GitHub’s official command line tool

Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

The easiest, and most secure way to access and protect all of your infrastructure.

OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Securi…

A Quantum-Safe Secure Tunnel based on QPP, KCP, FEC, and N:M multiplexing.

Git extension for versioning large files

Simulating shitty network connections so you can build better systems.

Lightning Network Daemon ⚡️

🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

Upspin: A framework for naming everyone's everything.

A highly extensible Git implementation in pure Go.

⟁ Tendermint Core (BFT Consensus) in Go

An ACME-based certificate authority, written in Go.

OpenSSF Scorecard - Security health metrics for Open Source

A Crypto-Secure, Production-Grade Reliable-UDP Library for golang with FEC

🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.

yubikey-agent is a seamless ssh-agent for YubiKeys.

Secure software enclave for storage of sensitive information in memory.

Private messaging system that hides metadata

A decentralized P2P networking stack written in Go.

Official implementation of IoTeX blockchain protocol in Go. An ultra-efficient EVM blockchain offering 1000 TPS with instant 1-block finality. Perfect for DeFi, DePIN tokenomics, Identities, and an…

Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("…

Key management is hard

Go tool for managing Linux filesystem encryption

⚓ A kubernetes add-on that automatically injects TLS/HTTPS certificates into your containers

Render ASCII art as SVG diagrams

A miniature version of Boulder, Pebble is a small RFC 8555 ACME test server not suited for a production certificate authority.

X.509 Certificate Linter focused on Web PKI standards and requirements.

A library to read and write keepass 2 files written in go

A tool to monitor a certificate transparency log for operational problems