Skip to content

Files

Latest commit

 

History

History
18 lines (11 loc) · 738 Bytes

README.md

File metadata and controls

18 lines (11 loc) · 738 Bytes

NotWireGuard for Linux 3.10+

There are several ways DPI can detect WireGuard traffic

  • The handshake initiation, response and cookie message have fixed sizes
  • All messages have 4 byte tag where the first byte indicates message type [1-4] and remaining three bytes are zeroes.
  • Handshake packet header contains sender and receiver indexes which are sent unencrypted and can be tracked.

Packet is obfuscated using two techniques

  • Random junk bytes are appended to handshake and cookie packets
  • Packet header is encrypted with blake2s hash of interface public key and random nonce.

More information may be found at WireGuard.com.

License

This project is released under the GPLv2.