DEV Community

Cover image for Rosemary: Transparent Network Tunneling Over QUIC (Kernel-Level)
blue0x1
blue0x1

Posted on • Originally published at rosemary-2.gitbook.io

Rosemary: Transparent Network Tunneling Over QUIC (Kernel-Level)

Rosemary: Transparent Network Tunneling Over QUIC (Kernel-Level)

Ever SSH into a box and wish you could just use its network without setting up proxy chains or VPNs? Rosemary makes that happen. The server intercepts traffic at the kernel level (no proxy settings, no TUN devices) and tunnels it over encrypted QUIC through a lightweight agent on the remote host. From your laptop, curl, ping, or your browser reach private subnets as if you were there.

What you get

  • Kernel-level packet interception, transparent to all your apps
  • TCP, UDP, ICMP, and DNS just work without configuration
  • Route all internet traffic through a chosen agent (egress)
  • SOCKS5 proxies, port forwards, and reverse forwards per agent
  • Multi-hop pivoting through several agents
  • Web dashboard with real-time agent graph
  • Full REST API for automation
  • Works on Linux, Windows, macOS, FreeBSD, and OpenBSD
  • Agents run without root; traffic is AES-256-GCM encrypted over QUIC

Quick start

# install (requires Go)
go install github.com/blue0x1/rosemary/rosemary@latest
go install github.com/blue0x1/rosemary/agent@latest

# start server (needs sudo for kernel interception)
sudo rosemary

# deploy agent on remote box
./agent-linux-amd64 -s <server-ip>:2048 -k <your-key>
Enter fullscreen mode Exit fullscreen mode

That's it. Open http://server-ip:1024 and you'll see the agent's subnets automatically routed. Set a default egress agent to route all traffic through a jump host:

egress agent-1
Enter fullscreen mode Exit fullscreen mode

Now your laptop behaves like it's on the remote network. No proxychains, no ssh -D, no friction.

Check the repo blue0x1/rosemary for pre-built binaries, PowerShell agents, and the full API. Use only on systems you own or have permission to test.

Top comments (0)