Secure Client for exposing TLS (aka SSL) secured services as plain-text connections locally. Also ideal for multiplexing a single port with multiple protocols using SNI.
Secure Client for exposing TLS (aka SSL) secured services as plain-text connections locally.
Also ideal for multiplexing a single port with multiple protocols using SNI.
Unwrap a TLS connection:
$ sclient whatever.com:443 localhost:3000
> [listening] whatever.com:443 <= localhost:3000
Connect via Telnet
$ telnet localhost 3000
Connect via netcat (nc)
$ nc localhost 3000
cURL
$ curl http://localhost:3000 -H 'Host: whatever.com'
Inverse SSH proxy (ssh over https):
$ sclient ssh user@example.com
(this is the same as a normal SSH Proxy, just easier to type):
$ ssh -o ProxyCommand="sclient %h" user@example.com
Inverse rsync proxy (rsync over https):
$ sclient rsync user@example.com:path/ path/
A poor man's (or Windows user's) makeshift replacement for openssl s_client, stunnel, or socat.
First download and install the current version of node.js
npm install -g sclient
npx sclient example.com:443 localhost:3000
sclient [flags] [ssh|rsync] <remote> [local]
-k, --insecure ignore invalid TLS (SSL/HTTPS) certificates--servername <string> spoof SNI (to disable use IP as <remote> and do not use this option)Bridge between telebit.cloud and local port 3000.
sclient telebit.cloud 3000
Same as above, but more explicit
sclient telebit.cloud:443 localhost:3000
Ignore a bad TLS/SSL/HTTPS certificate and connect anyway.
sclient -k badtls.telebit.cloud:443 localhost:3000
sclient telebit.cloud:443 -
sclient telebit.cloud:443 - </path/to/file
sclient ssh user@telebit.cloud
sclient rsync -av user@telebit.cloud:my-project/ ~/my-project/
printf "GET / HTTP/1.1\r\nHost: telebit.cloud\r\n\r\n" | sclient telebit.cloud:443
Testing for security vulnerabilities on the remote:
sclient --servername "Robert'); DROP TABLE Students;" -k example.com localhost:3000
sclient --servername "../../../.hidden/private.txt" -k example.com localhost:3000
FAQs
Secure Client for exposing TLS (aka SSL) secured services as plain-text connections locally. Also ideal for multiplexing a single port with multiple protocols using SNI.
The npm package sclient receives a total of 312 weekly downloads. As such, sclient popularity was classified as not popular.
We found that sclient demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Socket now supports Scala and Kotlin, bringing AI-powered threat detection to JVM projects with easy manifest generation and fast, accurate scans.
Application Security
/Security News
Socket CEO Feross Aboukhadijeh and a16z partner Joel de la Garza discuss vibe coding, AI-driven software development, and how the rise of LLMs, despite their risks, still points toward a more secure and innovative future.
Research
/Security News
Threat actors hijacked Toptal’s GitHub org, publishing npm packages with malicious payloads that steal tokens and attempt to wipe victim systems.