Go Security

Open-source Go projects categorized as Security

Top 23 Go Security Projects

  • GitHub repo Caddy

    Fast, multi-platform web server with automatic HTTPS

    Project mention: How can we automate NGINX Certificates everytime it expires? | reddit.com/r/selfhosted | 2021-02-27

    I recommend using Caddy, which has automated certificate management built-in. https://caddyserver.com/

  • GitHub repo hydra

    OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Compatible with MITREid.

    Project mention: Ory Hydra 1.9: Open-source Golang OAuth2 provider | reddit.com/r/patient_hackernews | 2021-01-13
  • Scout

    Get performance insights in less than 4 minutes. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.

  • GitHub repo Lean and Mean Docker containers

    DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

    Project mention: Minimal base images roundup | reddit.com/r/kubernetes | 2021-02-21

    Yeah in the end distroless is likely always going to be the smallest image, as it really cuts out everything that's not necessary to run your app. You might experiment with taking a debian-slim or minideb image and running it through docker-slim to see if it gets closer to the distroless output: https://github.com/docker-slim/docker-slim

  • GitHub repo Gravitational Teleport

    Unified access for SSH servers, Kubernetes, web applications, and databases written in Go

    Project mention: Ask HN: Who is hiring? (March 2021) | news.ycombinator.com | 2021-03-01
  • GitHub repo bettercap

    The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and MITM attacks.

    Project mention: I been trying to use wifite2 to hack a wifi network. Im a complete noob at this shit. It keeps doing this. What the hell do i do | reddit.com/r/HowToHack | 2021-03-02
  • GitHub repo cilium

    eBPF-based Networking, Security, and Observability

    Project mention: Gopher Gold #20 - Wed Nov 18 2020 | dev.to | 2020-11-17

    cilium/cilium (Go): eBPF-based Networking, Security, and Observability

  • GitHub repo sops

    Simple and flexible tool for managing secrets

    Project mention: Best way to store service account ssh private keys so my team can access them. | reddit.com/r/sysadmin | 2021-03-01

    Git repo + sops? It's super-slick to use with AWS KMS, but even with GPG it should take a good chunk of the security concerns.

  • GitHub repo trivy

    A Simple and Comprehensive Vulnerability Scanner for Container Images, Github Repositories and Filesystems. Suitable for CI

    Project mention: Trivy: scanning your containers for vulnerabilities | dev.to | 2021-02-21

    Shift left security refers to moving security sooner in the development process. It aims at having security in mind from the get-go and not when "sh*t hits the fan". One tool that can help us with securing our systems is Trivy.

  • GitHub repo Blackbox

    Safely store secrets in Git/Mercurial/Subversion

    Project mention: Looking for an interesting project to contribute | reddit.com/r/golang | 2021-01-15

    Interested in making GPG easier to use for encrypting secrets in Git? https://github.com/StackExchange/blackbox is being rewritten in Go and needs help testing, improving, ensuring compatibility, etc.

  • GitHub repo gophish

    Open-Source Phishing Toolkit (by gophish)

    Project mention: Gophish: An Open-Source Phishing Toolkit | reddit.com/r/netsec | 2021-01-20
  • GitHub repo lego

    Let's Encrypt client and ACME library written in Go

    Project mention: Linux sysadmins, what is your take on snap? | reddit.com/r/sysadmin | 2021-03-01

    Try lego, it's pretty nice.

  • GitHub repo aquatone

    A Tool for Domain Flyovers

    Project mention: Which is better choice for taking screenshots on large networks Aquatone or eyewitness ? | reddit.com/r/netsec | 2021-02-04
  • GitHub repo chezmoi

    Manage your dotfiles across multiple diverse machines, securely.

    Project mention: "Clone" into a non-empty directory without knowing default branch in advance | reddit.com/r/git | 2021-02-03

    Good points! dotfiles.github.io is a wonderful resource. I have looked into chezmoi and yadm and both are worthy of exploration (especially chezmoi, which is cross-platform). Indeed, there are many, many tools and strategies for dotfile management. Maybe I will collect them all...

  • GitHub repo authelia

    The Single Sign-On Multi-Factor portal for web apps

    Project mention: Single login for multiple services via Caddy? | reddit.com/r/selfhosted | 2021-01-19

    People seem to recommend https://github.com/authelia/authelia these days. I haven't set it up myself yet.

  • GitHub repo crowdsec

    CrowdSec - an open-source massively multiplayer firewall able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global IP reputation database to protect the user network.

    Project mention: Secure Your Linux Servers with CrowdSec - Open-Source Security Automation Tool | reddit.com/r/SysAdminBlogs | 2021-03-01

    0.3.x cscli manual.

  • GitHub repo certificates

    🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

    Project mention: Best way to generate trusted certificates for internal domain? | reddit.com/r/selfhosted | 2021-01-28

    I use Smallstep Certificates for all my internal certificate signing, using the official docker image.

  • GitHub repo Cameradar

    Cameradar hacks its way into RTSP videosurveillance cameras

  • GitHub repo tfsec

    🔒🌍 Security scanner for your Terraform code

    Project mention: Terraform VMware vSphere Provider - is it worth it? | reddit.com/r/Terraform | 2021-01-12

    I know tfsec (https://github.com/tfsec/tfsec) which is pretty good for AWS resources but I think vSphere resources are not implemented.

  • GitHub repo Rudder

    Privacy and Security focused Segment-alternative, in Golang and React

  • GitHub repo piknik

    Copy/paste anything over the network.

    Project mention: Selfhosted nopaste / network clipboard / file host | reddit.com/r/selfhosted | 2021-02-03

    https://github.com/jedisct1/piknik does have encryption.

  • GitHub repo google-ctf

    Google CTF

    Project mention: The International Obfuscated C Code Contest 2020 winners | news.ycombinator.com | 2021-01-08

    For those interested in more Turing complete format strings, look no further than the "sprint" challenge from this years Google CTF: https://ctftime.org/task/12834. It's sprintf in a loop this time and the program simulates a maze: https://github.com/google/google-ctf/tree/master/2020/quals/...

  • GitHub repo autocert

    [mirror] Go supplementary cryptography libraries

    Project mention: Crowdsourcing for healthcare tool accepting DOGE as payment feedback | reddit.com/r/dogecoin | 2021-02-25

    I've been considering developing suck tools with Golang. Golang's crypto package golang crypto might be a great starting point if your familiar with language.

  • GitHub repo runtime

    Kata Containers version 1.x runtime (for version 2.x see https://github.com/kata-containers/kata-containers). (by kata-containers)

    Project mention: Building a secure/sandboxed environment for executing untrusted code | dev.to | 2021-01-16

    Kata Containers

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2021-03-02.


What are some of the best open-source Security projects in Go? This list will help you:

Project Stars
1 Caddy 32,054
2 hydra 10,327
3 Lean and Mean Docker containers 9,725
4 Gravitational Teleport 9,081
5 bettercap 8,562
6 cilium 7,573
7 sops 6,894
8 trivy 6,534
9 Blackbox 5,678
10 gophish 5,497
11 lego 4,488
12 aquatone 3,967
13 chezmoi 3,316
14 authelia 3,035
15 crowdsec 2,958
16 certificates 2,817
17 Cameradar 2,484
18 tfsec 2,356
19 Rudder 2,306
20 piknik 2,163
21 google-ctf 2,116
22 autocert 2,079
23 runtime 2,075