BounCA
lemur
BounCA | lemur | |
---|---|---|
3 | 3 | |
162 | 1,697 | |
1.9% | 0.4% | |
6.2 | 9.6 | |
2 months ago | 8 days ago | |
Python | Python | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
BounCA
-
Certificate Authority for home lab
I like https://www.bounca.org/ - I tried several solutions, and this one is very simple and offers all I need. Also nice GUI.
-
Managing certs from internal CA? (Expiry Tracking and auto-renewal?)
I’ve got BounCA setup as my internal CA. Super nice GUI and good documentation - https://www.bounca.org/ - requires that you install your root CA on devices / containers that will hit these certificates is all.
- Certificate Management
lemur
-
A Completely Open-Source Implementation of Apple Code Signing and Notarization
this feels like a job for lemur and smallstep
https://smallstep.com/docs/step-ca
https://github.com/Netflix/lemur
-
Are there any solutions using a centralized validation server for Let's Encrypt
Other commercial options include ManageEngine and DigiCert. One the open source side there is gnarly stuff like https://github.com/aptise/peter_sslers and https://github.com/Netflix/lemur
-
Certificate Management
There is https://github.com/Netflix/lemur which has a UI but not sure how well maintained it is.
What are some alternatives?
easy-rsa - easy-rsa - Simple shell based CA utility
badssl.com - :lock: Memorable site for testing clients against bad SSL configs.
FreeIPA - Mirror of FreeIPA, an integrated security information management solution
cryptonice - CryptoNice is both a command line tool and library which provides the ability to scan and report on the configuration of SSL/TLS for your internet or internal facing web services. Built using the sslyze API and ssl, http-client and dns libraries, cryptonice collects data on a given domain and performs a series of tests to check TLS configuration and supporting protocols such as HTTP2 and DNS.
OpenID - OpenID Certified™ OpenID Connect Relying Party implementation for Apache HTTP Server 2.x
certify - Professional ACME Client for Windows. Certificate Management UI, powered by Let's Encrypt and compatible with all ACME v2 CAs. Download from certifytheweb.com
OSIAM
tls_client_handshake_pure_python - TLS Client Handshake Pure Python implementation
LDAP Account Manager (LAM) - LDAP Account Manager
webcert - WebCert is a Web application to generate and manage digital certificates in cases where no "full" CA is needed.
Samba - https://gitlab.com/samba-team/samba is the Official GitLab mirror of https://git.samba.org/samba.git -- Merge requests should be made on GitLab (not on GitHub)
trustme - #1 quality TLS certs while you wait, for the discerning tester