GoodbyeDPI: Deep Packet Inspection circumvention utility

1. GoodbyeDPI

   1 143 28,388 3.4 C

   GoodbyeDPI — Deep Packet Inspection circumvention utility (for Windows)

   

   Doesn't work in China, though:

   https://github.com/ValdikSS/GoodbyeDPI/issues/123

2. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

3. GreenTunnel

   2 44 4,840 1.7 JavaScript

   GreenTunnel is an anti-censorship utility designed to bypass the DPI system that is put in place by various ISPs to block access to certain websites.

   

4. wstunnel

   3 16 6,776 7.7 Rust

   Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available

   

5. dsvpn

   4 10 5,687 5.5 C

   A Dead Simple VPN.

   

   Personally I use dsvpn (https://github.com/jedisct1/dsvpn) which is super simple to setup and use, and it's made by the guy who created libsodium.

6. zapret

   5 15 15,482 9.5 C

   DPI bypass multi platform

   

   There is a similar project that supports Linux, but its much more focused on Russian censorship.

   https://github.com/bol-van/zapret

7. AntiZapret-V2Ray

   6 1 44 3.2 Go

   V2Ray rule generator to circumvent censorship by the Russian government and evade DPI

   

   For what it’s worth as well, there are other solutions than whole-network VPNs and such. Personally, I chose to generate a domain list for V2Ray from the Russian government’s blocklist when I lived there [1].

   I prefer to do that typically because it avoids the pain of the ever-growing whitelists and it allows me to keep the traffic encrypted in case someone does actually figure out that you’ve bypassed DPI. And if you use something like V2Ray or ShadowSocks, they’ll disguise the traffic much better than something like OpenVPN typically would, making it less obvious to anyone monitoring that you’re using a proxy in the first place.

   There’s a load of references and pre-generated lists for different needs if anyone else is interested in doing something similar [2].

   [1]: https://github.com/OmarAssadi/AntiZapret-V2Ray

   [2]: https://github.com/v2ray/domain-list-community

8. domain-list-community

   7 2 2,631 9.2 Go

   Community managed domain list (by v2ray)

   

   For what it’s worth as well, there are other solutions than whole-network VPNs and such. Personally, I chose to generate a domain list for V2Ray from the Russian government’s blocklist when I lived there [1].

   I prefer to do that typically because it avoids the pain of the ever-growing whitelists and it allows me to keep the traffic encrypted in case someone does actually figure out that you’ve bypassed DPI. And if you use something like V2Ray or ShadowSocks, they’ll disguise the traffic much better than something like OpenVPN typically would, making it less obvious to anyone monitoring that you’re using a proxy in the first place.

   There’s a load of references and pre-generated lists for different needs if anyone else is interested in doing something similar [2].

   [1]: https://github.com/OmarAssadi/AntiZapret-V2Ray

   [2]: https://github.com/v2ray/domain-list-community

9. wireguard-install

   8 133 11,049 5.8 Shell

   WireGuard VPN installer for Linux servers

   

10. sslh

    9 47 5,080 8.3 C

    Applicative Protocol Multiplexer (e.g. share SSH and HTTPS on the same port)

    

    most the engines out there weren't made for security but performance. It's disturbing and calming to see how easy it is to bypass them. Something that works 100% is to multiplex a channel, changing it protocols after some packages, you do the SSL handshake, than switch it to SSH, I think something like that https://github.com/yrutschle/sslh (couldn't find the real repository that I used, but that one looks similar)

Suggest a related project