Knock
| Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
|---|---|---|---|---|---|---|---|---|---|---|
| Coredns | 10,448 | 81 | 417 | 15 hours ago | 271 | September 08, 2022 | 68 | apache-2.0 | Go | |
| CoreDNS is a DNS server that chains plugins | ||||||||||
| React Redux Realworld Example App | 5,183 | a year ago | 88 | mit | JavaScript | |||||
| Exemplary real world application built with React + Redux | ||||||||||
| Ssh2 | 5,062 |  | 3,182 | 1,188 | 24 days ago | 100 | June 11, 2022 | 96 | mit | JavaScript |
| SSH2 client and server modules written in pure JavaScript for node.js | ||||||||||
| Organizr | 4,290 | 2 days ago | 25 | gpl-3.0 | PHP | |||||
| HTPC/Homelab Services Organizer - Written in PHP | ||||||||||
| Vantage | 3,458 |  | 47 | 34 | 6 years ago | 51 | June 02, 2016 | 15 | mit | JavaScript |
| Distributed, realtime CLI for live Node apps. | ||||||||||
| Web Socket Js | 2,704 | 4 | 6 years ago | April 03, 2014 | 29 | bsd-3-clause | JavaScript | |||
| HTML5 Web Socket implementation powered by Flash | ||||||||||
| Server | 2,644 | 2 months ago | 75 | mit | JavaScript | |||||
| server for localtunnel.me | ||||||||||
| Py Kms | 1,787 | 4 months ago | 25 | unlicense | Python | |||||
| KMS Server Emulator written in Python | ||||||||||
| Start Server And Test | 1,393 |  | 751 | 726 | 15 days ago | 61 | September 02, 2021 | 72 | mit | JavaScript |
| Starts server, waits for URL, then runs test command; when the tests end, shuts down server | ||||||||||
| Hamms | 1,212 | 6 years ago | 10 | November 24, 2014 | mit | Python | ||||
| Malformed servers to test your HTTP client | ||||||||||
knock: A port-knocking implementation
Copyright (c) 2004, Judd Vinet [email protected]
ABOUT
This is a port-knocking server/client. Port-knocking is a method where a server can sniff one of its interfaces for a special "knock" sequence of port-hits. When detected, it will run a specified event bound to that port knock sequence. These port-hits need not be on open ports, since we use libpcap to sniff the raw interface traffic.
BUILDING
To build knockd, make sure you have libpcap and the autoconf tools installed. Then run the following:
$ autoreconf -fi
$ ./configure --prefix=/usr/local
$ make
$ sudo make install
EXAMPLE
The example below could be used to run a strict (DENY policy) firewall that can only be accessed after a successful knock sequence.
- Client sends four TCP SYN packets to Server, at the following ports: 38281, 29374, 4921, 54918
- Server detects this and runs an iptables command to open port 22 to Client.
- Client connects to Server via SSH and does whatever it needs to do.
- Client sends four more TCP SYN packets to Server: 37281, 8529, 40127, 10100
- Server detects this and runs another iptables command to close port 22 to Client.
KNOCKING CLIENTS
The accompanying knock client is very basic. If you want to do more advanced knocks (eg, setting specific tcp flags) then you should take look at more powerful clients.
OTHER IMPLEMENTATIONS
Here are some other implementations of port-knocking:
