30 open-source projects similar to outlinefoundation/outline-server, ranked by how many features they have in common. Compare stars, activity and what each one does to find the best Outline Server alternative.
A Rust port of shadowsocks
This project is a toolset for automated VPN installation, proxy server management, and server-side network throughput optimization. It provides a Shadowsocks proxy server manager used to deploy and configure proxy servers on virtual private servers. The system utilizes automated deployment scripts to handle the installation of encryption methods, ports, and passwords on remote servers. It includes a VPS network optimizer that activates BBR congestion control to reduce latency and increase throughput for high-bandwidth streaming. The software covers remote proxy configuration and client confi
Azure Docs is the official technical documentation repository for Microsoft Azure, the cloud computing platform. It provides comprehensive guidance on the full spectrum of Azure services, covering everything from core infrastructure components like virtual machines, Kubernetes clusters, and serverless computing to platform services for AI, machine learning, data analytics, and storage. The documentation details how to provision, manage, and govern cloud resources at scale, including policy enforcement, identity management, and cost optimization. The documentation distinguishes Azure through i
This project is a privacy-focused VPN manager and WireGuard client application designed to establish encrypted tunnels that mask user IP addresses and activity. It focuses on maintaining anonymity through a system that supports account creation without personal identifying information. The application distinguishes itself with advanced privacy tools, including a multi-hop orchestrator for routing traffic through multiple sequential servers and a network traffic obfuscator that uses Shadowsocks, TCP, and QUIC to bypass deep packet inspection and censorship. It also implements quantum-resistant
MTProxy is a proxy server that routes traffic to Telegram servers using the MTProto protocol to bypass network restrictions. It functions as a system for managing secure connections and forwarding protocol traffic between clients and destination servers. The project implements traffic obfuscation by adding random padding to packets to mask data patterns and hide proxy usage from internet service providers. It also includes a connection manager that restricts user access through the validation of specific authentication secrets. The system provides operational observability by exposing real-t
Merlin is a cross-platform command and control framework and remote access tool. It provides a server and agent system for post-exploitation coordination, utilizing an HTTP/2 framework for secure communication and the execution of commands across multiple operating systems. The project features an in-memory code execution engine that runs assemblies and shellcode directly within a process to avoid writing files to disk. It implements a decentralized communication architecture through a peer-to-peer network, allowing agents to exchange data via direct bind or reverse connections. To evade det
serverless-express is a Node.js serverless framework adapter that enables standard web frameworks to run on serverless compute. It utilizes a compatibility layer to map cloud gateway events and triggers into standard HTTP request and response objects. The project features a full-stack code generator that produces API endpoints, database schemas, and frontend boilerplate from centralized entity relationship configurations. It includes a serverless event router to translate non-HTTP cloud events into simulated HTTP requests and a tool for provisioning NoSQL databases and cloud resources using d
ZoneMinder is a free, open source Closed-circuit television software application developed for Linux which supports IP, USB and Analog cameras.
Shadowsocks-iOS is a proxy client for iOS devices that implements the Shadowsocks protocol to tunnel network traffic through a secure, encrypted relay. Its primary purpose is to route device traffic through a proxy server to bypass network censorship and regional restrictions. The project establishes secure proxy tunneling to protect data from local monitoring and hide internet activity. It manages iOS network traffic routing using custom encryption protocols to avoid network interference. The implementation utilizes a system-level network extension framework and a local virtual network inte
shadowsocks-libev is an event-driven network daemon that provides an encrypted SOCKS5 proxy. It functions as a lightweight proxy server using a non-blocking event loop to route TCP and UDP traffic through encrypted tunnels to bypass network restrictions. The project implements a transparent proxy gateway capable of intercepting outbound packets at the network layer, allowing system traffic to be redirected through the encrypted tunnel without per-application configuration. It also includes a daemon process manager to control multiple proxy server instances as child processes via local communi
REALITY is a censorship circumvention tool and network traffic obfuscator designed to bypass internet filters. It functions as a secure tunneling protocol that masks connection patterns and identity by mimicking the TLS handshakes of legitimate target websites. The system removes server-side TLS fingerprints to hide encrypted traffic from network monitoring tools and deep packet inspection. It employs a website mimicking proxy to present valid handshakes and forward traffic to destination servers, masquerading the connection as a legitimate site visit. The project incorporates a quantum-resi
Trojan is a censorship circumvention tool and TLS proxy server designed to bypass network restrictions by imitating legitimate web services. It functions as a TLS traffic obfuscator that masks proxy activity by mimicking the handshake and data flow of standard HTTPS requests. The system disguises network traffic as common web browsing to avoid deep packet inspection. It achieves this by wrapping TCP and UDP data within TLS encryption and forwarding unauthenticated or unauthorized requests to a legitimate destination website to hide the proxy's purpose. The project provides a tunnel that conv
GoodbyeDPI is a censorship circumvention utility designed to bypass deep packet inspection and restrictive network filtering. It functions as a background engine that intercepts and modifies network traffic at the kernel level, allowing users to maintain connectivity in environments where specific protocols or web content are blocked. The tool employs active manipulation techniques to confuse inspection hardware, including TCP stream fragmentation, HTTP header obfuscation, and the injection of out-of-order packets. By altering packet structures and dropping specific redirection patterns, it m
This project is a censorship circumvention utility designed to maintain connectivity to restricted online services by evading deep packet inspection. It functions as a network traffic redirection service that manipulates packet headers at the transport layer to bypass regional network filters and censorship systems. The tool distinguishes itself by providing granular control over traffic management, allowing users to define specific lists of domains and IP addresses for targeted interception. By applying custom bypass strategies only to these designated hosts, the utility ensures that the rem
Sheas-Cealer is a network censorship circumvention tool and browser launch parameter manager. It functions as a utility for modifying the Server Name Indication in TLS handshakes to bypass firewalls and network restrictions. The software masks traffic destinations by changing the server name sent during a browser connection. It achieves this by configuring browser startup flags and injecting launch parameters to modify the destination hostname during the initial connection. The project covers capabilities for SNI hostname spoofing and browser connection tuning to evade regional or corporate
This project provides an open-source VPN client that creates an unrestricted tunnel to bypass internet censorship without fees, registration, speed caps, or data limits. It offers free, unlimited VPN tunneling with no sign‑up required, enabling access to blocked websites and unrestricted browsing. The application uses the WireGuard protocol for encrypted traffic routing, backed by kernel‑level packet forwarding to minimize overhead. It includes automatic server discovery that selects the most responsive server based on real‑time latency, a connection keepalive mechanism to detect and restore
Osmedeus is a security workflow orchestration engine that coordinates AI agents, shell commands, and scanning tools through declarative YAML pipelines. It functions as a distributed security scanner, a declarative workflow automator, and an AI agent framework for security, enabling automated multi-step security analysis with conditional branching, parallel execution, and distributed workers. The engine distinguishes itself through a hybrid runner model that executes workflow steps on the local host, inside Docker containers, or over SSH to remote machines, selected per step or module. It supp
The Snyk CLI is a command-line security scanner that detects known vulnerabilities across open-source dependencies, proprietary application code, container images, and infrastructure-as-code configuration files. It also serves as a platform management tool, allowing users to configure organizations, users, SSO, and reporting from the terminal rather than the web dashboard. The CLI integrates directly into development workflows, enabling scanning within IDEs, build pipelines, and version control systems. It implements static analysis with interfile data flow analysis to find complex security f
OrbStack is a native macOS application that replaces Docker Desktop, providing an all-in-one environment for running Docker containers, full Linux virtual machines, and local Kubernetes clusters. It runs Linux VMs directly on the macOS hypervisor framework for near-native performance, uses VirtioFS for fast bidirectional file sharing between macOS and Linux, and leverages Rosetta for near-native x86 emulation on Apple Silicon. The system assigns predictable local domain names to containers and VMs with automatic HTTPS certificate generation, forwards ports via event-driven updates, and stores
SpoofDPI is a network application and local proxy server designed as an anti-censorship tool. It functions as a deep packet inspection circumvention proxy that fragments and modifies outbound HTTP requests to evade network filters and censorship. The project achieves this by implementing HTTP request fragmentation, splitting single requests into multiple smaller packets to confuse firewalls. It also performs TCP stream manipulation and network traffic obfuscation to hide the nature of web requests and bypass regional content blocks. The system includes capabilities for transparent network fo
Kitematic is a graphical user interface for managing and running Docker containers on desktop operating systems. It serves as a visual Docker management tool and API client that translates user interface interactions into REST API calls to control the Docker daemon without requiring the command line. The application is built as a cross-platform Electron desktop application, utilizing a Chromium-based shell to provide a consistent administrative interface across Mac and Windows. The software covers the full container lifecycle, including the creation, configuration, and monitoring of containe
SagerNet is an Android VPN client that routes device traffic through proxy protocols to bypass internet censorship and access restricted content. It functions as a censorship circumvention tool, distributing anti-censorship platforms and helping users evade network restrictions, while also serving as a platform for studying internet censorship patterns through scientific research. The application routes network traffic through proxy protocols by hooking into the Android VpnService API to create a local VPN tunnel, running persistently as a foreground service with a notification to prevent the
Ofelia is a recurring job scheduler designed to run commands inside Docker containers or directly on the host system using a defined timetable. It functions as a configuration engine that reads job schedules and commands from container labels, a concurrency guard to prevent overlapping task executions, and a log router for reporting job outcomes. The system distinguishes itself by using a label-based configuration model, allowing job schedules and execution logic to be defined within container metadata rather than external configuration files. It employs a lock-based concurrency control mecha
naiveproxy is a censorship circumvention tool and traffic obfuscation proxy. It functions as an HTTP/2 transport proxy that tunnels SOCKS5 traffic over HTTP/2 to hide network activity and bypass network blocks. The project distinguishes itself by mimicking standard web browser requests to evade deep packet inspection. It employs traffic camouflage techniques such as redirecting unauthorized probing requests to decoy web servers and using randomized packet padding to defeat length-based traffic analysis. The software provides a local SOCKS5 proxy endpoint, credential-based request authenticat
nerdctl is a command-line tool that manages containers and images using containerd as the runtime, providing a Docker-compatible interface for container lifecycle management. It supports running containers with the same command syntax and flags as Docker, including multi-container Compose workflows, and enables rootless container execution without host kernel escalation. The tool extends beyond basic container management with several advanced distribution and security capabilities. It can start containers before full image download by fetching only metadata and on-demand layers from eStargz-f
ShadowsocksR Android Client is an Android VPN application and secure proxy client designed to route mobile network traffic through an external server. Its primary purpose is to encrypt data and bypass internet restrictions and censorship on Android devices. The application establishes secure tunnels using the ShadowsocksR protocol to mask network activity and maintain privacy. It functions by masking traffic and encrypting data between the mobile device and a remote proxy server to circumvent regional firewalls and connectivity blocks. The software implements a system-level network wrapper u
The AWS SDK for Go is a software development kit and cloud infrastructure library used to programmatically interact with AWS cloud services. It provides a programmatic interface for authenticating requests, executing operations against regional endpoints, and automating the creation and management of cloud resources. The toolkit utilizes model-driven code generation to create service clients and employs a session-based configuration system to share credentials and global settings across those clients. It implements signature-based request authentication to verify identity and integrity throug
Flipper is a portable, multi-protocol hardware security tool designed for the analysis, capture, and emulation of wireless and physical access signals. It functions as a platform for security research and hardware experimentation, enabling users to interact with radio frequency, infrared, and near-field communication systems. The device distinguishes itself through its modular firmware architecture and script-based execution engine, which allow for the automation of complex signal transmissions and keystroke injection sequences. By utilizing direct hardware manipulation and event-driven polli
Photon is a command-line web crawler designed for security reconnaissance and information gathering. It systematically traverses websites to discover URLs, map domain infrastructure, and identify associated subdomains by retrieving DNS records. The tool distinguishes itself through its ability to perform deep content analysis, including the extraction of sensitive data such as API keys and authentication tokens using user-defined regular expressions. It supports offline inspection by cloning crawled web content to the local filesystem, allowing for structural analysis without additional netwo
Ubicloud is an open-source cloud infrastructure platform that provides a unified control plane for provisioning and managing virtual machines, container clusters, and managed databases. It functions as an infrastructure-as-code provider, utilizing declarative configuration files to automate the deployment and scaling of compute, networking, and storage resources across cloud environments. The platform distinguishes itself by integrating a dedicated managed PostgreSQL database service that automates backups, read replicas, and high-availability configurations. It also features a container orch