# Self-Hosted Cloudflare Tunnel Alternatives > Search results for `self-hosted alternative to Cloudflare Tunnel for exposing services` on awesome-repositories.com. 115 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/self-hosted-alternative-to-cloudflare-tunnel-for-exposing-services **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/self-hosted-alternative-to-cloudflare-tunnel-for-exposing-services).** ## Results - [anderspitman/awesome-tunneling](https://awesome-repositories.com/repository/anderspitman-awesome-tunneling.md) (21,279 ⭐) — Awesome Tunneling is a curated directory of technologies designed to facilitate secure connectivity between distributed devices and local services. It serves as a comprehensive resource for identifying tools that enable remote access, private network creation, and the exposure of local environments to the public internet. The collection focuses on solutions that bypass network address translation and firewall restrictions through techniques such as reverse proxy tunneling, overlay network infrastructure, and peer-to-peer connectivity. It categorizes resources based on their ability to establish secure gateways, manage identity verification, and maintain persistent connections for remote systems. The directory covers a broad range of networking capabilities, including the implementation of virtual private networks, the management of secure entry points for internal applications, and the configuration of dynamic mapping for ephemeral services. It provides a structured overview of tools that support end-to-end encryption and cryptographic authentication to ensure secure data transit across disparate physical locations. - [dokploy/dokploy](https://awesome-repositories.com/repository/dokploy-dokploy.md) (34,901 ⭐) — Dokploy is a self-hosted platform-as-a-service designed to simplify the deployment and management of containerized applications and databases. It provides a centralized control plane that decouples administrative management from application workloads, allowing users to oversee infrastructure across multiple server nodes through a unified web interface or a command-line tool. The platform distinguishes itself through an extensive library of pre-configured application templates, enabling the rapid deployment of databases, identity providers, and various productivity or development tools. It supports complex orchestration by allowing users to define multi-container services using standard configuration files, which can be managed through automated build pipelines, Git integration, and real-time performance monitoring. Beyond core deployment, the system includes robust infrastructure management capabilities such as automated backups to external object storage, horizontal and vertical scaling, and granular access control. It also provides secure configuration management, including environment variable synchronization, HTTPS certificate handling, and zero-downtime deployment strategies to ensure application stability and security. The platform is designed for ease of use, offering an interactive API documentation interface and instructional resources to guide users through installation and configuration. It supports a wide range of modern web frameworks and runtimes, providing a flexible environment for hosting and maintaining services on private server hardware. - [fosrl/pangolin](https://awesome-repositories.com/repository/fosrl-pangolin.md) (21,255 ⭐) — Pangolin is a zero-trust remote access platform designed to provide secure, identity-aware connectivity to private network resources. It functions as a cloud-native network controller that orchestrates encrypted tunnels, traffic routing, and access policies across distributed environments. By leveraging WireGuard for secure data transport, the platform enables authenticated access to internal web applications, terminal sessions, and remote desktops without exposing services to the public internet. The platform distinguishes itself through a declarative infrastructure model that synchronizes network state using version-controlled manifests. It supports complex connectivity requirements through peer-to-peer NAT traversal, which facilitates direct encrypted connections between nodes, with automatic fallback to server-based relaying when necessary. Additionally, it provides browser-based access to remote resources, eliminating the need for local client software for many common administrative and service-access tasks. Beyond its core tunneling capabilities, the platform includes a comprehensive suite of tools for traffic management, security, and observability. It features granular access control policies based on user identity, geolocation, and network attributes, alongside automated certificate management and multi-factor authentication. The system also provides extensive monitoring, audit logging, and alerting capabilities to track infrastructure health and security events across multi-site deployments. Pangolin is designed for containerized and multi-site environments, offering flexible deployment options through standard packaging and automated reconciliation workflows. - [awesome-selfhosted/awesome-selfhosted](https://awesome-repositories.com/repository/awesome-selfhosted-awesome-selfhosted.md) (299,516 ⭐) — This project is a community-curated directory of open-source software designed for deployment in private server environments and home labs. It serves as a comprehensive resource for discovering independent, self-hosted alternatives to mainstream cloud services, enabling users to maintain full data ownership and control over their digital infrastructure. The directory is structured through a hierarchical taxonomy that organizes a vast collection of applications into logical categories, ranging from media management and data analytics to private communication and team productivity tools. It distinguishes itself through a collaborative peer-review process, where community members validate the quality and relevance of each submission to ensure the directory remains accurate and reliable. The project covers a broad capability surface, including infrastructure automation, container-based service deployment, and declarative configuration management. These tools assist users in maintaining reproducible server environments and managing complex service dependencies across private hardware. The directory is maintained as a version-controlled repository, ensuring that all updates and community-driven changes are tracked and transparent. - [elie222/inbox-zero](https://awesome-repositories.com/repository/elie222-inbox-zero.md) (10,101 ⭐) — Inbox Zero is an AI-powered email automation platform and inbox organizer. It uses large language models to automatically categorize, label, and archive emails, while providing a conversational interface for managing workflows and drafting responses through natural language. The project distinguishes itself by integrating real-time calendar availability into its drafting process and generating AI-summarized meeting briefings. It supports a pluggable AI provider interface with model fallback chains, allowing it to connect to various cloud or local LLM providers. Users can also control their inbox via external messaging channels like Slack and Telegram. The system includes broad capabilities for productivity analytics, such as tracking response times and communication trends. It handles enterprise identity through SAML SSO and OAuth for Google and Microsoft services, and utilizes an asynchronous worker queue for bulk inbox cleanup and high-volume processing. The software supports self-hosting via Docker Compose, Kubernetes, and AWS, and includes a command-line interface for rule management and API execution. - [stoatchat/self-hosted](https://awesome-repositories.com/repository/stoatchat-self-hosted.md) (2,497 ⭐) — This project is a self-hosted communication suite and private messaging infrastructure. It is a containerized chat platform designed for deployment on independent hardware to maintain full control over user data and server dependencies. The system features a modular plugin framework that allows custom features and behaviors to be loaded into the client at runtime via manifest files. It is designed as a proxy-compatible service, supporting configurable network port routing to operate behind external reverse proxy servers. The platform covers capabilities for containerized service orchestration, private communication infrastructure deployment, and custom plugin development. - [netbirdio/netbird](https://awesome-repositories.com/repository/netbirdio-netbird.md) (26,188 ⭐) — NetBird is a zero-trust networking platform that builds secure, encrypted peer-to-peer overlay networks using the WireGuard protocol. It functions as a software-defined perimeter, connecting distributed infrastructure across cloud environments and physical locations while hiding network resources from the public internet. By integrating with external identity providers, the platform enforces granular access control and identity-based segmentation for every user and device. The platform distinguishes itself through extensive automation and programmatic management capabilities. It provides a centralized control plane for orchestrating network resources, automating device enrollment, and managing peer lifecycles at scale. Administrators can define complex routing policies, manage internal DNS resolution, and expose services securely without manual firewall modifications. The system also supports advanced security postures, including post-quantum cryptography, compliance-based access enforcement, and integration with endpoint security platforms to isolate non-compliant devices. Beyond core connectivity, the project offers a comprehensive suite of tools for infrastructure management, including support for hybrid cloud bridging, Kubernetes cluster integration, and multi-tenant administrative scoping. It provides deep observability through traffic event streaming, network topology visualization, and diagnostic utilities. The software is designed for flexible deployment, offering headless agents for servers, containerized sidecars for orchestration environments, and support for mobile and desktop operating systems. - [getsentry/self-hosted](https://awesome-repositories.com/repository/getsentry-self-hosted.md) (9,426 ⭐) — This project is a containerized error tracking platform and monitoring suite designed for self-hosted deployment on private infrastructure. It provides a collection of services for capturing and analyzing software crashes and exceptions, ensuring that sensitive application data remains within a controlled environment. The system includes specialized tooling for air-gapped deployment, allowing the software to be installed and operated on servers without internet access through the manual transfer of container images. It also supports corporate network integration via proxy configurations to maintain connectivity within restricted firewall environments. The operational surface covers infrastructure health monitoring through dedicated status endpoints and request routing via a reverse proxy. Persistent storage is managed through volume mapping to decouple data from container lifecycles. - [vitobotta/docker-tunnel](https://awesome-repositories.com/repository/vitobotta-docker-tunnel.md) (291 ⭐) — A Docker-based self hosted alternative to Ngrok - [exposedev/expose](https://awesome-repositories.com/repository/exposedev-expose.md) (4,521 ⭐) — Expose is a secure tunneling tool that creates public URLs for local development servers, making them accessible from the internet without complex network configuration. It forwards incoming HTTP requests and responses between a public relay server and a local machine, enabling external services to reach a development environment that would otherwise be isolated behind a firewall or VPN. The project distinguishes itself through a comprehensive set of webhook debugging and inspection capabilities. It captures all incoming webhook requests and displays them in a real-time dashboard or command-line interface, allowing developers to inspect payloads, replay requests against a local server, and test integrations with external services without deploying to a public environment. Expose also supports permanent subdomains that remain constant across sessions, custom domain mapping with automated SSL certificate management, and token-based client authentication for secure tunnel connections. Beyond its core tunneling functionality, Expose provides a plugin system for processing and categorizing incoming requests, YAML-based configuration management for consistent tunnel parameters across environments, and the ability to self-host tunneling infrastructure on private hardware. It includes collaboration features such as generating public URLs for team feedback, sharing live previews of local sites, and reusing site configurations across team members. The tool also offers QR code generation for mobile device access, regional server selection for lower latency, and basic authentication to protect shared sites with login credentials. - [requestly/requestly](https://awesome-repositories.com/repository/requestly-requestly.md) (6,341 ⭐) - [coollabsio/coolify](https://awesome-repositories.com/repository/coollabsio-coolify.md) (57,055 ⭐) — This project is a self-hosted platform-as-a-service that provides a centralized management interface for deploying, configuring, and monitoring containerized applications and databases on private infrastructure. It functions as a visual control plane, automating the end-to-end lifecycle of services from source code to production. By managing container orchestration, networking, and resource allocation, it allows users to maintain full control over their own hardware while streamlining the delivery of software. The platform distinguishes itself through its agentless architecture, which uses secure shell connections to execute administrative tasks and manage remote servers without requiring persistent local software. It integrates directly with version control systems to trigger automated build and deployment pipelines, including the creation of temporary, isolated preview environments for every pull request. This workflow is supported by a declarative engine that uses templates to standardize the deployment of complex multi-container architectures and persistent database engines. Beyond core orchestration, the system handles the operational requirements of hosted services by managing dynamic reverse-proxy routing and automated SSL certificate lifecycles. It provides a comprehensive suite of infrastructure management tools, including browser-based terminal access for debugging, automated system dependency installation, and persistent state management via a central database. These capabilities ensure that infrastructure remains synchronized and consistent across multiple remote environments. - [jaykali/maskphish](https://awesome-repositories.com/repository/jaykali-maskphish.md) (3,020 ⭐) — Maskphish is a comprehensive security toolkit that integrates capabilities for digital forensics, network vulnerability scanning, open-source intelligence, penetration testing, and social engineering. It functions as a multi-purpose framework for automating reconnaissance and executing security audits across diverse network environments. The project features a specialized phishing and social engineering toolkit used for cloning websites, masking URLs, and deploying deceptive pages to capture user credentials. It also includes a remote access Trojan builder for generating platform-specific executables and mobile application packages to establish remote command sessions. The framework covers a broad surface of capabilities, including web application penetration testing, OSINT reconnaissance, memory and disk forensics, and wireless network auditing. It provides tools for payload generation, credential theft, and the automation of information gathering from public data sources. This project is implemented primarily as a shell-based application. - [beyondcode/expose](https://awesome-repositories.com/repository/beyondcode-expose.md) (4,569 ⭐) — A beautiful, fully open-source, tunneling service - written in pure PHP - [gethomepage/homepage](https://awesome-repositories.com/repository/gethomepage-homepage.md) (30,679 ⭐) — This project is a self-hosted dashboard portal designed to centralize access to internal applications and infrastructure services. It functions as a configuration-driven platform that automatically discovers and organizes services from container runtimes and cluster management systems, presenting them within a unified, customizable web interface. The system distinguishes itself through a declarative widget framework that allows users to construct dashboard components by mapping raw API responses to visual elements. It includes a secure internal proxy layer that handles authentication, header injection, and request routing for external services, ensuring that data retrieval remains isolated and controlled. Developers can extend the platform by authoring custom widgets using standardized lifecycle hooks, which are supported by a comprehensive suite of unit and integration tests to ensure reliable data fetching and error handling. The platform covers a broad range of infrastructure monitoring and management capabilities, including real-time visualization of resource utilization for servers, containers, and virtual machines. Users can organize their dashboard through a hierarchical layout engine that supports nested service groups and flexible grid arrangements. The system also features a centralized localization layer to ensure consistent multi-language support across all interface elements and widgets. The application is managed through a centralized configuration file, which governs service discovery, global settings, and the behavior of various modular widgets. - [rathole-org/rathole](https://awesome-repositories.com/repository/rathole-org-rathole.md) (12,845 ⭐) — Rathole is a reverse proxy tunneling tool designed to expose local services behind firewalls and network address translation to the public internet. It functions as a secure tunneling infrastructure that enables remote access to private network resources without requiring manual router port forwarding configurations. The system utilizes a client-server architecture where a public-facing gateway coordinates with a private-network agent. It distinguishes itself by multiplexing multiple logical service connections through a single persistent TCP stream, which reduces the overhead of maintaining individual connections. To ensure security, the platform employs a dedicated control plane that manages service registration and verifies agent identity through token-based authentication before establishing any tunnels. The software handles high-concurrency traffic by utilizing non-blocking input and output operations within an asynchronous event loop. Data transmission is optimized through zero-copy buffer forwarding, which relays packets between network endpoints using shared memory to minimize processing requirements. - [gaetanlhf/expose](https://awesome-repositories.com/repository/gaetanlhf-expose.md) (280 ⭐) — Your no-config, no-install, globally distributed open-source tool to expose your local services - [dubinc/dub](https://awesome-repositories.com/repository/dubinc-dub.md) (23,722 ⭐) — This project is a comprehensive link management and marketing attribution platform designed for creating, tracking, and analyzing shortened URLs. It functions as a centralized hub for marketing analytics, providing tools to monitor link performance, visualize conversion funnels, and manage affiliate programs through a unified dashboard. The platform distinguishes itself by integrating advanced attribution modeling and partner management directly into the link infrastructure. It supports complex marketing workflows, including automated commission calculations, fraud detection, and payout distribution for affiliates, alongside granular traffic redirection based on device, location, or A/B testing requirements. By utilizing custom domains and reverse proxy configurations, it ensures reliable data collection that bypasses common browser-based tracking restrictions. Beyond core link operations, the system offers extensive programmatic capabilities, including a robust API, SDKs, and event-driven webhooks for real-time integration with external services. It also incorporates enterprise-grade administrative features such as multi-tenant workspace isolation, role-based access control, and single sign-on integration to support collaborative team environments. The platform is built to be deployed within private infrastructure, allowing organizations to maintain full control over their data and system configuration. - [koding/tunnel](https://awesome-repositories.com/repository/koding-tunnel.md) (331 ⭐) — Tunnel proxy package in Go - [inconshreveable/ngrok](https://awesome-repositories.com/repository/inconshreveable-ngrok.md) (24,446 ⭐) — ngrok is a secure TCP tunneling proxy and API ingress controller that exposes local services to the public internet. It establishes a persistent connection between a local agent and a cloud-based gateway to route traffic to local ports without requiring firewall or router configuration changes. The project provides a global gateway for routing API traffic, which includes built-in support for rate limiting and authentication policy enforcement. It also functions as an IoT device gateway, enabling remote command execution and access control for embedded hardware via a cloud-to-device bridge. Additional capabilities cover network connectivity and observability, including site-to-site VPNs for linking private networks and a traffic inspector for capturing and replaying HTTP requests. It further includes utilities for intercepting and replaying webhooks to verify integration logic locally. - [gitroomhq/postiz-app](https://awesome-repositories.com/repository/gitroomhq-postiz-app.md) (32,271 ⭐) — Postiz is an open-source social media management platform designed to centralize the scheduling, publishing, and analysis of content across diverse social networks, community forums, and blogging platforms. It functions as a unified hub where users can coordinate, review, and distribute content through a shared team workspace, while leveraging integrated artificial intelligence to assist in drafting text and generating multimedia assets. The platform distinguishes itself through a modular architecture that utilizes a provider-specific adapter pattern to ensure consistent content distribution across various external services. It incorporates an AI-driven tool execution model that connects natural language models to internal functions, enabling automated content generation and media configuration. Furthermore, the system provides a programmatic API gateway that allows external applications to interact with its scheduling and management features via structured payloads. Beyond core scheduling, the platform includes comprehensive tools for performance tracking, media storage abstraction, and collaborative workflows. It supports complex content strategies through features like multi-part thread scheduling and automated campaign execution, while maintaining secure identity management through OAuth-based mediation and support for external identity providers. The application is designed for self-hosting and can be deployed into containerized environments using provided configuration charts. - [datawranglerai/self-host-n8n-on-gcr](https://awesome-repositories.com/repository/datawranglerai-self-host-n8n-on-gcr.md) (608 ⭐) — Self-host n8n on Google Cloud without the subscription fees or server headaches - because your automation workflows shouldn't cost more than your coffee budget - [prefecthq/fastmcp](https://awesome-repositories.com/repository/prefecthq-fastmcp.md) (22,994 ⭐) — FastMCP is a Python framework designed for building servers that expose functions, resources, and prompts to AI models using the Model Context Protocol. It simplifies the development process by automatically deriving tool metadata, input schemas, and documentation directly from Python function signatures and type hints. The framework provides a unified container for managing these components, allowing developers to build modular applications that integrate seamlessly with AI assistants. The project distinguishes itself through its support for interactive, server-defined user interface components that render directly within AI chat environments. It includes a dynamic middleware pipeline for injecting cross-cutting concerns like authentication and telemetry, alongside a protocol-agnostic transport layer that supports stdio, HTTP, and server-sent events. These capabilities allow for the creation of rich, stateful interactions that extend beyond simple text-based tool execution. The framework covers a broad capability surface, including comprehensive support for authentication, authorization, and secure deployment. It provides tools for managing long-running tasks, background execution, and complex dependency injection, while offering built-in observability through logging, distributed tracing, and performance monitoring. Developers can also leverage built-in CLI scaffolding and hot-reloading to accelerate the development and testing of server-side logic. FastMCP is distributed as a Python library, with documentation and tooling focused on streamlining the registration and configuration of local server instances for external AI clients. - [amruthpillai/reactive-resume](https://awesome-repositories.com/repository/amruthpillai-reactive-resume.md) (38,613 ⭐) — This project is a web-based platform designed for creating, managing, and sharing professional resumes. It functions as a structured document builder that integrates artificial intelligence to assist with content generation, editing, and analysis. Users can maintain a collection of resumes, customize their visual presentation through various templates, and export them into multiple formats for job applications. The platform distinguishes itself through its autonomous AI agent capabilities, which can perform research, suggest incremental edits, and apply data patches directly to documents. It also provides a secure, self-hostable environment that allows users to maintain full control over their data and infrastructure. The system supports advanced authentication methods, including passkeys and federated identity providers, ensuring that personal and professional information remains protected. Beyond core editing, the application includes tools for document organization, such as tagging, filtering, and legacy data migration. It features a robust document generation engine that separates content from design, allowing for precise layout control and styling. Users can share their resumes via password-protected public URLs and monitor document performance through integrated analytics. The application is designed for containerized deployment, utilizing Docker Compose to facilitate consistent installation across private infrastructure. It includes built-in health monitoring and feature flagging to manage system performance and functionality without requiring code redeployments. - [abhishekq61/tunnel-client](https://awesome-repositories.com/repository/abhishekq61-tunnel-client.md) (52 ⭐) — Agent for Connecting to Sarkaribabu Tunnel - [cloudflare/foundations](https://awesome-repositories.com/repository/cloudflare-foundations.md) (1,628 ⭐) — Cloudflare's Rust service foundations library. - [snail007/goproxy](https://awesome-repositories.com/repository/snail007-goproxy.md) (16,874 ⭐) — This project is a multi-protocol proxy server and network tunneling tool designed to manage traffic across heterogeneous infrastructure. It functions as a traffic management gateway, providing the core infrastructure to route, filter, and secure network connections through a unified interface. The software distinguishes itself through its support for cascading proxy chaining and dynamic upstream load balancing, which allow for the creation of complex, multi-hop network paths. It provides granular control over traffic flow by normalizing diverse protocols, enabling transparent port forwarding, and facilitating intranet penetration through multiplexed, secure tunnels. The platform includes a broad suite of capabilities for infrastructure management, including independent DNS resolution, traffic compression, and layered encryption transport. It enforces security and compliance through access control lists, proxy authentication, and bandwidth throttling. Operational settings are managed via command-line arguments, which also support background process lifecycle management to ensure continuous service availability. - [hiddify/hiddify-app](https://awesome-repositories.com/repository/hiddify-hiddify-app.md) (30,948 ⭐) — Hiddify is a cross-platform proxy client designed to manage secure network connections and traffic routing across desktop and mobile operating systems. It functions as a unified proxy manager, providing a centralized interface to configure and control various network proxy protocols for encrypted and private internet access. The application distinguishes itself by integrating local loopback interception, which configures the operating system network stack to route traffic through a local port for granular filtering. It also serves as a self-hosted infrastructure tool, enabling users to automate the deployment of private proxy servers on remote infrastructure through simplified command-line initialization. The system maintains consistency across environments by synchronizing remote server states through declarative configuration files and utilizing an event-driven daemon to monitor proxy health and network state changes. It employs a shared bridge layer to interact with native system APIs and firewall rules, while bundling all necessary dependencies into a singular, self-contained executable package. - [cloudflare/moltworker](https://awesome-repositories.com/repository/cloudflare-moltworker.md) (9,909 ⭐) — Moltworker is an AI agent sandbox and model orchestrator designed for the secure execution of untrusted code and shell commands generated by large language models. It functions as a gateway proxy that routes requests to multiple AI providers through a unified interface, integrating a container runtime backed by S3-compatible object storage to persist state across ephemeral lifecycles. The system distinguishes itself by combining an AI model orchestrator with a headless browser controller for automated web scraping and screenshot capture. It manages the full lifecycle of AI agents, including multi-channel chat integration, consolidated billing across different providers, and expenditure limits to control operational costs. The platform provides a broad suite of capabilities for ephemeral environment hosting, including isolated build pipelines and the exposure of services via preview URLs. It incorporates security and observability tools such as token-based proxy authentication, response caching, and traffic analysis to monitor token usage and request volume. The infrastructure supports real-time interaction through a browser-based terminal interface using WebSocket streaming and monitors filesystem changes for automated build processes. - [exposesh/expose-server](https://awesome-repositories.com/repository/exposesh-expose-server.md) (280 ⭐) — Your no-config, no-install, globally distributed open-source tool to expose your local services - [ekzhang/bore](https://awesome-repositories.com/repository/ekzhang-bore.md) (11,242 ⭐) — Bore is a TCP tunneling tool and localhost exposure utility used to route local TCP ports to public IP addresses. It functions as a TCP port forwarder that makes services running on a local machine accessible over the internet via a remote listener. The project includes a secure tunnel server implementation that manages incoming connections and routes traffic to connected local clients. It utilizes shared secret handshakes to authorize tunnel creation and restrict access to authorized users. The system provides capabilities for firewall bypass networking and remote tunnel hosting. It manages bidirectional socket proxying and TCP-based stream forwarding to enable public accessibility of private services. - [skx/tunneller](https://awesome-repositories.com/repository/skx-tunneller.md) (488 ⭐) — Allow internal services, running on localhost, to be accessed over the internet.. - [ehang-io/nps](https://awesome-repositories.com/repository/ehang-io-nps.md) (34,090 ⭐) — nps is an intranet penetration proxy server that exposes internal network services to the public internet via secure TCP and UDP tunnels. It functions as a traffic forwarder and reverse proxy, enabling external access to local services, remote desktops, and internal APIs. The project is distinguished by a centralized web-based administration interface used to configure tunnels, manage user accounts, and monitor real-time bandwidth metrics. It supports domain-based request routing and provides a mechanism to secure public services using HTTPS encryption through digital certificates. The system covers a broad range of networking capabilities, including SOCKS5 and HTTP proxying, internal DNS resolution, and layer-4 traffic forwarding. It also incorporates traffic management tools for bandwidth limiting, data compression, and multiplexed stream tunneling to optimize network performance. The tool includes a remote client lifecycle management system for registration, startup command generation, and deployment as system services. - [capsoftware/cap](https://awesome-repositories.com/repository/capsoftware-cap.md) (17,026 ⭐) — Cap is a self-hosted screen recording and video collaboration platform designed for teams to replace synchronous meetings with asynchronous video updates. It provides a comprehensive suite for capturing high-resolution desktop activity, including system audio, microphone input, and camera overlays, which are then processed through an integrated post-production workflow. The platform distinguishes itself by offering full data sovereignty through containerized deployment and object storage abstractions, allowing users to host their media assets on private infrastructure or S3-compatible buckets. Beyond simple recording, it features keyframe-based video compositing, automated AI-powered transcription, and visual branding tools that enable creators to polish and annotate their content before sharing. The system facilitates team engagement through a centralized workspace where viewers can provide feedback via timestamped comments, reactions, and playback analytics. It also includes programmatic interfaces for embedding videos into external applications, managing media assets, and automating distribution workflows. The project is distributed as a containerized application, enabling deployment on private servers to maintain complete control over data storage and access permissions. - [koichik/node-tunnel](https://awesome-repositories.com/repository/koichik-node-tunnel.md) (0 ⭐) — ```javascript var tunnel = require('tunnel'); - [formbricks/formbricks](https://awesome-repositories.com/repository/formbricks-formbricks.md) (12,391 ⭐) — Formbricks is an open-source survey and feedback platform designed to help teams capture and analyze user insights through targeted, in-app, and website-based interactions. It functions as a comprehensive customer experience analytics system that allows organizations to maintain full control over their data, user attributes, and survey workflows. The platform distinguishes itself through its event-driven architecture, which enables precise behavioral targeting by triggering surveys based on specific user actions or application events. It supports deep integration with external ecosystems by automatically synchronizing response data to CRMs, databases, and communication tools, while providing programmatic interfaces for managing resources and automating feedback loops. Beyond core collection, the system includes advanced logic for conditional branching, scoring, and personalized routing to create adaptive survey experiences. It offers extensive customization options, including white-labeling, CSS overrides, and multi-channel distribution across web, mobile, and email environments. The platform is built for self-hosting, supporting containerized deployments with built-in multi-tenant data isolation and enterprise-grade security features like single sign-on and role-based access control. - [deepractice/promptx](https://awesome-repositories.com/repository/deepractice-promptx.md) (3,526 ⭐) — PromptX is an LLM agent orchestration framework designed to execute multi-step workflows using autonomous agents. It features a sandboxed tool execution environment for secure filesystem operations and external API integrations, alongside a persona management system that defines professional roles and domain expertise to control agent behavior. The system implements a semantic memory network for persistent knowledge storage, utilizing graph-based memory and engrams to retain information across sessions. This cognitive memory includes specialized tools for knowledge graph visualization, allowing users to map and analyze memory networks through interactive mind maps and density statistics. To prevent knowledge contamination, the framework maintains isolated memory networks and workspaces for different professional personas. The platform covers automated document processing for PDFs, spreadsheets, and Word documents, as well as a custom tool integration framework for connecting agents to external databases and services. It also includes utilities for exposing local servers via token-authenticated remote access URLs. - [cloudflare/workerd](https://awesome-repositories.com/repository/cloudflare-workerd.md) (8,346 ⭐) — workerd is a serverless edge runtime designed for executing lightweight, distributed functions at the network edge. It utilizes a V8-based JavaScript engine to provide fast startup and low memory overhead, while maintaining a WebAssembly-compatible execution environment that allows modules to run alongside JavaScript for high-performance computational tasks. The runtime supports isolate-based multi-tenancy to run multiple independent execution contexts within a single process. It implements an event-driven execution model that triggers code based on network requests or scheduled events and includes support for privileged socket inheritance to operate under unprivileged user accounts. The project covers a broad set of capabilities including serverless API development, AI inference deployment using GPU hardware and vector databases, and automated browser orchestration for web scraping. Additional functionality encompasses global state management via SQL databases and key-value stores, background job scheduling with message queues, and the delivery of static assets through a content delivery network. Development is supported by a command-line interface for project management, custom build pipelines, and tools for pinning runtime behavior to specific dates to ensure consistency. - [cloudflare/serverless-cloudflare-workers](https://awesome-repositories.com/repository/cloudflare-serverless-cloudflare-workers.md) (0 ⭐) — Serverless plugin for Cloudflare Workers - [m1heng/clawdbot-feishu](https://awesome-repositories.com/repository/m1heng-clawdbot-feishu.md) (3,280 ⭐) — This project is a framework for integrating Large Language Models into the Feishu messaging platform to create automated assistants. It functions as a self-hosted AI assistant and a chatbot gateway that routes messages between chat platforms and remote AI cloud providers. The system features a multi-channel messaging bridge and provider-agnostic model routing, allowing for orchestration between different AI models with automatic failover management. It includes a browser automation agent capable of programmatically controlling web browsers and capturing page snapshots to extend the assistant's capabilities. The architecture incorporates security and extensibility through agent session sandboxing, inbound message filtering via pairing codes or allowlists, and a dynamic skill plugin system for installing custom functional logic. It also supports private hosting on local hardware with secure tunnel-based gateway exposure for HTTPS access. - [appwrite/appwrite](https://awesome-repositories.com/repository/appwrite-appwrite.md) (56,318 ⭐) — Appwrite is a backend-as-a-service platform that provides a unified development environment for building full-stack applications. It integrates essential infrastructure components—including authentication, databases, storage, and serverless functions—into a single, centralized interface to simplify application development and resource management. The platform distinguishes itself through a container-based microservices architecture that ensures consistent execution across diverse infrastructure. It features a versatile connectivity layer that links frontend applications with third-party services, databases, and external APIs through standardized interfaces. Developers can manage and automate the configuration of these backend resources using infrastructure-as-code tools, while granular role-based access control enforces security policies across all platform resources and API endpoints. Beyond its core services, the platform offers a broad capability surface that includes cross-platform data synchronization, event-driven webhooks, and comprehensive billing and usage monitoring. It supports extensive integrations for AI utilities, payment processing, messaging, and logging, allowing developers to extend application functionality through modular, event-driven workflows. The platform is designed for both managed and self-hosted deployments, providing tools for production environment optimization, data migration, and custom domain configuration. - [cloudflare/mcp-server-cloudflare](https://awesome-repositories.com/repository/cloudflare-mcp-server-cloudflare.md) (3,432 ⭐) — This is a Model Context Protocol (MCP) server that exposes Cloudflare’s edge platform as a set of tools for AI assistants. It provides a unified interface for managing Cloudflare Workers, including deployment, versioning, and configuration, alongside access to Workers AI for running inference tasks using pre-trained models. The server also covers Cloudflare’s data storage services, including D1 serverless SQLite databases, KV globally distributed key-value stores, and R2 S3-compatible object storage. Beyond core resource management, the server enables automation and scheduling through cron triggers for periodic Worker execution and Workflows for orchestrating multi-step processes. It handles service bindings that connect Workers to other Cloudflare services, manages secrets for secure credential storage, and supports URL routing to direct traffic to specific Workers. Additional capabilities include managing Durable Objects for stateful applications, working with Worker templates, and retrieving account-level analytics for domains. The server also provides operations for managing queues for message passing, configuring zones and domains, and listing all account resources such as Workers, KV namespaces, D1 databases, and R2 buckets. It is implemented as a TypeScript project that maps each MCP tool directly to a single Cloudflare API operation or a small set of related operations. - [ddev/ddev](https://awesome-repositories.com/repository/ddev-ddev.md) (3,671 ⭐) — DDEV is a container-based local development environment and project manager designed to bootstrap consistent web development stacks. It orchestrates Docker containers to provide isolated Linux environments, integrating web servers, databases, and language runtimes. The project distinguishes itself by automating the complexities of local networking and security, featuring a local HTTPS proxy for SSL certificate automation and wildcard DNS for hostname management. It further enables collaboration by exposing local environments to the internet through tunneling for external project sharing. The platform covers a broad range of capabilities, including database environment management with state snapshotting and version migration, as well as containerized tooling integration for running package managers and language runtimes. It also includes observability tools for real-time log streaming and application code debugging, and performance optimizations such as asynchronous file caching to reduce synchronization latency. The system can be deployed locally or provisioned as a remote development workflow within cloud containers. - [langchain-ai/langchainjs](https://awesome-repositories.com/repository/langchain-ai-langchainjs.md) (17,818 ⭐) — LangChain.js is a framework for building, executing, and monitoring stateful agentic applications. It provides an orchestration engine that models workflows as directed graphs, allowing developers to connect language models, data sources, and external tools into modular, multi-step processes. The platform distinguishes itself through its focus on stateful execution and human-in-the-loop control. It manages agent lifecycles by persisting execution state across threads, enabling fault tolerance and the ability to pause workflows at designated breakpoints for manual review or modification. This architecture supports both autonomous agent orchestration and complex multi-agent systems, with built-in capabilities for streaming real-time execution updates and managing long-term memory. Beyond core orchestration, the project offers a comprehensive suite of tools for the entire application lifecycle. This includes integrated observability for tracing and evaluating agent performance, schema-enforced data serialization for reliable communication, and extensive support for deployment, security, and infrastructure management. The project provides a TypeScript-based software development kit and a command-line interface to facilitate local development, testing, and deployment of agentic workflows. - [davila7/claude-code-templates](https://awesome-repositories.com/repository/davila7-claude-code-templates.md) (20,933 ⭐) — Claude Code Templates is a comprehensive framework for orchestrating specialized AI agents and automating development workflows within local environments. It provides a structured system for defining, configuring, and deploying AI personas that handle specific technical tasks, ranging from backend architecture and frontend implementation to security auditing and infrastructure management. The project distinguishes itself through a configuration-driven approach that allows teams to standardize development environments and share reusable agent definitions across projects. It includes a robust CLI toolkit for managing the entire agent lifecycle, from discovery and installation to execution and performance monitoring. By utilizing standardized protocols and modular function definitions, it enables seamless integration of external services and local tools into the assistant's capabilities. Beyond core agent management, the platform offers extensive support for workflow automation, including event-driven hooks, custom slash commands, and automated testing pipelines. It incorporates security-focused features such as granular permission enforcement, sandbox execution environments, and automated secret scanning to ensure safe operation. The system also provides observability tools, including real-time dashboards for tracking agent performance, token usage, and conversation history. - [request/tunnel-agent](https://awesome-repositories.com/repository/request-tunnel-agent.md) (0 ⭐) — tunnel-agent - [snsinfu/reverse-tunnel](https://awesome-repositories.com/repository/snsinfu-reverse-tunnel.md) (241 ⭐) — Reverse tunnel TCP and UDP - [tailscale/tailscale](https://awesome-repositories.com/repository/tailscale-tailscale.md) (32,596 ⭐) — Tailscale is a zero-trust networking overlay that connects distributed devices and services into a private, encrypted mesh network. By utilizing a high-performance, user-space implementation of the WireGuard protocol, it establishes secure peer-to-peer tunnels across diverse network topologies without requiring complex firewall configuration. The platform operates on a centralized control plane that manages global network state, authentication, and policy distribution, ensuring that connectivity is governed by identity rather than traditional IP-based rules. What distinguishes Tailscale is its deep integration with existing identity providers, which allows organizations to bind network access to verified user accounts and device posture. It enforces granular security through declarative access control lists and microsegmentation, enabling administrators to define precise permissions for users and services. Beyond standard connectivity, the platform includes a secure AI gateway that proxies and audits language model requests, providing centralized control over API usage, spending limits, and security guardrails. The project offers a comprehensive suite of administrative and developer tools, including infrastructure-as-code support, automated node registration, and identity-based SSH access that eliminates the need for manual key management. It also provides flexible traffic management capabilities, such as exit nodes for egress control, subnet routers for bridging isolated network segments, and public-facing service exposure through encrypted tunnels. The software is distributed as an open-source command-line daemon, supporting a wide range of operating systems and containerized environments to facilitate automated infrastructure deployment. - [langfuse/langfuse](https://awesome-repositories.com/repository/langfuse-langfuse.md) (29,190 ⭐) — Langfuse is an open-source observability and evaluation platform designed for language model applications. It provides a centralized system for tracking execution traces, monitoring performance metrics, and managing prompt templates. By capturing hierarchical units of work and telemetry data, the platform enables developers to debug complex application lifecycles and analyze token usage, latency, and model interactions in production environments. The platform distinguishes itself through an integrated evaluation framework that allows for systematic benchmarking and automated scoring of model outputs. Users can perform comparative experimentation by running multiple prompt or model versions side-by-side, and convert production traces into versioned test datasets to validate performance against ground truth. A dedicated prompt management system further decouples logic from application code, offering a playground for refinement and dynamic fetching of versioned templates. Beyond core observability, the project supports a comprehensive suite of administrative and operational tools, including organizational access controls, identity provider integration, and automated workflow triggers. It is built for flexible deployment, supporting containerized orchestration in private, cloud, or Kubernetes-based environments to ensure data control and high-availability scaling. The platform is designed for self-hosting and provides infrastructure-as-code templates to facilitate consistent environment setup. It integrates with standard observability ecosystems through open telemetry support and offers programmatic interfaces for headless management and automated deployment workflows. - [n8n-io/self-hosted-ai-starter-kit](https://awesome-repositories.com/repository/n8n-io-self-hosted-ai-starter-kit.md) (14,997 ⭐) — This project provides a dockerized AI workflow stack and orchestration templates for deploying a self-hosted AI environment. It establishes a localized infrastructure for building autonomous agents and model chains that process private data on-premises without external cloud dependencies. The environment is designed to support autonomous agent development, allowing models to dynamically select tools, execute shell commands, and interact with local file systems. It includes integrated vector database support to enable retrieval augmented generation and private document analysis. The stack covers a broad range of capabilities, including local model inference hosting, node-based workflow sequencing, and stateful conversation memory. It also incorporates text analysis tools for embedding generation, structured information extraction, and automated file system change triggers.