Open-source Go projects categorized as SSL

An SSL is security technology. It's a protocol for servers and web browsers that makes sure that data passed between the two are private. It was first developed by Netscape in 1995 for the purpose of ensuring privacy, authentication, and data integrity in Internet communications. SSL is the predecessor to the modern TLS encryption used today.

Top 21 Go SSL Projects

  • Echo

    High performance, minimalist Go web framework

  • Project mention: Migrating Next.js App to GO + Templ & HTMX | dev.to | 2024-05-05

    Echo for the web server.

  • oauth2-proxy

    A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.

  • Project mention: Keycloak SSO with Docker Compose and Nginx | news.ycombinator.com | 2024-02-11

    Recently I looked into having a relatively simple SSO setup for my homelab. My main objective is that I could easily login with Google or GitHub auth. At my previous job I used both JetBrains Hub [1] and Keycloak but I found both of them a bit of a PITA to setup.

    JetBrains Hub was really, really easy to get going. As was my previous experience with them. The only thing that annoyed me was the lack of a latest tag on their Docker registry. Don't get me wrong, pinned versions are great, but for my personal use I mostly just want to update all my Docker containers in one go.

    On the other hand I found Keycloak very cumbersome to get going. It was pretty easy in dev mode, but I stumbled to get it going in production. AFAIK it had something to do with the wildcard Let's Encrypt cert that I tried to use. But after a couple of hours, I just gave up.

    I finally went with Dex [2]. I had previously put it off because of the lack of documentation, but in the end it was extremely easy to setup. It just required some basic YAML, a SQLite database and a (sub)domain. I combined Dex with the excellent OAuth2 Proxy and a custom Nginx (Proxy Manager) template for an easy two line SSO configuration on all of my internal services.

    In addition to this setup, I also added Cloudflare Access and WAF outside of my home to add some security. I only want to add some CrowdSec to get a little more insights.

    1. https://www.jetbrains.com/hub/

    2. https://dexidp.io/

    3. https://github.com/oauth2-proxy/oauth2-proxy

    3. https://github.com/alex3305/unraid-docker-templates

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
  • certstrap

    Tools to bootstrap CAs, certificate requests, and signed certificates.

  • acmetool

    :lock: acmetool, an automatic certificate acquisition tool for ACME (Let's Encrypt)

  • ghostunnel

    A simple SSL/TLS proxy with mutual authentication for securing non-TLS services.

  • gin-boilerplate

    The fastest way to deploy a restful api's with Gin Framework with a structured project that defaults to PostgreSQL database and JWT authentication middleware stored in Redis

  • Gokapi

    Lightweight selfhosted Firefox Send alternative without public upload. AWS S3 supported.

  • Project mention: Looking for selfhosted application to easily share files | /r/selfhosted | 2023-07-08

    gokapi is my goto for this requirement!

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  • certigo

    A utility to examine and validate certificates in a variety of formats

  • ssl-proxy

    :lock: Simple zero-config SSL reverse proxy with real autogenerated certificates (LetsEncrypt, self-signed, provided)

  • dumbproxy

    Dumbest HTTP proxy ever

  • nico

    A HTTP3 web server for reverse proxy and single page application, automatically apply for ssl certificate, Zero-Configuration. (by txthinking)

  • steady-tun

    Secure TLS tunnel with pool of prepared upstream connections

  • crt

    A CLI tool to check Certificate Transparency logs of a domain name. (by cemulus)

  • ssl-handshake

    A command-line tool for testing SSL/TLS handshake latency, written in Go.

  • sslmgr

    A layer of abstraction the around acme/autocert certificate manager (Golang)

  • ca-injector

    Painlessly use off-the-shelf images (and your own) in your k8s cluster, with custom root CAs.

  • Project mention: What if your Pods need to trust self-signed certificates? | news.ycombinator.com | 2023-06-28

    I've built a small MutatingAdmissionWebhook controller [0] that handles this, via a pod annotation whose value is a secret with `ca.crt` inside, and it uses the (mostly) de facto standard openssl variables to configure the libraries, so that it works across pretty much everything I've tried it with off the shelf.

    I build a bundle (though I may just move to trust-manager [1]) and replicate it into all namespaces with kubernetes-replicator [2], and then I can annotate any pod with

    [0] https://github.com/microcumulus/ca-injector

    [1] https://github.com/cert-manager/trust-manager

    [2] https://github.com/mittwald/kubernetes-replicator

  • gomailer

    Simple Golang Mail Sender Library using with SSL and TLS

  • go-tunnel

    A utility for secure HTTP/Websocket port exposure

  • Project mention: A utility for secure port exposure. Code & security review required | /r/golang | 2023-11-19
  • basic-auth-gin

    Basic-auth-gin v1 🚀 is a swift RESTful API framework built atop the Gin Framework 🌐 and MongoDB 🗄️. It boasts JWT authentication middleware 🔐, Google OAuth API, SendGrid email API 📧, and SSL support 🔒. Designed for ease of use with environment variable support 🌍, it can be quickly installed and tested using make commands ⚙️.

  • devcert

    Generate self-signed, trusted certificates for local development. (by primalskill)

  • tlslimit

    Limiting the rate of TLS handshakes

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Go SSL related posts

  • Multi client authentication with auth0 and oauth2-proxy

    2 projects | dev.to | 30 Jan 2024
  • Why You Should Migrate to OAuth 2.0 From API Keys

    1 project | /r/programming | 11 Dec 2023
  • Moving from Google workspace to Microsoft 365 and implementing Zero Trust

    2 projects | /r/sysadmin | 27 Nov 2023
  • Microsoft launches Windows App for accessing PCs in the cloud from any device

    2 projects | news.ycombinator.com | 16 Nov 2023
  • Best Practice For Serving Static (Frontend) Files with NGINX in K8s?

    2 projects | /r/kubernetes | 9 Jul 2023
  • Any thoughts on implemented access control of self hosted front end apps?

    1 project | /r/selfhosted | 9 Jul 2023
  • Make Kubernetes trust SSL CA

    2 projects | /r/kubernetes | 23 May 2023
  • A note from our sponsor - InfluxDB
    www.influxdata.com | 29 May 2024
    Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →


What are some of the best open-source SSL projects in Go? This list will help you:

Project Stars
1 Echo 28,680
2 oauth2-proxy 8,821
3 certstrap 2,220
4 acmetool 2,028
5 ghostunnel 1,864
6 gin-boilerplate 1,006
7 Gokapi 1,037
8 certigo 924
9 ssl-proxy 717
10 dumbproxy 382
11 nico 111
12 steady-tun 74
13 crt 65
14 ssl-handshake 62
15 sslmgr 25
16 ca-injector 24
17 gomailer 17
18 go-tunnel 15
19 basic-auth-gin 13
20 devcert 11
21 tlslimit 10

SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives