Skip to content
/ ghostcp Public
forked from macronut/ghostcp

GhosTCP is a program for Windows that protects the TCP connections from being interfered.

License

LGPL-3.0 license
27 stars 161 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

jonm58/ghostcp

BranchesTags
 
 

Repository files navigation

🌏: English, 简体中文

GhosTCP

GhosTCP is a program for Windows that protects the TCP connections from being interfered.

Compile

git clone https://github.com/macronut/ghostcp
cd ghostcp
GOOS=windows GOARCH=amd64 go build

Download WinDivert from https://github.com/basil00/Divert/releases/v1.4.3

Run as Client

run tcpioneer.exe to start the program

Run as Service

run install.bat to install the service

How to configure

  server=IP:Port    #domain in config will use this DNS(DNSoverTCP),if not set it will use the DNS of system
  ipv4=true/false   #domain below will enable/disable IPv4
  ipv6=true/false   #domain below will enable/disable IPv6
  subdomain=*       #set the depth of domain search, default 2
  ttl=*             #the fake tcp packet will use this TTL
  domain=ip,ip,...  #this domain will use these IPs
  domain            #this domain will be resolved by DNS
  ip:port           #this ip:port will send fake packet when creating connection
  method=*          #the methods to modify TCP

methods:

  ttl               #The fake TCP packet will use the ttl you set, you need to specify its value above, such as ttl=15
  w-md5             #the fake tcp packets will have a wrong md5 option
  w-csum            #the fake tcp packets will have a wrong checksum
  w-ack             #the fake tcp packets will have a wrong ACK number
  tfo               #SYN packet will take a part of data when the server supports TCP Fast Open
  
  df                #the true tcp packets will not be fragmented
  https             #the domain below will be move to https when using http on port 80
  sat               #Continue injecting TCP packets until the TLS handshake is completed
  mode2             #Inject TCP packets in another order

How to get the TTL

tracert 8.8.8.8

set the ttl longer than the TTL to the node whose IP address is in your area and shorter than the TTL to the server.

Which DNS server should I use

nslookup -vc t.co {dns-server}

this command can test whether the server supports DNS over TCP.

  • Google 8.8.8.8 8.8.4.4 2001:4860:4860::8888 2001:4860:4860::8844
  • Cloudflare 1.1.1.1 1.0.0.1 2606:4700:4700::1111 2606:4700:4700::1001
  • DNS.SB 185.222.222.222 45.11.45.11 2a09:: 2a11::
  • Quad 101 101.101.101.101 101.102.103.104 2001:de4::101 2001:de4::102
  • NextDNS 45.90.28.71 45.90.30.71 2a07:a8c0::d3:f572 2a07:a8c1::d3:f572 45.90.28.0 45.90.30.0
  • 114 Dns 114.114.114.114 114.114.115.115 114.114.114.119 114.114.115.119 114.114.114.110 114.114.115.110

About

GhosTCP is a program for Windows that protects the TCP connections from being interfered.

Topics

gfw

Resources

Readme

License

LGPL-3.0 license
Activity

Stars

27 stars

Watchers

4 watching

Forks

3 forks
Report repository

Releases 28

v0.14.7-3 Latest
Oct 15, 2024
+ 27 releases

Packages

No packages published

Languages

  • Go 99.9%
  • Batchfile 0.1%