30 open-source projects similar to shadowsocksrr/shadowsocksr-android, ranked by how many features they have in common. Compare stars, activity and what each one does to find the best Shadowsocksr Android alternative.
Shadowsocks-android is a secure tunneling application and SOCKS5 proxy client for Android. It routes device network traffic through a Shadowsocks proxy server to encrypt data, mask the user's internet origin, and bypass network restrictions. The client functions as an Android VPN service, creating a virtual network interface to intercept and redirect all outgoing device traffic. It supports the integration of external binary plugins to extend tunnel capabilities with custom transport protocols and traffic obfuscation methods. The project manages network routing through a local SOCKS5 server
ShadowsocksX-NG is a macOS application that functions as a Shadowsocks VPN client, SOCKS5 proxy manager, and PAC routing client. It is designed to bypass network restrictions by managing connections to Shadowsocks proxy servers through a graphical user interface. The project provides mechanisms for importing server profiles via QR codes and URLs, and it supports the integration of third-party plugins to modify network traffic. It also includes a local HTTP proxy server that translates SOCKS5 traffic into HTTP proxy format for application compatibility. The utility covers network traffic rout
REALITY is a censorship circumvention tool and network traffic obfuscator designed to bypass internet filters. It functions as a secure tunneling protocol that masks connection patterns and identity by mimicking the TLS handshakes of legitimate target websites. The system removes server-side TLS fingerprints to hide encrypted traffic from network monitoring tools and deep packet inspection. It employs a website mimicking proxy to present valid handshakes and forward traffic to destination servers, masquerading the connection as a legitimate site visit. The project incorporates a quantum-resi
Chisel is a network tunneling tool that facilitates secure communication by encapsulating TCP and UDP traffic within HTTP requests. It functions as a connection multiplexer, consolidating multiple logical network streams into a single persistent connection to improve throughput and reduce overhead. By leveraging standard web protocols, the system enables firewall traversal and provides a mechanism for remote port forwarding and proxying. The project distinguishes itself through its focus on resilient connectivity and granular access control. It maintains persistent network sessions across uns
SagerNet is an Android VPN client that routes device traffic through proxy protocols to bypass internet censorship and access restricted content. It functions as a censorship circumvention tool, distributing anti-censorship platforms and helping users evade network restrictions, while also serving as a platform for studying internet censorship patterns through scientific research. The application routes network traffic through proxy protocols by hooking into the Android VpnService API to create a local VPN tunnel, running persistently as a foreground service with a notification to prevent the
Shadowsocks-iOS is a proxy client for iOS devices that implements the Shadowsocks protocol to tunnel network traffic through a secure, encrypted relay. Its primary purpose is to route device traffic through a proxy server to bypass network censorship and regional restrictions. The project establishes secure proxy tunneling to protect data from local monitoring and hide internet activity. It manages iOS network traffic routing using custom encryption protocols to avoid network interference. The implementation utilizes a system-level network extension framework and a local virtual network inte
ShadowsocksR Proxy Client is a Windows network proxy manager designed to create encrypted tunnels to remote servers to bypass network restrictions. It functions as a Socks5 proxy client that routes system traffic through secure protocols for anonymity and censorship circumvention. The project provides a desktop interface for Windows network proxy administration, allowing users to store, organize, and switch between multiple remote server configurations. It specifically automates traffic routing via a proxy auto-config client, using PAC files to determine which web traffic enters the encrypted
A Rust port of shadowsocks
Nekoray is a cross-platform desktop application designed to manage secure network tunnels and proxy configurations. It functions as a graphical interface that routes system traffic through encrypted remote connections to facilitate private browsing and access to geo-restricted content. The application integrates established networking cores to handle complex traffic routing and protocol implementation. By utilizing a local proxy server architecture, it intercepts system traffic and directs it through user-defined rules, allowing for granular control over how data is filtered and transmitted.
This project is a V2Ray configuration repository that provides a collection of pre-configured server settings and connection strings. It serves as a curated set of remote proxy addresses and security metadata used to establish encrypted network tunnels for routing internet traffic. The project focuses on the distribution of Base64-encoded configuration strings, which allow for the retrieval and deployment of server settings to establish secure connections. It includes tools for latency benchmarking, measuring response times and pinging configuration links to filter and rank the most performan
This project is a privacy-focused VPN manager and WireGuard client application designed to establish encrypted tunnels that mask user IP addresses and activity. It focuses on maintaining anonymity through a system that supports account creation without personal identifying information. The application distinguishes itself with advanced privacy tools, including a multi-hop orchestrator for routing traffic through multiple sequential servers and a network traffic obfuscator that uses Shadowsocks, TCP, and QUIC to bypass deep packet inspection and censorship. It also implements quantum-resistant
Shadowsocks-Windows is a desktop proxy manager that provides a graphical interface for configuring system-wide network routing. It functions as a local SOCKS5 or HTTP proxy server, intercepting outbound traffic through system-level injection to route requests through secure, encrypted remote tunnels. The application distinguishes itself through a modular architecture that supports plugin-based transport extensibility, allowing users to integrate external binaries for custom traffic obfuscation and specialized cryptographic protocols. It also enables high-availability networking by automatical
shadowsocks-libev is an event-driven network daemon that provides an encrypted SOCKS5 proxy. It functions as a lightweight proxy server using a non-blocking event loop to route TCP and UDP traffic through encrypted tunnels to bypass network restrictions. The project implements a transparent proxy gateway capable of intercepting outbound packets at the network layer, allowing system traffic to be redirected through the encrypted tunnel without per-application configuration. It also includes a daemon process manager to control multiple proxy server instances as child processes via local communi
V2ray-for-Doprax is a containerized proxy server deployer designed to install and configure V2Ray servers on Doprax infrastructure. It functions as a VPN orchestrator that utilizes VMess and VLess protocols to route network traffic and bypass network restrictions. The project implements automated IP rotation and switching to maintain connectivity and avoid detection by network blocks. It secures communication through a protocol manager that handles unique identifiers and camouflage-based path masking to hide proxy traffic. The system manages secure network tunneling and traffic routing using
This project is a comprehensive technical documentation site and reference manual for configuring and deploying WireGuard VPN tunnels and interfaces. It serves as a guide for establishing encrypted network connections between peers using public key authentication to secure data traffic across untrusted networks. The documentation provides specific technical manuals for implementing NAT traversal solutions, including UDP hole punching and the use of bounce servers to connect peers behind restrictive firewalls. It also includes detailed guides on tunnel implementation and protocol references fo
Trojan is a censorship circumvention tool and TLS proxy server designed to bypass network restrictions by imitating legitimate web services. It functions as a TLS traffic obfuscator that masks proxy activity by mimicking the handshake and data flow of standard HTTPS requests. The system disguises network traffic as common web browsing to avoid deep packet inspection. It achieves this by wrapping TCP and UDP data within TLS encryption and forwarding unauthenticated or unauthorized requests to a legitimate destination website to hide the proxy's purpose. The project provides a tunnel that conv
This project is a censorship circumvention utility designed to maintain connectivity to restricted online services by evading deep packet inspection. It functions as a network traffic redirection service that manipulates packet headers at the transport layer to bypass regional network filters and censorship systems. The tool distinguishes itself by providing granular control over traffic management, allowing users to define specific lists of domains and IP addresses for targeted interception. By applying custom bypass strategies only to these designated hosts, the utility ensures that the rem
GoodbyeDPI is a censorship circumvention utility designed to bypass deep packet inspection and restrictive network filtering. It functions as a background engine that intercepts and modifies network traffic at the kernel level, allowing users to maintain connectivity in environments where specific protocols or web content are blocked. The tool employs active manipulation techniques to confuse inspection hardware, including TCP stream fragmentation, HTTP header obfuscation, and the injection of out-of-order packets. By altering packet structures and dropping specific redirection patterns, it m
SoftEtherVPN is a multi-protocol virtual private network server that provides secure remote access and site-to-site connectivity. It functions as a virtual network gateway, enabling encrypted communication across public internet connections while supporting both Layer 2 Ethernet bridging and Layer 3 IP routing to manage traffic between connected devices. The platform is designed to maintain connectivity in restrictive network environments by bypassing firewalls and NAT devices through techniques such as HTTPS, ICMP, and DNS-based tunneling. It eliminates the requirement for static public IP a
wstunnel is a tool that tunnels arbitrary TCP traffic through WebSocket connections, enabling communication across restrictive firewalls and proxies. It operates as both a client and server, encapsulating TCP data within WebSocket binary frames and multiplexing multiple connections over a single WebSocket link. The tool supports mutual TLS authentication, requiring clients to present signed certificates for verification before establishing a tunnel, and provides shared secret access control and tunnel forwarding restrictions for additional security. The project distinguishes itself by offerin
Bore is a TCP tunneling tool and localhost exposure utility used to route local TCP ports to public IP addresses. It functions as a TCP port forwarder that makes services running on a local machine accessible over the internet via a remote listener. The project includes a secure tunnel server implementation that manages incoming connections and routes traffic to connected local clients. It utilizes shared secret handshakes to authorize tunnel creation and restrict access to authorized users. The system provides capabilities for firewall bypass networking and remote tunnel hosting. It manages
MasterDnsVPN is a DNS tunneling VPN and network censorship bypass tool that encapsulates network traffic within DNS queries to circumvent restrictive firewalls. It functions as a secure tunneling protocol and SOCKS5 proxy server, allowing local application traffic to be routed through a secure tunnel to a remote destination. The project distinguishes itself through a DNS resolver load balancer that distributes traffic across multiple resolvers based on latency and packet loss scoring. It further secures and masks traffic using symmetric payload encryption—supporting ChaCha20, AES-GCM, and XOR
This project provides an open-source VPN client that creates an unrestricted tunnel to bypass internet censorship without fees, registration, speed caps, or data limits. It offers free, unlimited VPN tunneling with no sign‑up required, enabling access to blocked websites and unrestricted browsing. The application uses the WireGuard protocol for encrypted traffic routing, backed by kernel‑level packet forwarding to minimize overhead. It includes automatic server discovery that selects the most responsive server based on real‑time latency, a connection keepalive mechanism to detect and restore
Oblivion is an encrypted tunneling service and internet privacy tool designed to route network traffic through private encrypted tunnels. It functions as a network privacy gateway that masks user identity and encrypts web traffic to prevent tracking and unauthorized surveillance. The project acts as a secure network proxy that combines end-to-end encryption with latency-optimized routing to increase data throughput and reduce network lag. This infrastructure allows for the masking of a device's public identity by relaying connections through a private network. The system provides capabilitie
naiveproxy is a censorship circumvention tool and traffic obfuscation proxy. It functions as an HTTP/2 transport proxy that tunnels SOCKS5 traffic over HTTP/2 to hide network activity and bypass network blocks. The project distinguishes itself by mimicking standard web browser requests to evade deep packet inspection. It employs traffic camouflage techniques such as redirecting unauthorized probing requests to decoy web servers and using randomized packet padding to defeat length-based traffic analysis. The software provides a local SOCKS5 proxy endpoint, credential-based request authenticat
Ockam is a zero-trust networking framework designed to secure data transit between distributed applications using an identity-based network overlay. It provides the primitives necessary to establish mutually authenticated and end-to-end encrypted connections, removing the reliance on traditional network-layer security. The project is distinguished by its use of attribute-based access control and verifiable credentials to manage trust at scale. It implements cryptographic identity rotation to maintain identity continuity and integrates with hardware-backed key management systems to secure priv
Vibetunnel is a remote shell infrastructure project consisting of a headless terminal server, a remote shell manager, and a web-based terminal proxy. It provides the backend and connectivity tools necessary to execute processes on cloud instances and stream the resulting output to a web browser. The system distinguishes itself through secure tunneling connectivity and real-time terminal state synchronization. It uses encrypted tunnels to expose local shell environments to the internet and includes a terminal session recorder to capture activity in a playback-ready format for sharing and revie
ShadowsocksX-NG is a macOS application that functions as a Shadowsocks proxy client to establish encrypted tunnels for bypassing network censorship. It operates as an encrypted tunnel manager that allows for the configuration of secure ciphers and the import of proxy server profiles. The client includes a proxy converter that transforms SOCKS5 traffic into HTTP proxy traffic to provide compatibility for applications that do not support SOCKS. It also integrates a traffic steering system using Proxy Auto-Configuration files to automatically determine which network requests bypass the proxy. T
This repository is a technical documentation site and a collection of guides and references for implementing networking, security, and cloud infrastructure services. It functions as a static-site generated portal and a headless content platform, separating source files from the presentation layer to enable flexible rendering. The project utilizes markdown-based documentation stored in a version-controlled Git repository. It provides specialized technical content including an AI platform documentation for building agents and managing inference, a cloud infrastructure guide for DNS and CDN conf
Outline is a server that manages and runs Shadowsocks proxy instances, each isolated inside its own Docker container, to provide encrypted internet access. It is designed to bypass censorship by routing traffic through secure tunnels that use AEAD cipher encryption and traffic obfuscation to resist detection. Access to the proxy servers is controlled through a REST API that allows administrators to create, list, and revoke cryptographic access keys. The server automates the provisioning and configuration of proxy servers on cloud platforms like DigitalOcean, simplifying deployment through a m