Passbolt
Vault
Passbolt | Vault | |
---|---|---|
40 | 160 | |
4,387 | 29,693 | |
1.9% | 0.6% | |
9.7 | 10.0 | |
6 days ago | 4 days ago | |
PHP | Go | |
GNU Affero General Public License v3.0 | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Passbolt
-
Open Source alternatives to tools you Pay for
Passbolt - Open Source Alternative to 1Password
-
Preferred password manager?
Here's another to add to the list, Passbolt. It is open source and basically built for teams and enterprise. It is design primarily with a unique security model which is based on asymmetric end-to-end encryption, with user-owned encryption keys and support easy cross functional team collaboration. Can it hosted on-prem or host it in cloud depending on your preference. Might be too much information and a tad bias as I work here but wanted you to have all the information as passbolt fits your requirement for business level password manager.
-
KeePass vs VaultWarden
Fyi there is also Passbolt.
- Has anyone tried PassBolt?
-
Self-hosted Secrets Manager (or something alike)
I currently switched from keepass to passbolt: https://www.passbolt.com/
-
Recommend me a password manager
I might be bias here as I work here but another recommendation would be passbolt. Open source password manager that is built for teams and businesses. You can either self-host or host it in the cloud, really depending on what you require and supports secure granular sharing of credentials with nested permission in just a few clicks. Its a solution that is built with security as a top priority. It supports asymmetric end-to-end encryption based on OpenPGP cryptography using both public-private key for encryption/decryption. No secret key is stored on the server side. Both the free community edition and the paid pro version are 100% open source.
-
How much of a security risk does all of our organization's passwords stored plaintext on our file server pose?
All that said...here's my shameless plug: I work for passbolt. You mentioned you have a small team, you might give it a look: https://www.passbolt.com/ there's a community edition you can install for free on the server of your choice. I'm here and happy to answer any questions.
-
What do you guys use for all your personal info?
Passbolt for passwords (backed up to KeepassX files)
-
Any suggestions for a Password Manager + Secrets Manager for small teams?
Have you checked out Passbolt? Its open source built for teams and organisations. Supports asymmetric end-to-end encryption, based on OpenPGP. Its on-prem or you can host it in cloud. You can either opt for the Pro/Enterprise version or the free community edition depending on what you need.
- LastPass says employee’s home computer was hacked and corporate vault taken | Already smarting from a breach that stole customer vaults, LastPass has more bad news.
Vault
- Terraform & HashiCorp Vault Integration: Seamless Secrets Management
-
Top Secrets Management Tools for 2024
HashiCorp Vault
-
Keep it cool and secure: do's and don'ts for managing Web App secrets
For a more comprehensive and robust secret management solution, get your hands on tools like GCP Secret Manager, or HashiCorp Vault. They're like the security guards of your secrets, providing a safe house, access control, and keeping logs of who’s been snooping around.
-
Kubernetes Secret Management
HashiCorp Vault is a popular tool for managing secrets in Kubernetes clusters. It offers advanced features such as secure storage, encryption, dynamic secrets generation, and integration with Kubernetes through its Kubernetes authentication method.
-
Champion Building - How to successfully adopt a developer tool
So you've just bought a new platform tool? Maybe it's Hashicorp Vault? Snyk? Backstage? You’re excited about all of the developer experience, security and other benefits you're about to unleash on your company—right? But wait…
-
AWS Secrets Manager for on-premise and other cloud accounts scaled architecture
You seem to be looking for a cross-platform solution, and https://www.vaultproject.io/ provides just that. If everything was in AWS, AWS Secret Manager might be great, but imo Vault provides much better platform-agnostic capabilities.
-
Show HN: Anchor – developer-friendly private CAs for internal TLS
https://github.com/openwrt/luci/blob/master/applications/luc...
https://developer.hashicorp.com/vault/tutorials/secrets-mana... https://github.com/hashicorp/vault :
> Refer to Build Certificate Authority (CA) in Vault with an offline Root for an example of using a root CA external to Vault.
-
The Complete Microservices Guide
Secret Management: Securely stores sensitive configuration data and secrets using tools like AWS Secrets Manager or HashiCorp Vault. Avoid hardcoding secrets in code or configuration files.
-
Horcrux: Split your file into encrypted fragments
The author of this tool basically took the Shamir code from Hashicorp Vault, which is pretty mainstream. If you're looking for a solid implementation, I would start there[0]. I wouldn't use the Shamir code from this repo, as it's an old version of the vault code using field arithmetic that doesn't run in constant time.
[0]: https://github.com/hashicorp/vault/blob/main/shamir/shamir.g...
-
OpenTF Announces Fork of Terraform
Out of curiosity, what do you mean by this? cross-cluster? they already have HA: https://github.com/hashicorp/vault/blob/v1.14.1/website/cont...
while digging up that link, I also saw one named replication: https://github.com/hashicorp/vault/blob/v1.14.1/website/cont...
What are some alternatives?
vaultwarden - Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs
Keycloak - Open Source Identity and Access Management For Modern Applications and Services
Bitwarden - The core infrastructure backend (API, database, Docker, etc).
sealed-secrets - A Kubernetes controller and tool for one-way encrypted Secrets
sysPass - Systems Password Manager
sops - Simple and flexible tool for managing secrets
Teampass - Collaborative Passwords Manager
etcd - Distributed reliable key-value store for the most critical data of a distributed system
Padloc - A modern, open source password manager for individuals and teams.
OPA (Open Policy Agent) - Open Policy Agent (OPA) is an open source, general-purpose policy engine.
bitwarden_rs - Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs [Moved to: https://github.com/dani-garcia/vaultwarden]