Top 23 Go Security Projects
Fast, multi-platform web server with automatic HTTPSProject mention: How can we automate NGINX Certificates everytime it expires? | reddit.com/r/selfhosted | 2021-02-27
I recommend using Caddy, which has automated certificate management built-in. https://caddyserver.com/
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Compatible with MITREid.Project mention: Ory Hydra 1.9: Open-source Golang OAuth2 provider | reddit.com/r/patient_hackernews | 2021-01-13
Get performance insights in less than 4 minutes. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.
DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)Project mention: Minimal base images roundup | reddit.com/r/kubernetes | 2021-02-21
Yeah in the end distroless is likely always going to be the smallest image, as it really cuts out everything that's not necessary to run your app. You might experiment with taking a debian-slim or minideb image and running it through docker-slim to see if it gets closer to the distroless output: https://github.com/docker-slim/docker-slim
Unified access for SSH servers, Kubernetes, web applications, and databases written in GoProject mention: Ask HN: Who is hiring? (March 2021) | news.ycombinator.com | 2021-03-01
The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and MITM attacks.Project mention: I been trying to use wifite2 to hack a wifi network. Im a complete noob at this shit. It keeps doing this. What the hell do i do | reddit.com/r/HowToHack | 2021-03-02
eBPF-based Networking, Security, and ObservabilityProject mention: Gopher Gold #20 - Wed Nov 18 2020 | dev.to | 2020-11-17
cilium/cilium (Go): eBPF-based Networking, Security, and Observability
Simple and flexible tool for managing secretsProject mention: Best way to store service account ssh private keys so my team can access them. | reddit.com/r/sysadmin | 2021-03-01
Git repo + sops? It's super-slick to use with AWS KMS, but even with GPG it should take a good chunk of the security concerns.
A Simple and Comprehensive Vulnerability Scanner for Container Images, Github Repositories and Filesystems. Suitable for CIProject mention: Trivy: scanning your containers for vulnerabilities | dev.to | 2021-02-21
Shift left security refers to moving security sooner in the development process. It aims at having security in mind from the get-go and not when "sh*t hits the fan". One tool that can help us with securing our systems is Trivy.
Safely store secrets in Git/Mercurial/SubversionProject mention: Looking for an interesting project to contribute | reddit.com/r/golang | 2021-01-15
Interested in making GPG easier to use for encrypting secrets in Git? https://github.com/StackExchange/blackbox is being rewritten in Go and needs help testing, improving, ensuring compatibility, etc.
Open-Source Phishing Toolkit (by gophish)Project mention: Gophish: An Open-Source Phishing Toolkit | reddit.com/r/netsec | 2021-01-20
Let's Encrypt client and ACME library written in GoProject mention: Linux sysadmins, what is your take on snap? | reddit.com/r/sysadmin | 2021-03-01
Try lego, it's pretty nice.
A Tool for Domain FlyoversProject mention: Which is better choice for taking screenshots on large networks Aquatone or eyewitness ? | reddit.com/r/netsec | 2021-02-04
Manage your dotfiles across multiple diverse machines, securely.Project mention: "Clone" into a non-empty directory without knowing default branch in advance | reddit.com/r/git | 2021-02-03
Good points! dotfiles.github.io is a wonderful resource. I have looked into chezmoi and yadm and both are worthy of exploration (especially chezmoi, which is cross-platform). Indeed, there are many, many tools and strategies for dotfile management. Maybe I will collect them all...
The Single Sign-On Multi-Factor portal for web appsProject mention: Single login for multiple services via Caddy? | reddit.com/r/selfhosted | 2021-01-19
People seem to recommend https://github.com/authelia/authelia these days. I haven't set it up myself yet.
CrowdSec - an open-source massively multiplayer firewall able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global IP reputation database to protect the user network.Project mention: Secure Your Linux Servers with CrowdSec - Open-Source Security Automation Tool | reddit.com/r/SysAdminBlogs | 2021-03-01
0.3.x cscli manual.
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.Project mention: Best way to generate trusted certificates for internal domain? | reddit.com/r/selfhosted | 2021-01-28
I use Smallstep Certificates for all my internal certificate signing, using the official docker image.
Cameradar hacks its way into RTSP videosurveillance cameras
🔒🌍 Security scanner for your Terraform codeProject mention: Terraform VMware vSphere Provider - is it worth it? | reddit.com/r/Terraform | 2021-01-12
I know tfsec (https://github.com/tfsec/tfsec) which is pretty good for AWS resources but I think vSphere resources are not implemented.
Privacy and Security focused Segment-alternative, in Golang and React
Copy/paste anything over the network.Project mention: Selfhosted nopaste / network clipboard / file host | reddit.com/r/selfhosted | 2021-02-03
https://github.com/jedisct1/piknik does have encryption.
Google CTFProject mention: The International Obfuscated C Code Contest 2020 winners | news.ycombinator.com | 2021-01-08
For those interested in more Turing complete format strings, look no further than the "sprint" challenge from this years Google CTF: https://ctftime.org/task/12834. It's sprintf in a loop this time and the program simulates a maze: https://github.com/google/google-ctf/tree/master/2020/quals/...
[mirror] Go supplementary cryptography librariesProject mention: Crowdsourcing for healthcare tool accepting DOGE as payment feedback | reddit.com/r/dogecoin | 2021-02-25
I've been considering developing suck tools with Golang. Golang's crypto package golang crypto might be a great starting point if your familiar with language.
Kata Containers version 1.x runtime (for version 2.x see https://github.com/kata-containers/kata-containers). (by kata-containers)Project mention: Building a secure/sandboxed environment for executing untrusted code | dev.to | 2021-01-16
What are some of the best open-source Security projects in Go? This list will help you:
|3||Lean and Mean Docker containers||9,725|