OpenSecAtlas
OPENSECATLAS
11/12 free views
Tool
CLI
Network Security

xiringuito

by ivanilves

1.1Kstars
46forks
34watchers
Updated 8 months ago
About

xiringuito is an SSH-based VPN solution that creates secure network tunnels without traditional VPN servers or complex configuration.

SSH-based "VPN for poors"

Primary Use Case

This tool is designed for users who need quick and easy VPN-like access to remote networks via SSH without setting up dedicated VPN infrastructure. It is ideal for system administrators, developers, or security professionals who want to securely route traffic through an SSH server to access private networks or perform network monitoring and testing.

Key Features
  • Creates VPN tunnels using SSH without needing dedicated VPN servers
  • Supports routing of multiple network ranges simultaneously
  • Works with RTP and other UDP-based protocols transparently
  • Supports low-level IP protocols like OSPF, L2TP, PPP, IGMP, IPSec, ARP
  • Includes a connection manager script called xaval for easier configuration
  • Automatic route discovery via customizable discover-routes script
  • Cross-platform support for Linux and Mac (requires TunTap on Mac)
  • Allows multiple simultaneous tunnels with non-overlapping routes

Installation

  • git clone https://github.com/ivanilves/xiringuito.git
  • cd xiringuito
  • Optionally install globally with sudo make install
  • On Mac, install TunTap for Mac OS X from http://tuntaposx.sourceforge.net/

Usage

>_ ./xiringuito [email protected] 10.0.0.0/8 192.168.0.0/16

Run xiringuito to create an SSH-based VPN tunnel routing traffic to specified network ranges

>_ xiringuito [email protected] 10.0.0.0/8 192.168.0.0/16

Run xiringuito globally after installation to establish the VPN tunnel

>_ sudo make install

Install xiringuito globally for system-wide access

>_ xaval toggle

Use the xaval connection manager to toggle background connection mode (requires passwordless sudo on server)

Security Frameworks
Initial Access
Lateral Movement
Command and Control
Discovery
Defense Evasion
Usage Insights
  • Leverage xiringuito for rapid, low-footprint lateral movement during red team engagements.
  • Integrate with network monitoring tools to detect unauthorized SSH tunnel usage.
  • Use the discover-routes script to automate dynamic network segmentation and reduce attack surface.
  • Employ xaval connection manager to streamline operational efficiency for security teams.
  • Combine with endpoint detection tools to correlate SSH tunnel activity with endpoint behavior for enhanced threat hunting.

Docs Take 2 Hours. AI Takes 10 Seconds.

Ask anything about xiringuito. Installation? Config? Troubleshooting? Get answers trained on real docs and GitHub issues—not generic ChatGPT fluff.

This tool hasn't been indexed yet. Request indexing to enable AI chat.

Admin will review your request within 24 hours

Security Profile
Red Team70%
Blue Team40%
Purple Team60%
Details
LicenseApache License 2.0
LanguageShell
Open Issues39
Topics
vpn
ssh
bastion-host
security
network
access
aws

Related Tools

v2ray-core icon

v2ray-core

v2fly/v2ray-core

Tool

A platform for building proxies to bypass network restrictions.

31.2K
10 months ago
sniffnet icon

sniffnet

GyulyVGC/sniffnet

Tool

Comfortably monitor your Internet traffic 🕵️‍♂️

30.7K
6 months ago
algo icon

algo

trailofbits/algo

Script

Set up a personal VPN in the cloud

30.2K
3 months ago
setup-ipsec-vpn icon

setup-ipsec-vpn

hwdsl2/setup-ipsec-vpn

Script

Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2

26.6K
8 months ago
cilium icon

cilium

cilium/cilium

Tool

eBPF-based Networking, Security, and Observability

23.3K
3 months ago
netbird icon

netbird

netbirdio/netbird

Tool

Connect your devices into a secure WireGuard®-based overlay network with SSO, MFA and granular access controls.

21.0K
3 months ago