# Local Service Tunneling Tools > Search results for `expose a local service to the internet through a tunnel` on awesome-repositories.com. 114 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/expose-a-local-service-to-the-internet-through-a-tunnel **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/expose-a-local-service-to-the-internet-through-a-tunnel).** ## Results - [anderspitman/awesome-tunneling](https://awesome-repositories.com/repository/anderspitman-awesome-tunneling.md) (21,279 ⭐) — Awesome Tunneling is a curated directory of technologies designed to facilitate secure connectivity between distributed devices and local services. It serves as a comprehensive resource for identifying tools that enable remote access, private network creation, and the exposure of local environments to the public internet. The collection focuses on solutions that bypass network address translation and firewall restrictions through techniques such as reverse proxy tunneling, overlay network infrastructure, and peer-to-peer connectivity. It categorizes resources based on their ability to establish secure gateways, manage identity verification, and maintain persistent connections for remote systems. The directory covers a broad range of networking capabilities, including the implementation of virtual private networks, the management of secure entry points for internal applications, and the configuration of dynamic mapping for ephemeral services. It provides a structured overview of tools that support end-to-end encryption and cryptographic authentication to ensure secure data transit across disparate physical locations. - [fosrl/pangolin](https://awesome-repositories.com/repository/fosrl-pangolin.md) (21,255 ⭐) — Pangolin is a zero-trust remote access platform designed to provide secure, identity-aware connectivity to private network resources. It functions as a cloud-native network controller that orchestrates encrypted tunnels, traffic routing, and access policies across distributed environments. By leveraging WireGuard for secure data transport, the platform enables authenticated access to internal web applications, terminal sessions, and remote desktops without exposing services to the public internet. The platform distinguishes itself through a declarative infrastructure model that synchronizes network state using version-controlled manifests. It supports complex connectivity requirements through peer-to-peer NAT traversal, which facilitates direct encrypted connections between nodes, with automatic fallback to server-based relaying when necessary. Additionally, it provides browser-based access to remote resources, eliminating the need for local client software for many common administrative and service-access tasks. Beyond its core tunneling capabilities, the platform includes a comprehensive suite of tools for traffic management, security, and observability. It features granular access control policies based on user identity, geolocation, and network attributes, alongside automated certificate management and multi-factor authentication. The system also provides extensive monitoring, audit logging, and alerting capabilities to track infrastructure health and security events across multi-site deployments. Pangolin is designed for containerized and multi-site environments, offering flexible deployment options through standard packaging and automated reconciliation workflows. - [dokploy/dokploy](https://awesome-repositories.com/repository/dokploy-dokploy.md) (34,901 ⭐) — Dokploy is a self-hosted platform-as-a-service designed to simplify the deployment and management of containerized applications and databases. It provides a centralized control plane that decouples administrative management from application workloads, allowing users to oversee infrastructure across multiple server nodes through a unified web interface or a command-line tool. The platform distinguishes itself through an extensive library of pre-configured application templates, enabling the rapid deployment of databases, identity providers, and various productivity or development tools. It supports complex orchestration by allowing users to define multi-container services using standard configuration files, which can be managed through automated build pipelines, Git integration, and real-time performance monitoring. Beyond core deployment, the system includes robust infrastructure management capabilities such as automated backups to external object storage, horizontal and vertical scaling, and granular access control. It also provides secure configuration management, including environment variable synchronization, HTTPS certificate handling, and zero-downtime deployment strategies to ensure application stability and security. The platform is designed for ease of use, offering an interactive API documentation interface and instructional resources to guide users through installation and configuration. It supports a wide range of modern web frameworks and runtimes, providing a flexible environment for hosting and maintaining services on private server hardware. - [jaykali/maskphish](https://awesome-repositories.com/repository/jaykali-maskphish.md) (3,020 ⭐) — Maskphish is a comprehensive security toolkit that integrates capabilities for digital forensics, network vulnerability scanning, open-source intelligence, penetration testing, and social engineering. It functions as a multi-purpose framework for automating reconnaissance and executing security audits across diverse network environments. The project features a specialized phishing and social engineering toolkit used for cloning websites, masking URLs, and deploying deceptive pages to capture user credentials. It also includes a remote access Trojan builder for generating platform-specific executables and mobile application packages to establish remote command sessions. The framework covers a broad surface of capabilities, including web application penetration testing, OSINT reconnaissance, memory and disk forensics, and wireless network auditing. It provides tools for payload generation, credential theft, and the automation of information gathering from public data sources. This project is implemented primarily as a shell-based application. - [girliemac/a-picture-is-worth-a-1000-words](https://awesome-repositories.com/repository/girliemac-a-picture-is-worth-a-1000-words.md) (11,399 ⭐) — This project is a curated library of hand-drawn technical documentation and visual knowledge bases designed to simplify complex software engineering concepts. It replaces traditional code-centric diagrams with annotated illustrations and sketchnotes to translate abstract logic into intuitive mental models. The resource utilizes an analogy-based learning approach, mapping software operations and algorithms to concrete physical metaphors. It employs a visual-first documentation model that breaks down intricate technical workflows into sequential sketches for step-by-step comprehension. The knowledge base covers several technical domains, including generative AI and machine learning, version control operations, and web development fundamentals. It also provides visual guidance for building artificial intelligence applications and developing collaborative enterprise software. - [as-a-service/pdf](https://awesome-repositories.com/repository/as-a-service-pdf.md) (0 ⭐) — A simple web service that transforms the given document into a PDF file. - [cloudflare/workerd](https://awesome-repositories.com/repository/cloudflare-workerd.md) (8,346 ⭐) — workerd is a serverless edge runtime designed for executing lightweight, distributed functions at the network edge. It utilizes a V8-based JavaScript engine to provide fast startup and low memory overhead, while maintaining a WebAssembly-compatible execution environment that allows modules to run alongside JavaScript for high-performance computational tasks. The runtime supports isolate-based multi-tenancy to run multiple independent execution contexts within a single process. It implements an event-driven execution model that triggers code based on network requests or scheduled events and includes support for privileged socket inheritance to operate under unprivileged user accounts. The project covers a broad set of capabilities including serverless API development, AI inference deployment using GPU hardware and vector databases, and automated browser orchestration for web scraping. Additional functionality encompasses global state management via SQL databases and key-value stores, background job scheduling with message queues, and the delivery of static assets through a content delivery network. Development is supported by a command-line interface for project management, custom build pipelines, and tools for pinning runtime behavior to specific dates to ensure consistency. - [as-a-service/screenshot](https://awesome-repositories.com/repository/as-a-service-screenshot.md) (0 ⭐) — A simple web service that takes screenshot of the given URL. - [prefecthq/fastmcp](https://awesome-repositories.com/repository/prefecthq-fastmcp.md) (22,994 ⭐) — FastMCP is a Python framework designed for building servers that expose functions, resources, and prompts to AI models using the Model Context Protocol. It simplifies the development process by automatically deriving tool metadata, input schemas, and documentation directly from Python function signatures and type hints. The framework provides a unified container for managing these components, allowing developers to build modular applications that integrate seamlessly with AI assistants. The project distinguishes itself through its support for interactive, server-defined user interface components that render directly within AI chat environments. It includes a dynamic middleware pipeline for injecting cross-cutting concerns like authentication and telemetry, alongside a protocol-agnostic transport layer that supports stdio, HTTP, and server-sent events. These capabilities allow for the creation of rich, stateful interactions that extend beyond simple text-based tool execution. The framework covers a broad capability surface, including comprehensive support for authentication, authorization, and secure deployment. It provides tools for managing long-running tasks, background execution, and complex dependency injection, while offering built-in observability through logging, distributed tracing, and performance monitoring. Developers can also leverage built-in CLI scaffolding and hot-reloading to accelerate the development and testing of server-side logic. FastMCP is distributed as a Python library, with documentation and tooling focused on streamlining the registration and configuration of local server instances for external AI clients. - [as-a-service/inkscape](https://awesome-repositories.com/repository/as-a-service-inkscape.md) (0 ⭐) — A simple web service that transforms the given SVG file into the desired format. - [hiddify/hiddify-app](https://awesome-repositories.com/repository/hiddify-hiddify-app.md) (30,948 ⭐) — Hiddify is a cross-platform proxy client designed to manage secure network connections and traffic routing across desktop and mobile operating systems. It functions as a unified proxy manager, providing a centralized interface to configure and control various network proxy protocols for encrypted and private internet access. The application distinguishes itself by integrating local loopback interception, which configures the operating system network stack to route traffic through a local port for granular filtering. It also serves as a self-hosted infrastructure tool, enabling users to automate the deployment of private proxy servers on remote infrastructure through simplified command-line initialization. The system maintains consistency across environments by synchronizing remote server states through declarative configuration files and utilizing an event-driven daemon to monitor proxy health and network state changes. It employs a shared bridge layer to interact with native system APIs and firewall rules, while bundling all necessary dependencies into a singular, self-contained executable package. - [netbirdio/netbird](https://awesome-repositories.com/repository/netbirdio-netbird.md) (26,188 ⭐) — NetBird is a zero-trust networking platform that builds secure, encrypted peer-to-peer overlay networks using the WireGuard protocol. It functions as a software-defined perimeter, connecting distributed infrastructure across cloud environments and physical locations while hiding network resources from the public internet. By integrating with external identity providers, the platform enforces granular access control and identity-based segmentation for every user and device. The platform distinguishes itself through extensive automation and programmatic management capabilities. It provides a centralized control plane for orchestrating network resources, automating device enrollment, and managing peer lifecycles at scale. Administrators can define complex routing policies, manage internal DNS resolution, and expose services securely without manual firewall modifications. The system also supports advanced security postures, including post-quantum cryptography, compliance-based access enforcement, and integration with endpoint security platforms to isolate non-compliant devices. Beyond core connectivity, the project offers a comprehensive suite of tools for infrastructure management, including support for hybrid cloud bridging, Kubernetes cluster integration, and multi-tenant administrative scoping. It provides deep observability through traffic event streaming, network topology visualization, and diagnostic utilities. The software is designed for flexible deployment, offering headless agents for servers, containerized sidecars for orchestration environments, and support for mobile and desktop operating systems. - [microsoft/vscode-docs](https://awesome-repositories.com/repository/microsoft-vscode-docs.md) (6,549 ⭐) — This repository contains the comprehensive documentation for a code editor focused on AI-assisted software development and remote development workflows. It covers the implementation of AI agents and language models used for autonomous code generation, large-scale refactoring, and task iteration. The project is distinguished by its deep integration of autonomous AI agents capable of web navigation, application logic validation, and orchestrating multi-step development processes. It provides specialized frameworks for tailoring AI behavior through custom instructions, model context protocols, and granular autonomy controls to ensure secure agent execution. The documentation details a broad surface of capabilities, including remote development via SSH and containers, integrated version control management, and a rich set of tools for testing and debugging. It also covers enterprise administration for policy enforcement, private extension marketplaces, and complex network configurations for secure connectivity. The materials are primarily authored in Markdown and provide guidance on configuring the editor's environment, extensions, and AI-driven automation. - [clickhouse/clickhouse](https://awesome-repositories.com/repository/clickhouse-clickhouse.md) (48,229 ⭐) — ClickHouse is a high-performance, columnar analytical database designed for real-time query execution and large-scale data aggregation. It functions as a distributed data warehouse capable of processing petabytes of information, while also providing an embedded engine that integrates directly into applications for native query capabilities without external dependencies. The system is built to handle high-throughput ingestion and complex analytical workloads, delivering millisecond-level latency for interactive dashboards and operational monitoring. The platform distinguishes itself through advanced storage and execution techniques, including vectorized query processing and a merge tree storage engine that maintains performance during massive insertions. It features adaptive subcolumn mapping for semi-structured data and supports native vector search for machine learning and generative AI applications. To facilitate efficient data movement, the engine utilizes zero-copy shared memory buffers, minimizing overhead when interacting with external analytical tools or processing diverse file formats like Parquet, JSON, and Arrow. Beyond its core storage and processing capabilities, the project provides a comprehensive suite of tools for observability, security, and data integration. It includes built-in support for natural language querying, automated workflow orchestration for AI agents, and extensive diagnostic features for query plan inspection. The platform also offers robust cloud infrastructure management, including support for private networking, compliant deployment strategies, and integrated billing consolidation. - [as-a-service/trace](https://awesome-repositories.com/repository/as-a-service-trace.md) (0 ⭐) — A simple web service that traces the given bitmap image into an SVG file. - [davila7/claude-code-templates](https://awesome-repositories.com/repository/davila7-claude-code-templates.md) (20,933 ⭐) — Claude Code Templates is a comprehensive framework for orchestrating specialized AI agents and automating development workflows within local environments. It provides a structured system for defining, configuring, and deploying AI personas that handle specific technical tasks, ranging from backend architecture and frontend implementation to security auditing and infrastructure management. The project distinguishes itself through a configuration-driven approach that allows teams to standardize development environments and share reusable agent definitions across projects. It includes a robust CLI toolkit for managing the entire agent lifecycle, from discovery and installation to execution and performance monitoring. By utilizing standardized protocols and modular function definitions, it enables seamless integration of external services and local tools into the assistant's capabilities. Beyond core agent management, the platform offers extensive support for workflow automation, including event-driven hooks, custom slash commands, and automated testing pipelines. It incorporates security-focused features such as granular permission enforcement, sandbox execution environments, and automated secret scanning to ensure safe operation. The system also provides observability tools, including real-time dashboards for tracking agent performance, token usage, and conversation history. - [as-a-service/render](https://awesome-repositories.com/repository/as-a-service-render.md) (0 ⭐) — A simple web service that renders a Blender 3D scene with custom text. - [as-a-service/meme](https://awesome-repositories.com/repository/as-a-service-meme.md) (0 ⭐) — A simple web service that generates a meme image given text and an image URL. - [coollabsio/coolify](https://awesome-repositories.com/repository/coollabsio-coolify.md) (57,055 ⭐) — This project is a self-hosted platform-as-a-service that provides a centralized management interface for deploying, configuring, and monitoring containerized applications and databases on private infrastructure. It functions as a visual control plane, automating the end-to-end lifecycle of services from source code to production. By managing container orchestration, networking, and resource allocation, it allows users to maintain full control over their own hardware while streamlining the delivery of software. The platform distinguishes itself through its agentless architecture, which uses secure shell connections to execute administrative tasks and manage remote servers without requiring persistent local software. It integrates directly with version control systems to trigger automated build and deployment pipelines, including the creation of temporary, isolated preview environments for every pull request. This workflow is supported by a declarative engine that uses templates to standardize the deployment of complex multi-container architectures and persistent database engines. Beyond core orchestration, the system handles the operational requirements of hosted services by managing dynamic reverse-proxy routing and automated SSL certificate lifecycles. It provides a comprehensive suite of infrastructure management tools, including browser-based terminal access for debugging, automated system dependency installation, and persistent state management via a central database. These capabilities ensure that infrastructure remains synchronized and consistent across multiple remote environments. - [ddev/ddev](https://awesome-repositories.com/repository/ddev-ddev.md) (3,671 ⭐) — DDEV is a container-based local development environment and project manager designed to bootstrap consistent web development stacks. It orchestrates Docker containers to provide isolated Linux environments, integrating web servers, databases, and language runtimes. The project distinguishes itself by automating the complexities of local networking and security, featuring a local HTTPS proxy for SSL certificate automation and wildcard DNS for hostname management. It further enables collaboration by exposing local environments to the internet through tunneling for external project sharing. The platform covers a broad range of capabilities, including database environment management with state snapshotting and version migration, as well as containerized tooling integration for running package managers and language runtimes. It also includes observability tools for real-time log streaming and application code debugging, and performance optimizations such as asynchronous file caching to reduce synchronization latency. The system can be deployed locally or provisioned as a remote development workflow within cloud containers. - [deepractice/promptx](https://awesome-repositories.com/repository/deepractice-promptx.md) (3,526 ⭐) — PromptX is an LLM agent orchestration framework designed to execute multi-step workflows using autonomous agents. It features a sandboxed tool execution environment for secure filesystem operations and external API integrations, alongside a persona management system that defines professional roles and domain expertise to control agent behavior. The system implements a semantic memory network for persistent knowledge storage, utilizing graph-based memory and engrams to retain information across sessions. This cognitive memory includes specialized tools for knowledge graph visualization, allowing users to map and analyze memory networks through interactive mind maps and density statistics. To prevent knowledge contamination, the framework maintains isolated memory networks and workspaces for different professional personas. The platform covers automated document processing for PDFs, spreadsheets, and Word documents, as well as a custom tool integration framework for connecting agents to external databases and services. It also includes utilities for exposing local servers via token-authenticated remote access URLs. - [allegroai/clearml](https://awesome-repositories.com/repository/allegroai-clearml.md) (6,733 ⭐) — ClearML is a comprehensive MLOps platform designed to manage the entire machine learning lifecycle. It functions as an experiment tracking tool, a data versioning system, and a pipeline orchestrator, while providing infrastructure for GPU cluster management and model serving. The platform is distinguished by its ability to handle hybrid-cloud compute scheduling and fractional GPU allocation, allowing multiple workloads to share a single hardware accelerator. It employs a metadata-based approach to data versioning, using virtual views to track large datasets and artifacts without duplicating raw files. The system covers a broad range of capabilities including automated machine learning pipeline orchestration via task-graph dependencies, hyperparameter optimization, and distributed model training. It also provides an integrated AI workbench for remote development and a centralized control plane for tracking models from training through to production deployment. Governance and observability are integrated through multi-tenant resource isolation, role-based access control, and real-time monitoring of compute resources and model performance. - [sosdave/enumeration-as-a-service](https://awesome-repositories.com/repository/sosdave-enumeration-as-a-service.md) (0 ⭐) — Enumeration as a Service (eaas.py) in a script that queries the DNS server of a particular domain looking for indications that the domain may be utilizing SaaS offerings. This analysis is performed on TXT, CNAME, A and MX Records. Query results, as well as highlighted results of interest are… - [hotheadhacker/no-as-a-service](https://awesome-repositories.com/repository/hotheadhacker-no-as-a-service.md) (6,153 ⭐) — No-as-a-Service is a lightweight, self-hosted API that returns a random humorous rejection reason as a JSON object through a single GET endpoint. It serves pre-defined rejection reasons from a static JSON array without any database, external storage, or third-party dependencies, using only Node.js built-in modules for its zero-dependency HTTP server. The API processes each request independently with no session state, caching, or persistent connections, making it a stateless REST endpoint. Its rejection reasons are stored in a simple, human-readable JSON configuration file that can be edited without code changes, and each response is selected by generating a random integer index into the static array at request time. The project provides a random content generator API for fetching creative and funny rejection reasons, suitable for use in applications, bots, or integrations. It supports self-hosted deployment on your own infrastructure by running the provided codebase. - [clearml/clearml](https://awesome-repositories.com/repository/clearml-clearml.md) (6,740 ⭐) — ClearML is a comprehensive MLOps platform designed to manage the end-to-end machine learning lifecycle, from initial experimentation to production deployment. It provides a suite of integrated tools including a pipeline orchestrator for automating workflows, an experiment tracking tool for logging hyperparameters and metrics, and a metadata-driven data versioning system for managing large-scale datasets and model artifacts. The platform is distinguished by its advanced compute management and serving capabilities. It features a GPU compute manager that supports fractional resource slicing and priority scheduling across hybrid cloud environments. Additionally, it includes a dedicated serving framework for hosting large language models and agentic workflows through secure APIs with integrated autoscaling. The system covers a broad range of operational capabilities, including real-time infrastructure cost tracking, multi-tenant resource isolation, and automated execution environment reproduction. It also provides observability tools for monitoring inference endpoints, auditing AI workflows, and analyzing system-level hardware utilization. The orchestration engine can be deployed via containerized or cloud-image based installations to host the platform's lifecycle infrastructure. - [m1heng/clawdbot-feishu](https://awesome-repositories.com/repository/m1heng-clawdbot-feishu.md) (3,280 ⭐) — This project is a framework for integrating Large Language Models into the Feishu messaging platform to create automated assistants. It functions as a self-hosted AI assistant and a chatbot gateway that routes messages between chat platforms and remote AI cloud providers. The system features a multi-channel messaging bridge and provider-agnostic model routing, allowing for orchestration between different AI models with automatic failover management. It includes a browser automation agent capable of programmatically controlling web browsers and capturing page snapshots to extend the assistant's capabilities. The architecture incorporates security and extensibility through agent session sandboxing, inbound message filtering via pairing codes or allowlists, and a dynamic skill plugin system for installing custom functional logic. It also supports private hosting on local hardware with secure tunnel-based gateway exposure for HTTPS access. - [calcom/cal.com](https://awesome-repositories.com/repository/calcom-cal-com.md) (45,760 ⭐) — Cal.com is a comprehensive scheduling infrastructure platform designed to manage availability, booking workflows, and calendar synchronization across multiple users and external services. It provides a backend service for automated appointment scheduling, enabling the creation, confirmation, and management of booking lifecycles through a centralized state machine. The platform also offers embeddable user interface components that allow developers to integrate interactive booking experiences directly into third-party websites. What distinguishes the platform is its extensible app ecosystem and intelligent automation capabilities. Developers can build custom integrations using a modular plugin architecture, while an AI-driven interface allows for complex scheduling operations and configuration updates via natural language commands. The system includes a sophisticated event routing engine that automatically assigns meetings to hosts based on availability, round-robin rules, and organizational hierarchy, supported by real-time webhook orchestration to keep external systems synchronized. The platform covers a broad capability surface including CRM data synchronization, granular role-based access control, and secure OAuth-based integration management. It supports advanced booking configurations, such as prefilling form data and monitoring state changes, alongside specialized tools for Salesforce connectivity, including assignment traceability and fuzzy account matching. Users can also leverage local or remote server hosting options to maintain control over their infrastructure and security configurations. - [mrbjarksen/a-puzzle-a-day](https://awesome-repositories.com/repository/mrbjarksen-a-puzzle-a-day.md) (0 ⭐) — DragonFjord's A-Puzzle-A-Day tasks you with placing eight pieces within a calendar frame to reveal the current date. There are roughly 60 thousand ways the pieces can fit in the frame, and of those arrangements over 24 thousand are valid solutions. That is an average of 67 solutions per date,… - [ehang-io/nps](https://awesome-repositories.com/repository/ehang-io-nps.md) (34,090 ⭐) — nps is an intranet penetration proxy server that exposes internal network services to the public internet via secure TCP and UDP tunnels. It functions as a traffic forwarder and reverse proxy, enabling external access to local services, remote desktops, and internal APIs. The project is distinguished by a centralized web-based administration interface used to configure tunnels, manage user accounts, and monitor real-time bandwidth metrics. It supports domain-based request routing and provides a mechanism to secure public services using HTTPS encryption through digital certificates. The system covers a broad range of networking capabilities, including SOCKS5 and HTTP proxying, internal DNS resolution, and layer-4 traffic forwarding. It also incorporates traffic management tools for bandwidth limiting, data compression, and multiplexed stream tunneling to optimize network performance. The tool includes a remote client lifecycle management system for registration, startup command generation, and deployment as system services. - [cockroachdb/cockroach](https://awesome-repositories.com/repository/cockroachdb-cockroach.md) (32,207 ⭐) — Cockroach is a distributed SQL database designed to scale horizontally across multiple nodes while maintaining strict ACID compliance and global data consistency. It functions as a relational database engine that automatically partitions data into ranges, rebalancing them across a cluster to accommodate growing storage and throughput requirements. By utilizing a distributed consensus protocol, the system ensures that all nodes agree on the order of operations, providing fault tolerance and continuous availability even in the event of hardware failures. The system distinguishes itself through a layered architecture that separates the relational SQL abstraction from a distributed key-value store. It achieves global consistency without requiring perfectly synchronized hardware clocks by employing a hybrid logical clock synchronization mechanism. To support high-concurrency environments, it utilizes multi-version concurrency control and lock-free transaction execution, which allow for consistent snapshots and efficient conflict resolution. Furthermore, the engine is built for compatibility, implementing the standard wire protocol to support existing relational database drivers and tools. Beyond its core transactional capabilities, the platform includes comprehensive tooling for cluster orchestration, security, and performance diagnostics. It supports a variety of deployment models, ranging from self-hosted on-premises configurations to fully managed cloud services. The system provides a command-line interface for session management and query execution, ensuring that administrators can monitor cluster health and manage workloads through standard relational interfaces. - [ekzhang/bore](https://awesome-repositories.com/repository/ekzhang-bore.md) (11,242 ⭐) — Bore is a TCP tunneling tool and localhost exposure utility used to route local TCP ports to public IP addresses. It functions as a TCP port forwarder that makes services running on a local machine accessible over the internet via a remote listener. The project includes a secure tunnel server implementation that manages incoming connections and routes traffic to connected local clients. It utilizes shared secret handshakes to authorize tunnel creation and restrict access to authorized users. The system provides capabilities for firewall bypass networking and remote tunnel hosting. It manages bidirectional socket proxying and TCP-based stream forwarding to enable public accessibility of private services. - [ljvmiranda921/sprites-as-a-service](https://awesome-repositories.com/repository/ljvmiranda921-sprites-as-a-service.md) (400 ⭐) — Generate your personal 8-bit avatars using Cellular Automata, a mathematical model that simulates life, survival, and extinction - [exposedev/expose](https://awesome-repositories.com/repository/exposedev-expose.md) (4,521 ⭐) — Expose is a secure tunneling tool that creates public URLs for local development servers, making them accessible from the internet without complex network configuration. It forwards incoming HTTP requests and responses between a public relay server and a local machine, enabling external services to reach a development environment that would otherwise be isolated behind a firewall or VPN. The project distinguishes itself through a comprehensive set of webhook debugging and inspection capabilities. It captures all incoming webhook requests and displays them in a real-time dashboard or command-line interface, allowing developers to inspect payloads, replay requests against a local server, and test integrations with external services without deploying to a public environment. Expose also supports permanent subdomains that remain constant across sessions, custom domain mapping with automated SSL certificate management, and token-based client authentication for secure tunnel connections. Beyond its core tunneling functionality, Expose provides a plugin system for processing and categorizing incoming requests, YAML-based configuration management for consistent tunnel parameters across environments, and the ability to self-host tunneling infrastructure on private hardware. It includes collaboration features such as generating public URLs for team feedback, sharing live previews of local sites, and reusing site configurations across team members. The tool also offers QR code generation for mobile device access, regional server selection for lower latency, and basic authentication to protect shared sites with login credentials. - [homebrew/homebrew-core](https://awesome-repositories.com/repository/homebrew-homebrew-core.md) (15,383 ⭐) — This project is a Ruby-based package definition repository that functions as a cross-platform package manager and software dependency resolver for macOS and Linux. It provides a centralized system for installing, updating, and managing software through a Git-based distribution model. The system distinguishes itself through a binary package distribution network that produces pre-compiled bottles to avoid local compilation from source. It utilizes a Ruby-based domain specific language to define installation recipes and employs a distributed version control architecture to synchronize these definitions across a global network of users. The project covers a broad surface of capabilities including declarative dependency resolution, checksum-based integrity verification, and sandbox-isolated build processes. It also includes tools for background service management, automated package maintenance, and the integration of third-party repositories. The repository contains the collection of installation recipes and dependency specifications used to automate software provisioning. - [gaetanlhf/expose](https://awesome-repositories.com/repository/gaetanlhf-expose.md) (280 ⭐) — Your no-config, no-install, globally distributed open-source tool to expose your local services - [inconshreveable/ngrok](https://awesome-repositories.com/repository/inconshreveable-ngrok.md) (24,446 ⭐) — ngrok is a secure TCP tunneling proxy and API ingress controller that exposes local services to the public internet. It establishes a persistent connection between a local agent and a cloud-based gateway to route traffic to local ports without requiring firewall or router configuration changes. The project provides a global gateway for routing API traffic, which includes built-in support for rate limiting and authentication policy enforcement. It also functions as an IoT device gateway, enabling remote command execution and access control for embedded hardware via a cloud-to-device bridge. Additional capabilities cover network connectivity and observability, including site-to-site VPNs for linking private networks and a traffic inspector for capturing and replaying HTTP requests. It further includes utilities for intercepting and replaying webhooks to verify integration logic locally. - [homebrew/brew](https://awesome-repositories.com/repository/homebrew-brew.md) (48,527 ⭐) — Homebrew is a command-line package management tool designed to automate the installation, configuration, and maintenance of software on local development environments. It functions as a cross-platform software distributor, enabling users to install tools from pre-compiled binary archives or source code without requiring administrative privileges. By managing complex dependency trees and versioning, it ensures that software remains consistent and compatible across different system architectures. The project distinguishes itself through a declarative approach to system configuration, allowing users to define and synchronize their desired software state using a domain-specific language. It leverages version-controlled repositories for package definitions, which facilitates decentralized community contributions and modular management. To maintain system integrity, it executes installations within sandboxed environments and utilizes shim-based wrappers to dynamically manage environment paths, preventing system-wide pollution while providing on-demand installation suggestions. Beyond core package management, the framework provides extensive utilities for development environment orchestration. It supports isolated runtimes for various programming languages, manages environment variables, and offers tools for auditing build integrity and automating package updates. The system also includes features for exporting and importing configuration states, enabling reproducible environments across different machines. - [snail007/goproxy](https://awesome-repositories.com/repository/snail007-goproxy.md) (16,874 ⭐) — This project is a multi-protocol proxy server and network tunneling tool designed to manage traffic across heterogeneous infrastructure. It functions as a traffic management gateway, providing the core infrastructure to route, filter, and secure network connections through a unified interface. The software distinguishes itself through its support for cascading proxy chaining and dynamic upstream load balancing, which allow for the creation of complex, multi-hop network paths. It provides granular control over traffic flow by normalizing diverse protocols, enabling transparent port forwarding, and facilitating intranet penetration through multiplexed, secure tunnels. The platform includes a broad suite of capabilities for infrastructure management, including independent DNS resolution, traffic compression, and layered encryption transport. It enforces security and compliance through access control lists, proxy authentication, and bandwidth throttling. Operational settings are managed via command-line arguments, which also support background process lifecycle management to ensure continuous service availability. - [skx/tunneller](https://awesome-repositories.com/repository/skx-tunneller.md) (488 ⭐) — Allow internal services, running on localhost, to be accessed over the internet.. - [homebrew/legacy-homebrew](https://awesome-repositories.com/repository/homebrew-legacy-homebrew.md) (26,849 ⭐) — This project is a command line package manager and dependency management engine used for installing, updating, and removing software packages across different operating systems. It functions as a package recipe system and software repository administrator, utilizing declarative scripts to define software sources, build arguments, and installation steps. The system operates as a binary distribution platform that compiles source code into pre-compiled binaries and distributes them through remote repositories. It includes an automated version tracker that monitors upstream software releases and automates version updates via pull requests to keep the software library current. The project provides broad capabilities for build environment configuration, ensuring reproducible builds through standardized compilation flags and isolated environments. It manages language-specific runtimes for Python, Node, and Java, including the creation of isolated virtual environments to prevent dependency conflicts. Additionally, it includes security primitives for checksum verification, build provenance validation, and repository trust management. The interface is extended via command-line tools that support unattended installation, system health diagnostics, and the management of background services. - [awesome-selfhosted/awesome-selfhosted](https://awesome-repositories.com/repository/awesome-selfhosted-awesome-selfhosted.md) (299,516 ⭐) — This project is a community-curated directory of open-source software designed for deployment in private server environments and home labs. It serves as a comprehensive resource for discovering independent, self-hosted alternatives to mainstream cloud services, enabling users to maintain full data ownership and control over their digital infrastructure. The directory is structured through a hierarchical taxonomy that organizes a vast collection of applications into logical categories, ranging from media management and data analytics to private communication and team productivity tools. It distinguishes itself through a collaborative peer-review process, where community members validate the quality and relevance of each submission to ensure the directory remains accurate and reliable. The project covers a broad capability surface, including infrastructure automation, container-based service deployment, and declarative configuration management. These tools assist users in maintaining reproducible server environments and managing complex service dependencies across private hardware. The directory is maintained as a version-controlled repository, ensuring that all updates and community-driven changes are tracked and transparent. - [yujiangshui/a-programmers-guide-to-english](https://awesome-repositories.com/repository/yujiangshui-a-programmers-guide-to-english.md) (16,428 ⭐) — This project is a systematic framework for English language acquisition that applies structured workflows and cognitive strategies to build linguistic proficiency. It focuses on the construction of a linguistic knowledge base, enabling learners to master vocabulary and grammar through methodical training. The methodology is distinguished by its use of computer science concepts, such as mental-model-based learning and memory buffers, to organize progression. It emphasizes a cognitive-translation bypass to develop target language thinking, reducing mental latency by processing information directly in English rather than through native language translation. The framework covers a broad range of capabilities, including auditory processing and phonetic analysis for listening, and articulation drills and voice recognition validation for speaking. It also encompasses visual input analysis for reading, intent-to-writing mapping for composition, and the use of spaced-repetition systems and monolingual study for vocabulary expansion. The system incorporates quantitative assessment and metrics to establish learning baselines and measure vocabulary size through objective benchmarks. - [elie222/inbox-zero](https://awesome-repositories.com/repository/elie222-inbox-zero.md) (10,101 ⭐) — Inbox Zero is an AI-powered email automation platform and inbox organizer. It uses large language models to automatically categorize, label, and archive emails, while providing a conversational interface for managing workflows and drafting responses through natural language. The project distinguishes itself by integrating real-time calendar availability into its drafting process and generating AI-summarized meeting briefings. It supports a pluggable AI provider interface with model fallback chains, allowing it to connect to various cloud or local LLM providers. Users can also control their inbox via external messaging channels like Slack and Telegram. The system includes broad capabilities for productivity analytics, such as tracking response times and communication trends. It handles enterprise identity through SAML SSO and OAuth for Google and Microsoft services, and utilizes an asynchronous worker queue for bulk inbox cleanup and high-volume processing. The software supports self-hosting via Docker Compose, Kubernetes, and AWS, and includes a command-line interface for rule management and API execution. - [tailscale/tailscale](https://awesome-repositories.com/repository/tailscale-tailscale.md) (32,596 ⭐) — Tailscale is a zero-trust networking overlay that connects distributed devices and services into a private, encrypted mesh network. By utilizing a high-performance, user-space implementation of the WireGuard protocol, it establishes secure peer-to-peer tunnels across diverse network topologies without requiring complex firewall configuration. The platform operates on a centralized control plane that manages global network state, authentication, and policy distribution, ensuring that connectivity is governed by identity rather than traditional IP-based rules. What distinguishes Tailscale is its deep integration with existing identity providers, which allows organizations to bind network access to verified user accounts and device posture. It enforces granular security through declarative access control lists and microsegmentation, enabling administrators to define precise permissions for users and services. Beyond standard connectivity, the platform includes a secure AI gateway that proxies and audits language model requests, providing centralized control over API usage, spending limits, and security guardrails. The project offers a comprehensive suite of administrative and developer tools, including infrastructure-as-code support, automated node registration, and identity-based SSH access that eliminates the need for manual key management. It also provides flexible traffic management capabilities, such as exit nodes for egress control, subnet routers for bridging isolated network segments, and public-facing service exposure through encrypted tunnels. The software is distributed as an open-source command-line daemon, supporting a wide range of operating systems and containerized environments to facilitate automated infrastructure deployment. - [beyondcode/expose](https://awesome-repositories.com/repository/beyondcode-expose.md) (4,569 ⭐) — A beautiful, fully open-source, tunneling service - written in pure PHP - [appwrite/appwrite](https://awesome-repositories.com/repository/appwrite-appwrite.md) (56,318 ⭐) — Appwrite is a backend-as-a-service platform that provides a unified development environment for building full-stack applications. It integrates essential infrastructure components—including authentication, databases, storage, and serverless functions—into a single, centralized interface to simplify application development and resource management. The platform distinguishes itself through a container-based microservices architecture that ensures consistent execution across diverse infrastructure. It features a versatile connectivity layer that links frontend applications with third-party services, databases, and external APIs through standardized interfaces. Developers can manage and automate the configuration of these backend resources using infrastructure-as-code tools, while granular role-based access control enforces security policies across all platform resources and API endpoints. Beyond its core services, the platform offers a broad capability surface that includes cross-platform data synchronization, event-driven webhooks, and comprehensive billing and usage monitoring. It supports extensive integrations for AI utilities, payment processing, messaging, and logging, allowing developers to extend application functionality through modular, event-driven workflows. The platform is designed for both managed and self-hosted deployments, providing tools for production environment optimization, data migration, and custom domain configuration. - [mack-a/v2ray-agent](https://awesome-repositories.com/repository/mack-a-v2ray-agent.md) (19,081 ⭐) — V2Ray-agent is a shell-based orchestration tool designed to automate the deployment, configuration, and lifecycle management of network proxy services. It provides a structured framework for setting up encrypted tunnels and managing proxy processes as persistent background services through system initialization managers. The project distinguishes itself through a modular architecture that integrates automated security certificate management and multi-user access control into the deployment workflow. By utilizing template-driven configuration generation and reverse proxy traffic multiplexing, it enables the routing of network requests across domains while maintaining secure, encrypted communication channels. The utility covers a broad range of infrastructure management tasks, including the provisioning of individual user accounts, resource monitoring, and the optimization of traffic routing through content delivery integration. It functions as a comprehensive command-line interface for maintaining proxy server environments and ensuring the continuous renewal of security certificates. - [bytebytegohq/system-design-101](https://awesome-repositories.com/repository/bytebytegohq-system-design-101.md) (83,491 ⭐) — This project is a centralized engineering knowledge repository that provides a structured curriculum for mastering system design, architectural patterns, and fundamental software development workflows. It serves as a professional development resource for engineers, offering foundational knowledge and real-world case studies to support the design of scalable, secure, and efficient distributed systems. The repository distinguishes itself through a visual-first approach to knowledge synthesis, distilling complex technical concepts into high-density graphical diagrams and succinct illustrations. By employing cross-domain concept mapping and modular topic decomposition, it connects disparate engineering disciplines—such as infrastructure, security, and application layers—into granular, self-contained modules that facilitate rapid mental modeling and targeted learning. The content covers a broad spectrum of technical domains, including API and web development, database scaling strategies, networking protocols, and DevOps deployment pipelines. These educational assets are organized as a static, version-controlled repository, allowing users to consume technical insights asynchronously at their own pace. - [requestly/requestly](https://awesome-repositories.com/repository/requestly-requestly.md) (6,341 ⭐) - [a-h/templ](https://awesome-repositories.com/repository/a-h-templ.md) (10,358 ⭐) — Templ is a type-safe HTML templating engine and UI framework for Go. It provides a system for building reusable HTML components that compile into Go code for server-side rendering, ensuring type safety and compile-time validation of data and logic. The project features a dedicated language server that provides autocomplete and syntax validation for template files within supported code editors. It employs compile-time code generation to transform a custom template language into Go source code, enabling the creation of modular HTML fragments and logic blocks. The framework includes automated security mechanisms to prevent cross-site scripting through HTML escaping, CSS class and value sanitization, and resource URL validation. It supports various output targets, including streaming content to response writers for web interfaces or producing standalone files for static site generation. A command line interface is provided to handle the generation of Go source code and the formatting of markup and template files.