Set up your own IPsec VPN server in just a few minutes, with IPsec/L2TP, Cisco IPsec and IKEv2. An IPsec VPN encrypts your network traffic, so that nobody between you and the VPN server can eavesdrop on your data as it travels via the Internet. This is especially useful when using unsecured networks, e.g. at coffee shops, airports or hotel rooms. We will use Libreswan as the IPsec server, and xl2tpd as the L2TP provider. Quick start: First, prepare your Linux server* with an install of Ubuntu, Debian or CentOS. Use this one-liner to set up an IPsec VPN server: wget https://get.vpnsetup.net -O vpn.sh && sudo sh vpn.sh. Your VPN login details will be randomly generated, and displayed when finished. Optional: Install WireGuard and/or OpenVPN on the same server. See the script in action (terminal recording). Note: This recording is for demo purposes only. VPN credentials in this recording are NOT valid.
FEATURES
ALTERNATIVES
Open source DDoS protection system with centralized policy for network operators.
A Burp Suite extension that formats GraphQL requests for easier reading
Open source security-oriented language for describing protocols and applying security policies on captured traffic.
Passively maps and visually displays ICS/SCADA network topology for network security
A service for better visibility on networking issues in Kubernetes clusters by detecting traffic denied by iptables.
CrowdSec is a behavior detection engine with a global IP reputation network.
Monitors network traffic for suspicious activity and alerts when potential threats are detected.
PINNED

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.