HN Showcase
Back to browse
GitHub Repository

Lightweight SPA TOTP port knocking daemon

4 starsC

Totpgate – Single-packet authorization via TOTP

by tpimenta·May 30, 2026·1 point·0 comments
Visit ProjectView on HN

AI Analysis

●●SolidWizardryNiche GemSolve My Problem

Direct netlink manipulation beats fwknop complexity for single-packet authorization.

Strengths
  • Direct netlink communication avoids libnl dependency bloat and external binary requirements.
  • Capability dropping lets the daemon manipulate rules without running as root.
  • TOTP prevents replay attacks common in traditional port knocking sequences.
Weaknesses
  • Linux-only due to netlink reliance, no Windows or macOS support.
  • Client clock skew could lock users out without NTP synchronization.
Category
Security
Target Audience

Sysadmins, DevOps engineers, security-conscious developers

Similar To

fwknop · PortKnocker

Post Description

I created a stand-alone SPA port knocking using TOTP algorithm. It also don't rely on any external binary.

Similar Projects

AI/ML●●●Banger

Grantex – Delegated authorization protocol for AI agents

OAuth-equivalent for agents: cryptographic identity, scoped grants, audit trail.

Zero to OneBig Brain
mishrasanjeev
203mo ago
Developer Tools●●Solid

Timebound AWS IAM Permissions for Claude Code

It turns a messy manual flow — handing credentials to an agent and hoping you remember to revoke them — into a neat MCP broker that issues scoped AWS STS creds on demand, with a setup wizard and claude mcp integration. No backend to manage and creds auto-expire, which is a pragmatic, low-friction approach; I'd like to see first-class multi-account orchestration, audit logs, and a library of policy templates next.

Niche GemSolve My Problem
arrsingh
204mo ago