InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now. Learn more →
Top 23 Go Cryptography Projects
-
Project mention: L402: The Missing Piece in the Internet's Payment Infrastructure | news.ycombinator.com | 2024-07-15
-
InfluxDB
InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
-
Sad. As a fan of Plan 9 myself it’s somewhat expected. The ideas are strong but there’s something about it all not quite catching on.
I regularly referred others to Upspin’s source tree [1] if they wondered about larger systems written in Go but weren’t too big and gross like Kubernetes.
[1]: https://github.com/upspin/upspin
-
-
cli
🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc. (by smallstep)
Project mention: Setting up a trusted, self-signed SSL/TLS certificate authority in Linux | news.ycombinator.com | 2025-02-17I previously used openssl-based scripts to generate certificates to use for local development or applications on a private network. I have since moved to using the step CLI [1].
OpenSSL is powerful, but it's hard to figure out how to use correctly. Each command seems cryptic no matter how many times I use it.
The step CLI is a lot simpler, even though it has a few quirks: generating PKCS1 formatted private keys instead of the newer PKCS7 format, making every leaf certificate eligible to be either a server certificate or a client certificate, and absurdly low default certificate expirations.
1: https://github.com/smallstep/cli
-
-
-
iotex-core
Official implementation of IoTeX blockchain protocol in Go. An ultra-efficient EVM blockchain offering 1000 TPS with instant 1-block finality. Perfect for DeFi, DePIN tokenomics, Identities, and any trusted logic requiring Web3 composability
-
Stream
Stream - Scalable APIs for Chat, Feeds, Moderation, & Video. Stream helps developers build engaging apps that scale to millions with performant and flexible Chat, Feeds, Moderation, and Video APIs and SDKs powered by a global edge network and enterprise-grade infrastructure.
-
-
acra
Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL. (by cossacklabs)
-
Project mention: Picocrypt – A small, simple, yet secure encryption tool | news.ycombinator.com | 2024-11-10
-
Terrapin-Scanner
This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".
-
-
-
-
Verifiable quantum randomness sounds interesting - https://drand.love is another verifiable randomness beacon, though using more traditional cryptography
-
enc
🔑🔒 A modern and friendly CLI alternative to GnuPG: generate and download keys, encrypt, decrypt, and sign text and files, and more.
-
Project mention: Adding concurrent read/write to DuckDB with Arrow Flight | news.ycombinator.com | 2025-01-29
cosmos/iavl is a Merkleized AVL tree.
https://github.com/cosmos/iavl :
> Merkleized IAVL+ Tree implementation in Go
> The purpose of this data structure is to provide persistent storage for key-value pairs (say to store account balances) such that a deterministic merkle root hash can be computed. The tree is balanced using a variant of the AVL algorithm so all operations are O(log(n)).
Integer Vector clock or Merkle hashes?
Why shouldn't you store account balances in git, for example?
Or, why shouldn't you append to Parquet or Feather and LZ4 for strongly consistent transactional data?
Centralized databases can have Merkle hashes, too;
"How Postgres stores data on disk"
-
go-blockchain
A foundational and practical guide for effectively learning and progressively building a blockchain from scratch in Go with gRPC
Project mention: Show HN: Merkle proof in the context of a blockchain from scratch | news.ycombinator.com | 2024-11-11 -
-
-
-
go-peer
🔐 Library for developing secure, decentralized, anonymous and quantum-resistant networks in Go language
-
pake
PAKE library for generating a strong secret between parties over an insecure channel (by schollz)
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Go Cryptography discussion
Go Cryptography related posts
-
CU Randomness Beacon
-
A Guide to PK Tokens
-
What the heck is AEAD again?
-
Shell-secrets – GPG-encrypted environment variables
-
Verifiable, unpredictable and unbiased random numbers as a service
-
OpenID Coming to SSH
-
Open-Sourcing OpenPubkey SSH
-
A note from our sponsor - InfluxDB
www.influxdata.com | 12 Jul 2025
Index
What are some of the best open-source Cryptography projects in Go? This list will help you:
# | Project | Stars |
---|---|---|
1 | lnd | 7,969 |
2 | upspin | 6,397 |
3 | tendermint | 5,812 |
4 | cli | 3,920 |
5 | yubikey-agent | 2,757 |
6 | memguard | 2,626 |
7 | iotex-core | 1,557 |
8 | CIRCL | 1,464 |
9 | acra | 1,408 |
10 | Picocrypt | 1,091 |
11 | Terrapin-Scanner | 977 |
12 | fscrypt | 942 |
13 | keys | 919 |
14 | openpubkey | 846 |
15 | drand | 777 |
16 | enc | 515 |
17 | iavl | 441 |
18 | go-blockchain | 431 |
19 | cothority | 429 |
20 | lightning-onion | 405 |
21 | multi-party-sig | 336 |
22 | go-peer | 294 |
23 | pake | 217 |