Open Source Go Tunneling Software - Page 2
Sort By:
Go Tunneling Software
View 8796 business solutionsBrowse free open source Go Tunneling Software and projects below. Use the toggles on the left to filter open source Go Tunneling Software by OS, license, language, programming language, and project status.
-
$300 in Free Credit Towards Top Cloud ServicesStart your project in minutes. After credits run out, 20+ products include free monthly usage. Only pay when you're ready to scale.
-
Our Free Plans just got better! | Auth0You asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your security. Auth0 now, thank yourself later.
-
1
WebTTY
Share a terminal session over WebRTC
WebTTY is a terminal-sharing tool that lets a user share an interactive shell session over WebRTC. It is useful for pair programming, collaborative debugging, remote help, or accessing systems behind NAT without setting up a traditional proxy server. The project includes a command-line workflow and an in-browser client, so a session can be joined through a static web page when needed. It supports custom commands, allowing users to share a shell, a tmux session, or another terminal-based process. The tool also includes non-interactive and one-way connection options for specialized workflows such as attaching to a build server session. webtty is experimental but practical, combining Go, WebRTC, and browser-based terminal access into a lightweight collaboration tool. -
2
subnet
Simple, auditable & elegant VPN, built with TLS mutual authentication
subnet is a simple VPN client and server project designed to make private networking more approachable. It focuses on creating an auditable VPN implementation rather than a large enterprise networking platform. The project provides both server and client behavior, allowing users to connect machines through a managed private network path. Its README notes that the project works, but also warns that it has not received thorough review and may hit performance limits above roughly 100 Mbps. Because of that, it is better understood as an educational or experimental VPN project than a first choice for production infrastructure. Its value comes from its readable design, minimalism, and focus on helping users understand VPN behavior without excessive complexity. -
3
Chisel
A fast TCP/UDP tunnel over HTTP
Chisel is a lightweight tunneling tool designed to move TCP and UDP traffic through HTTP while securing the connection with SSH. It packages both client and server functionality into a single Go-based executable, which makes it practical for fast deployment across different environments. The project is especially useful when direct network access is restricted but HTTP or HTTPS traffic is still allowed. It can expose internal services, create secure endpoints, and support reverse forwarding when the reachable side needs to initiate the tunnel. Chisel also supports proxy-aware setups, including SOCKS5 and HTTP CONNECT scenarios. Its design favors simplicity, portability, and reliable reconnection behavior for practical network tunneling workflows. -
4
Clash
A rule based proxy in Go
Clash is an open-source rule-based proxy and networking tool written in Go that allows users to route internet traffic through multiple proxy protocols based on configurable rules. It is designed to give users fine-grained control over how different types of traffic are handled, enabling selective routing, filtering, or blocking depending on domains, IP addresses, or geographic conditions. The system supports multiple proxy protocols and can act as a local proxy server for HTTP, HTTPS, and SOCKS connections, making it compatible with a wide range of applications and devices. Clash uses a configuration-driven approach, where users define proxy groups, routing rules, and fallback strategies to optimize performance or bypass restrictions. It also includes features such as GeoIP-based routing and dynamic proxy selection, allowing traffic to be automatically directed through the most appropriate route. -
Go From AI Idea to AI App FastAccess Gemini 3 and 200+ models. Build chatbots, agents, or custom models with built-in monitoring and scaling.
-
5
Mole
CLI application to create ssh tunnels focused on resiliency
Mole is a command-line application for creating SSH tunnels with an emphasis on resilience and user experience. It is designed to help users access or expose services that are behind firewalls, private networks, or otherwise unreachable from the current machine. Mole uses SSH access to a jump server as the bridge between the user and the target service. It simplifies common tunneling workflows that would otherwise require remembering long SSH commands and port-forwarding flags. The project is useful for developers, operators, and administrators who frequently connect to internal databases, dashboards, or web services through secure tunnels. Its focus is not to replace SSH, but to make SSH tunneling more reliable, readable, and easier to manage. -
6
Pingtunnel
Pingtunnel is a tool that send TCP/UDP traffic over ICMP
Pingtunnel is a Go-based tunneling tool that sends TCP and UDP traffic over ICMP. It is designed for experimental, research, and network-study scenarios where ICMP transport is being explored as an alternative path for traffic forwarding. The project uses a client and server model, with the server typically requiring a publicly reachable host. It can carry application traffic through ICMP echo-style communication, which makes it distinct from common TCP, UDP, HTTP, or DNS tunnel tools. Because the tunnel traffic is not inherently presented as encrypted, sensitive usage should rely on secure protocols layered above it. pingtunnel is best understood as a specialized transport experiment for moving traffic through ICMP rather than a full privacy or security solution. -
7
Venom
A Multi-hop Proxy for Penetration Testers
Venom is a Go-based multi-hop proxy tool designed for authorized penetration testing, red-team labs, and security education. It helps operators connect multiple nodes and use them as stepping stones for routing traffic across segmented internal networks. The project uses an admin-and-agent architecture, allowing the controller to manage connected nodes and build proxy chains. Venom is useful for studying pivoting, internal routing, SOCKS proxying, and controlled traffic relay in lab or approved assessment environments. It supports several connection and forwarding behaviors, giving testers flexibility when working with different network paths. Because of its security-testing focus, it should only be used in environments where the user has explicit permission. -
8
zoro
zoro can help you expose local server to external network
Zoro is a Go-based tunneling tool for exposing local services to an external network. It supports TCP and UDP forwarding, which makes it useful for HTTP, HTTPS, SSH, DNS, and other network services. The project follows a simple client-and-server model where the remote server opens an external port and forwards traffic back to a local service. It also includes HTTPS-specific server and client modes that can map local HTTP services to subdomains under a configured domain. Zoro is designed around minimal configuration, making it practical when users need a quick way to publish a private service without a full reverse proxy stack. Its main value is straightforward local-to-public service exposure across different protocol types. -
9
Drip
Self-hosted tunneling solution to expose localhost securely
Drip is an open-source, self-hosted tunneling solution that lets you expose local services to the internet securely on your own terms. Inspired by the idea of “lighting a small lamp on your network,” Drip creates encrypted tunnels through your own infrastructure without relying on third-party servers, giving you full control over traffic direction and network endpoints. The project supports unlimited tunnels and bandwidth, making it suitable for both development and production scenarios where conventional reverse proxies may not suffice. It is written primarily in Go, which enables high performance and cross-platform deployment with minimal overhead. Drip includes a rich command-line interface for configuring, launching, and managing tunnels and supports transport protocol selection and access control features. -
MongoDB Atlas runs apps anywhereMongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
-
10
Weron
Overlay networks based on WebRTC.
Weron is a peer-to-peer overlay network built using WebRTC and WebSockets, enabling remote access and tunneling between machines behind NATs without the need for centralized servers. It uses Golang on the backend and supports secure connections using WireGuard-compatible encryption. Weron allows developers to create scalable mesh or point-to-point networks for applications like remote desktop, Kubernetes access, or collaborative tools—all without requiring public IPs or complicated port forwarding. -
11
tls SNI injector iOS Public Free Server
all to the world
TCP Over SSL Tunnel TCP Over SSL Tunnel is a free SSL tool with SNI Host (Spoof Host) support ( SSL Injector ). ## License This project includes some open-source components. This software is sold as a proprietary product. A license to use this software is granted only to those who have completed the payment process. For full license terms, please refer to the [Proprietary-License](./LICENSE) file. -
12
GSnova
Private proxy solution & network troubleshooting tool
GSnova is a high-performance proxy tool for bypassing internet censorship and securing network traffic through a range of supported transport protocols. It acts as a multi-protocol client/server proxy that can tunnel traffic over TLS, WebSocket, KCP, QUIC, and SSH. GSnova is optimized for resilience and speed under restrictive network conditions and supports multiple fronting strategies and obfuscation techniques. It's particularly suited for users in highly censored environments and developers building resilient networking tools. -
13
Go HTTP tunnel
Fast and secure tunnels over HTTP/2
Go HTTP tunnel is a reverse tunnel based on HTTP/2. It enables you to share your local host when you don't have a public IP. The tunnel client tunnel requires a configuration file, by default it will try reading tunnel.yml in your current working directory. If you want to specify other file use -config flag. A client opens TLS connection to a server. The server accepts connections from known clients only. The client is recognized by its TLS certificate ID. The server is publicly available and proxies incoming connections to the client. Then the connection is further proxied in the client's network. The tunnel is based on HTTP/2 for speed and security. There is a single TCP connection between the client and server and all the proxied connections are multiplexed using HTTP/2. -
14
Ligolo-ng
An advanced, yet simple, tunneling/pivoting tool
Ligolo-ng is a simple, lightweight and fast tool that allows pentesters to establish tunnels from a reverse TCP/TLS connection using a tun interface (without the need of SOCKS). When running the relay/proxy server, a tun interface is used, packets sent to this interface are translated and then transmitted to the agent's remote network. You need to download the Wintun driver (used by WireGuard) and place the wintun.dll in the same folder as Ligolo. You can listen to ports on the agent and redirect connections to your control/proxy server. You can easily hit more than 100 Mbits/sec. Here is a test using iperf from a 200Mbits/s server to a 200Mbits/s connection. -
15
Network Flight Simulator
A utility to safely generate malicious network traffic patterns
flightsim is a lightweight utility used to generate malicious network traffic and help security teams to evaluate security controls and network visibility. The tool performs tests to simulate DNS tunneling, DGA traffic, requests to known active C2 destinations, and other suspicious traffic patterns. -
16
Skydive
An open source real-time network topology and protocols analyzer
Skydive is an open source real-time network topology and protocols analyzer providing a comprehensive way of understanding what is happening in your network infrastructure. Captures network topology, interface, bridge, and namespace attributes and keeps the history of all the modifications. Distributed probe, L2-L4 classifier, GRE, VXLAN, GENEVE, MPLS/GRE, MPLS/UDP tunneling support. Ability to follow a flow along a path in the topology. Support for external SDN Controllers or container-based infrastructure, OpenStack, OpenContrail, Docker. Supports extensions through API. Distributed, scalable, easy to deploy, only one static binary. -
17
SuperEdge
An edge-native container management system for edge computing
SuperEdge is an open-source container management system for edge computing to manage compute resources and container applications in multiple edge regions. These resources and applications, in the current approach, are managed as one single Kubernetes cluster. A native Kubernetes cluster can be easily converted to a SuperEdge cluster. SuperEdge extends the powerful container orchestration and scheduling capabilities of Kubernetes to the edge. It makes non-intrusive enhancements to Kubernetes and is fully compatible with all Kubernetes APIs and resources. Kubernetes users can leverage SuperEdge easily for edge environments with minimal learning. When the network connection between the edge and the cloud is unstable, or the edge node is offline, the node can still work independently. But at this time, edge node can't do anything associated with writing operation, such as create/delete/update. -
18
pgrok
HTTP/TCP reverse tunnel solution through SSH remote port forwarding
The pgrok is a multi-tenant HTTP/TCP reverse tunnel solution through remote port forwarding from the SSH protocol. This is intended for small teams that need to expose the local development environment to the public internet, and you need to bring your own domain name and SSO provider. It gives a stable subdomain for every user and gated by your SSO through the OIDC protocol. Think of this as a bare-bones alternative to the ngrok's $65/user/month enterprise tier. Trying to put this behind a production system will blow up your SLA. For individuals and production systems, just buy ngrok, it is still my favorite.
