May 17, 2026
Curl drama on aisle Wi-Fi
Show HN: Mezz, a curl-able WiFi sandbox for IoT pentesting
This gadget spy tool wowed tinkerers, but the comments got stuck on the word “curl”
TLDR: Mezz is a tool that lets people inspect what their own smart-home devices are doing online by placing a small private network in the middle. Commenters were less obsessed with the gadget sleuthing and more entertained by the confusing word “curl-able,” plus requests to put it on router software instead.
A new Show HN project called Mezz promises to turn a Linux box into a kind of private observation deck for your own smart-home gadgets. In plain English: you put it between your devices and the internet, and it lets you see who your smart fridge, camera, or mystery plug is chatting with. It’s pitched as a defensive, for-your-own-stuff-only tool, complete with warnings not to use it for shady business. But while the project itself is about peeking into your devices’ online behavior, the real entertainment came from the peanut gallery.
The strongest reaction? People instantly fixated on the phrase “curl-able.” One commenter admitted they were baffled, thinking the product had some magical “curl” feature, only to realize it just meant installable with a command line shortcut. That tiny wording choice became the thread’s breakout star: less “wow, cool network sandbox,” more “wait, what does that even mean?” Another camp took a practical angle, saying this should really exist for OpenWRT, the popular router software, because that would make it feel far more at home on actual networking gear. And then came the classic internet move: a commenter immediately suggested a different tool entirely, because no launch thread is complete without someone showing up to say, essentially, “nice, but have you considered my favorite thing instead?”
So yes, Mezz looks useful for people who want to inspect what their smart gadgets are doing. But the comments turned it into a mini-drama about naming, packaging, and the eternal truth of tech launches: you can build a whole gadget-inspection lab, and the internet will still argue about one word in the description.
Key Points
- •Mezz is a defensive Wi-Fi sandbox designed to inspect IoT devices owned by the user by sitting between those devices and the rest of the home network.
- •It can turn a Linux host with a Wi-Fi NIC and wired uplink into an isolated network that provides an access point, DHCP, DNS, NAT, local device naming, and DNS query logging.
- •The tool requires Linux, Docker Engine 20.10+ with Compose v2, a Wi-Fi adapter that supports AP mode, a wired uplink, and root access for privileged network initialization.
- •Setup is done by downloading a Compose file and sample environment file, configuring interface values, and starting the stack with Docker Compose; a teardown command can revert host network changes.
- •Optional Compose profiles add services such as transparent mitmproxy-based HTTP/HTTPS interception, but decryptable traffic depends on client trust of the mitmproxy CA and certificate pinning can prevent clear inspection.