Hacker Newsnew | past | comments | ask | show | jobs | submitlogin
Show HN: Supernetworks' Secure Programmable Router (supernetworks.org)
5 points by spr-alex on May 18, 2023 | hide | past | favorite | 1 comment
Hey HN,

We recently saw that a bad router update made it to the front page, and thought you might like to hear about what we're building at Supernetworks.

Our flagship product is a Secure Programmable Router (SPR), which is Linux-based software for running a hardened wifi network that enables easy addition and management of devices. SPR isolates each device into an individual VLAN and securely connects it to the rest of the network.

What sets SPR apart is that we've engineered it to use the latest and greatest networking capabilities of Linux, all while employing best-in-class security practices and modern coding standards. SPR is designed to run in docker containers on systems with a bit more memory and storage, which opens up possibilities like hosting voice assistants, security testing tools, and media servers. We have built SPR mostly with golang and a react frontend, championing these languages especially for their robust security and memory-safety.

Here's an overview of its key features:

- Device Isolation: SPR ensures each WiFi device has its own VLAN and subnet. This makes network attacks like ARP/MAC spoofing a non-issue and protects devices from traffic sniffing. Notably, SPR was not affected by the MACStealer flaws [1]

- Per-device passwords. The passphrase and MAC address combine to give each device a unique identity in the network. No custom code is required on clients and a wide variety of IOT devices are compatible. By the way, we do support WPA3 with multi-psk, and we were the first and might still be the only one that supports this.

- Groups and Tags: Assign devices to groups to control their network access. Apply tags for special features and further organization

- Privacy Preserved: Your data is only your data. SPR doesn’t send any telemetry or statistics to Supernetworks or any third party (beyond what Github might collect when downloading our containers and code). You can verify this by checking the code in our GitHub repo or inspecting the network traffic from SPR. Part of our product's motivation is to provide better capabilities to block telemetry going to all sorts of parties, using DNS block lists and firewall rules.

- Extensible: SPR supports plugins running as docker containers, allowing a multitude of ways for customization and enhancement. It also has an API for programming the router directly.

- Wireguard: SPR can run as a VPN host as well, and can be hosted as a router in the cloud or locally without WiFi for this purpose.

Some more useful links for the project:

    Our Github page: http://github.com/spr-networks/super
    FAQ: https://www.supernetworks.org/pages/docs/faq
    Find us on Twitter: https://twitter.com/spr_networks
    Demo page: https://demo.supernetworks.org/
    Join the Discord chat: https://discord.gg/EUjTKJPPAX
    Our API Docs: https://www.supernetworks.org/pages/api/0
    Documentation Home: https://www.supernetworks.org/pages/docs/intro/
    Raspberry Pi 4 Setup: https://www.supernetworks.org/pages/docs/pi4b
    General Setup Guide: https://www.supernetworks.org/pages/docs/setup_run_spr
Check us out at https://www.supernetworks.org and let us know what you think! We’re open to feedback, suggestions, feature requests, and questions. Thank you!

[1] https://news.ycombinator.com/item?id=35582798



For people interested in learning more about network security & wifi, we have also been releasing self hosted CTF challenges at

https://turtles.supernetworks.org/ & https://www.supernetworks.org/wifiturtles.html




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: