Don't worry about it, this tool is not any malware or spyware. It's just a funny tool.

You can access to processes on a Linux host which drop packets to the processes by firefall, when shinobi-proxy is running on the Linux host.

Simply saying, shinobi-proxy reads all packets from NIC via rawsocket, filters and sends them to the inner process on its same Linux host via TUN device.

If you interested in this tool, I'm glad for you to play it. I prepared a simple scenario to play it on the README.

Thank you!