boratanrikulu

boratanrikulu / gecit

Public

DPI bypass tool — eBPF on Linux, proxy on macOS.

censorship censorship-circumvention dpi dpi-bypass ebpf
14
0
69% credibility
Found Apr 05, 2026 at 14 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Go
AI Summary

gecit is a userspace program for Linux and macOS that bypasses ISP deep packet inspection blocks on websites by injecting decoy packets and running a local secure DNS resolver.

How It Works

1
🔒 Internet blocks your sites

You try to visit fun sites like Discord but your provider stops them from loading.

2
💡 Find gecit tool

You hear about a simple helper called gecit that lets you slip past those blocks.

3
📥 Download it

Grab the ready file matching your computer from the download page.

4
🚀 Turn it on

Launch the program with admin okay, and it starts protecting your connections quietly.

5
🌐 Surf without limits

Open your browser – now those blocked sites load just like anywhere else.

6
⏹️ Turn it off

Hit stop, and everything snaps back to how it was before.

Free browsing achieved

You enjoy all your favorite sites anytime, with no hassle or traces left.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 14 to 14 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is gecit?

gecit is a Go-based DPI bypass tool that tricks deep packet inspection middleboxes by injecting fake TLS ClientHello packets with benign SNI like google.com before your real connection. On Linux, it hooks the kernel TCP stack for zero-proxy overhead; on macOS, it sets a system-wide HTTP CONNECT proxy. It also runs a local DoH DNS resolver to counter poisoning, with one-command setup via `sudo gecit run --fake-ttl 8`.

Why is it gaining traction?

Unlike VPNs or full proxies, gecit stays local—no IP hiding or remote servers—focusing purely on desyncing DPI via low-TTL fakes that hit inspectors but expire before servers. Auto-configures DNS, proxy, and fragmentation (Linux), with clean Ctrl+C restore; customizable flags like `--doh` upstream and port targets make tweaking for specific ISPs straightforward. Devs dig the eBPF elegance on Linux for dpi bypass linux/macOS without traffic rerouting.

Who should use this?

Network engineers in censored regions blocking YouTube or Discord via SNI inspection. Linux kernel tinkerers needing dpi bypass openwrt-style tools without rootkit vibes. macOS users facing ISP DPI on daily browsing, especially where proxies suffice over eBPF.

Verdict

Worth a spin for Linux/macOS dpi bypass experiments—excellent README, prebuilts, and demo script, but 14 stars signal early maturity; 0.699999988079071% credibility score reflects low adoption. GPL-3.0, solid for proof-of-concept, skip for production until Windows/TTL auto-detection land.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.