WireGuard quickly became a popular VPN protocol: simple, fast, cleanly designed, and free of heavy legacy baggage. It stood out against monsters like IPsec and OpenVPN. But, as often happens, its strength eventually became a weakness. The protocol turned out to be not only convenient and predictable, but also easy to recognize, which makes it relatively easy to… Read More »
On April 8, 2026, WireSock Secure Connect 3.4.4 was released as the first official version in the 3.x branch. For us, this is more than just another update. It marks a transition to a new architectural foundation, one with clearer separation between components, stronger isolation, and new capabilities that both everyday users and administrators have been asking for… Read More »
A practical way to run AmneziaWG under your own control, with script-based deployment, local-first administration, and an optional web UI for routine user management. In short: if you do not want to route your traffic through opaque third-party VPN infrastructure, a self-hosted AmneziaWG setup is a reasonable alternative. This approach keeps deployment simple: start with a scriptable VPN… Read More »
When you find yourself abroad — on vacation, a business trip, or after relocating — you may suddenly discover that your usual Netflix library has “shrunk.” Some series and movies disappear, others appear, and certain premieres are released only in the US or the UK. The reason is regional licensing: Netflix catalogs differ from country to country, so… Read More »
In this post we’ll walk through a stripped-down Dante SOCKS5 setup designed specifically for running WireGuard WARP traffic through a proxy. The idea is simple: we don’t need a full SOCKS proxy that handles every possible connection — just a lean, safe configuration that lets WARP send its UDP packets while blocking everything else. This keeps the setup… Read More »
After my post about a CancelIoEx bug, I decided to cover another defect in Windows system components—this time in IP Helper (the part of the Windows API responsible for network statistics and connection tables). Among other things, this API lets you map packets intercepted at the network level to local processes. You’d think it’s a battle-tested mechanism running… Read More »
I don’t consider myself a Go expert and have only occasionally used this language, but I’d like to share a story about a bug at the intersection of Go and the Windows kernel that I was “lucky” enough to encounter. This bug is still present (GitHub issue #64482), although there’s reason to hope it will be fixed in… Read More »
In recent months, I’ve continued to encounter cases where traditional VPN connections are becoming less reliable or outright blocked. For users who rely on remote access to home infrastructure or private networks, especially from regions with increasing traffic inspection or censorship, this creates a tangible threat to continuity. My own setup — a home server behind a WireGuard… Read More »
In a sense, this article is a continuation of a series of materials about implementing a WireGuard client based on Cloudflare BoringTun and a custom packet filter for Windows. This approach differs from the conventional method used in most VPN clients, which typically rely on a virtual network interface. Instead, WireGuard integration here occurs entirely in userspace, with… Read More »
In our earlier post, we discussed bypassing Egypt’s WireGuard VPN ban by routing handshake packets through a SOCKS5 proxy. However, recent developments indicate this method is no longer sufficient. Together with Shady Nagy, we’ve researched and tested a new approach. In the preliminary WireSock VPN Client v1.2.41, a new parameter, Socks5ProxyAllTraffic, has been added. When set to true… Read More »