npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

ncc-vpn

v0.2.1

Published

System-wide NCC Identity Resolver and Proxy

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

0xx0lostcause0xx00xx0lostcause0xx0

Keywords

Readme

NCC-VPN

NCC-VPN is a Nostr-based Virtual Private Network (VPN) and SOCKS5 proxy. It enables seamless access to services hosted behind Nostr identities by intercepting specific domain patterns and resolving them to real network endpoints (IPs or Onion addresses) using Nostr protocol records (NIP-05, Kind 30058, and Kind 30059).

Features

  • SOCKS5 Proxy Interface: Works with standard applications (browsers, curl, etc.) by setting them to use 127.0.0.1:1080 as a proxy.
  • Nostr Identity Resolution: Automatically resolves hostnames like npub1..., user.ncc, or user.nostr to their active service endpoints.
  • Onion Service Support: Built-in integration with Tor. If a resolved endpoint is a .onion address, the proxy automatically routes the traffic through a local Tor daemon.
  • Private Service Access: Support for resolving private/encrypted service records via a local NSEC or a Remote Signer (Nip-46).
  • Multi-User Support: Multiple users can share a single proxy by providing their own Bunker URLs via SOCKS5 authentication.
  • Zero Configuration Networking: Connect to peers globally using only their Nostr identity.

Prerequisites

  • Node.js (v18 or higher recommended)
  • Tor Daemon (Optional, required for .onion resolution): Should be running on 127.0.0.1:9050.

Installation

git clone https://github.com/your-repo/ncc-vpn.git
cd ncc-vpn
npm install

Usage

1. Start the Proxy

npm start

By default, the proxy listens on 127.0.0.1:1080.

2. Configure your Client

Configure your browser or application to use the SOCKS5 proxy:

  • Host: 127.0.0.1
  • Port: 1080

3. Access Nostr Services

You can now use Nostr-based hostnames in your client:

  • http://<npub>.ncc
  • http://<npub>.nostr
  • ncc:<npub>
  • ncc-<npub>

For example:

curl --proxy socks5h://127.0.0.1:1080 http://npub1...some_npub... .ncc

Configuration

| Environment Variable | Description | Default | |----------------------|-------------|---------| | NSEC | Secret key used to decrypt private service records. | None | | BUNKER | Nostr Connect (NIP-46) bunker URL for remote signing. | None | | PORT | Port for the SOCKS5 proxy to listen on. | 1080 |

Remote Signer (NIP-46)

Instead of providing a raw NSEC, you can use a remote signer (like a mobile app or a Bunker). This keeps your private keys secure on your own device.

Global Signer: Set the BUNKER environment variable before starting the proxy.

BUNKER="bunker://<pubkey>@<relay>?secret=<token>" npm start

Per-Connection Signer: If you are using a shared proxy, you can provide your Bunker URL as the SOCKS5 username. Most modern SOCKS5 clients support this.

curl --proxy-user "bunker://...:any-password" --proxy socks5h://127.0.0.1:1080 http://user.ncc

Development and Testing

The project includes several test scripts to verify functionality:

  • Resolve Test: Checks if a specific npub can be resolved to an endpoint.
    npm run test:resolve
  • Local Test: Verifies interception by connecting to test.ncc.
    npm run test:local
  • Real NPUB Test: Tests resolution against a live Nostr identity.
    npm run test:npub
  • Private Service Test: Tests resolution of encrypted records (requires NSEC).
    npm run test:private

How it Works

  1. Interception: The SOCKS5 server listens for connection requests. If the requested hostname matches an NCC pattern (e.g., .ncc, .nostr, or raw npub), it enters resolution mode.
  2. Nostr Resolution: It queries Nostr relays for Kind 30078 or Kind 1063 events associated with the target pubkey.
  3. Routing:
    • If the resolved endpoint is a standard IP/Domain, it pipes the traffic directly.
    • If the endpoint is a .onion address, it establishes a second SOCKS5 connection to the local Tor daemon and pipes the traffic through it.

License

MIT