> I implemented two ways to interact with it:</p> <p>GUI (PySide6): Features a side-by-side "Before/After" comparison, drag-and-drop support, and a clean interface for desktop users.</p> <p>CLI: For terminal enthusiasts or anyone looking to automate the process via scripts.</p> <p>One of my favorite features is the <strong>"Watch Folder"</strong>. You point the app to a specific directory, and any file you drop in there is automatically detected, cleaned (or spoofed), and moved to a "clean" folder. It’s a huge time-saver for batch processing.</p> <p><strong>The Battle with Antiviruses</strong><br> The development process had its hurdles, specifically with Windows. Projects compiled with PyInstaller often trigger false positives in antivirus software. I had to spend some time "wizarding" with the packaging process to make VirusTotal turn green. Currently, it’s clean (save for a couple of false detections from obscure engines), so it’s safe to run on Windows without constant alerts.</p> <p><strong>Open Source</strong><br> The project is completely open-source under the MIT License. If you're interested in privacy tools, Python, or just want to audit the code, feel free to check it out.</p> <p><em>Source Code:</em> github.com/davvikq/deceptive-metadata-shredder</p> <p>I’d love to get some feedback! If you have ideas on which file formats I should add next (currently supports common images, PDFs, and Office docs), let me know in the comments.</p> opensource python privacy security