SaaSHub helps you find the best software and product alternatives Learn more →
Top 12 Go PKI Projects
-
certificates
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
-
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
-
-
-
labca
A private Certificate Authority for internal (lab) use, based on the open source ACME Automated Certificate Management Environment implementation from Let's Encrypt (tm).
-
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
-
vaultplugin-hsmpki
The Vault HSM PKI plugin overlays the modifications to the builtin PKI plugin that enable support for certificate signing using a Hardware Security Module via PKCS#11.
-
yubisigner
YubiSigner provides a convenient way to sign and securely verify file signatures with Yubico YubiKey, utilizing an organization's PKI infrastructure.
-
You can roll your own with https://github.com/smallstep/certificates. We maintain major open source projects and contribute a lot to other projects. I don’t think that means everything we do has to be open source. Sorry this one wasn’t. Doing this in pure open source would be a book, not a blog post.
Love Let’s Encrypt — we’re sponsors — but using them for WiFi is a terrible idea. You need internal PKI for WiFi.
There's no reason you couldn't run your own ACME server (the Let's Encrypt folk publish an open source one, boulder, but there's plenty of others). Then you can just use certbot in your VMs to manage certificates, configured to point to your CA server instead of the Let's Encrypt one.
- https://github.com/cloudflare/circl
Project mention: SSLMate/Certspotter: Certificate Transparency Log Monitor | news.ycombinator.com | 2023-11-02
Project mention: I looked through attacks in my access logs. Here's what I found | news.ycombinator.com | 2024-01-28Was looking into Certificate Transparency logs recently. Are there any convenient tools/methods for querying CT logs? i.e. search for domains within a timeframe
Cloudflare’s Merkle Town[0] is useful for getting overviews, but I haven’t found an easy way to query CT logs. ct-woodpecker[1] seems promising, too
[0] https://ct.cloudflare.com/
[1] https://github.com/letsencrypt/ct-woodpecker
NOTE:
The open source projects on this list are ordered by number of github stars.
The number of mentions indicates repo mentiontions in the last 12 Months or
since we started tracking (Dec 2020).
Go PKI related posts
- SSLMate/Certspotter: Certificate Transparency Log Monitor
- Last Chance to Fix EIDAS (Mozilla)
- Looking for an open source certificate management solution.
- Google's Certificate Transparency Search page to be discontinued May 15th, 2022
- Self-hosted WUI Internal CA is needed. What would you suggest?
- Cryptojacking Attacks Continue To Target SSH Servers
- Golang - Creating a Certificate Authority + Signing Certificates in Go
-
A note from our sponsor - SaaSHub
www.saashub.com | 23 Apr 2024
Index
What are some of the best open-source PKI projects in Go? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | certificates | 6,131 |
| 2 | boulder | 4,967 |
| 3 | CIRCL | 1,175 |
| 4 | certspotter | 913 |
| 5 | sharkey | 390 |
| 6 | labca | 280 |
| 7 | ct-woodpecker | 170 |
| 8 | crlite | 59 |
| 9 | vaultplugin-hsmpki | 18 |
| 10 | certin | 10 |
| 11 | yubisigner | 7 |
| 12 | pkisauce | 6 |
Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com