30 open-source projects similar to sshuttle/sshuttle, ranked by how many features they have in common. Compare stars, activity and what each one does to find the best Sshuttle alternative.
Nebula is a scalable, decentralized overlay networking tool designed to create secure, encrypted peer-to-peer connections between distributed hosts. By utilizing a certificate-based identity authority, it enables the construction of private communication fabrics across disparate physical infrastructures, such as multiple cloud providers or on-premises data centers, without requiring central authentication servers. The project distinguishes itself through a zero-trust architecture that enforces granular, policy-driven firewall filtering based on certificate-derived group memberships. It facili
Expose localhost servers to the Internet
Localtunnel is an HTTP tunneling service that exposes local development servers to the public internet. By creating secure tunnels with temporary public URLs, it allows developers to route incoming internet traffic directly to a web server running on a local machine. The service provides predictable or custom subdomains to facilitate remote collaboration and testing of local applications. It functions as a localhost proxy server, enabling users to receive and inspect external webhook payloads directly within a local environment during the development lifecycle. The platform manages traffic t
ngrok is a secure TCP tunneling proxy and API ingress controller that exposes local services to the public internet. It establishes a persistent connection between a local agent and a cloud-based gateway to route traffic to local ports without requiring firewall or router configuration changes. The project provides a global gateway for routing API traffic, which includes built-in support for rate limiting and authentication policy enforcement. It also functions as an IoT device gateway, enabling remote command execution and access control for embedded hardware via a cloud-to-device bridge. A
Expose local http, tcp or websocket connections to the public internet
Minimal, self-hosted, 0-config alternative to ngrok. Caddy+OpenSSH+50 lines of Python.
tunnelto is a network tunneling tool that creates a public URL to forward traffic to a locally running web server, making it accessible from anywhere. It provides a way to expose local development servers to the internet through temporary or persistent public endpoints. The project supports authenticating tunnel connections with an API key to prevent unauthorized access, and allows reserving custom subdomains so the public URL remains stable across sessions. It also enables debugging webhook integrations by forwarding incoming requests to a local server for inspection during development, and
Sish is a reverse SSH proxy and tunneling server designed to expose local services to the internet. It functions as an SSH tunneling proxy that routes HTTP, WebSocket, and TCP traffic from a remote server to a local machine, enabling the creation of public URLs for local applications. The project distinguishes itself through a combination of an SNI proxy for routing encrypted TLS traffic without decryption and a TCP load balancer that distributes incoming requests across multiple backend targets. It also includes a dedicated service console for real-time inspection and debugging of forwarded
Expose local ports to the internet in seconds
Fast WebSocket(s)/HTTP(s)/TCP relay proxy for making tunnels to localhost.
Create ephemeral Tor hidden services from the command line
join public router. quickly.
Check if hostnames are reachable or not
Simple tunneling reverse proxy with a fast web UI and auto HTTPS. Designed for self-hosters.
Expose is a PHP-based tunneling service and local environment proxy that exposes local servers to the internet via public URLs. It provides a secure way to share development previews and test APIs without deploying to a remote server. The project is distinguished by its support for self-hosted tunneling infrastructure, allowing users to deploy a private server for full control over data and network configuration. It includes a dedicated HTTP webhook debugger for capturing, inspecting, and replaying incoming requests to verify system behavior in a local environment. The toolset covers network
Bulk domain availability checking via RDAP, DNS, and WHOIS, with prefix/suffix permutations, regex patterns, MCP, and multiple output formats
Python low-interaction honeyclient
.. SPDX-FileCopyrightText: 2014 Upi Tamminen .. SPDX-FileCopyrightText: 2014-2025 Michel Oosterhof .. .. SPDX-License-Identifier: BSD-3-Clause
TCP, HTTP, SSE and WS tunneling in .NET with SignalR
Punchmole is a simple tool to give your locally running HTTP servers a public URL and is an easy to self-host alternative to ngrok and/or tunnelmole.
This project is a comprehensive toolkit for Linux security auditing and system enumeration. It functions as a framework for identifying configuration weaknesses, gathering system information, and detecting vulnerabilities to assist in gaining higher administrative access levels on Linux systems. The toolkit includes specialized capabilities for version-based vulnerability scanning, which matches installed software against known affected releases, and time-window process monitoring to track recurring system patterns and periodic tasks. It also provides infrastructure for hosting and delivering
Connect two or more Docker servers together sharing container ports between them via a WireGuard tunnel
✨ Expose any local TCP/IP service on the internet.