Go TLS

Open-source Go projects categorized as TLS
Edit details

Transport Layer Security (TLS), the successor of the now-deprecated Secure Sockets Layer (SSL), is a cryptographic protocol designed to provide communications security over a computer network.

Topics: Golang Go Certificate SSL Security
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

Top 23 Go TLS Projects

  • Caddy

    Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS

    • Project mention: How I use Devbox in my Elm projects | dev.to | 2024-05-02

    These projects use Caddy as my local development server, Dart Sass for converting my Sass files to CSS, elm, elm-format, elm-optimize-level-2, elm-review, elm-test (only in Calculator), ShellCheck to find bugs in my shell scripts, and Terser to mangle and compress JavaScript code.

  • mkcert

    A simple zero-config tool to make locally trusted development certificates with any names you'd like.

    • Project mention: HTTPS on Localhost with Next.js | dev.to | 2024-04-29

    The experimental HTTPS flag relies on mkcert, designed for a single development system. If you run a Docker container, the flag won’t configure your local browser to trust its certificate.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • Xray-core

    Xray, Penetrates Everything. Also the best v2ray-core, with XTLS support. Fully compatible configuration.

    • Project mention: WireGuard client that exposes itself as a HTTP/SOCKS5 proxy | news.ycombinator.com | 2024-04-01

    - [xray](https://github.com/xtls/xray-core)

  • goproxy

    🔥 Proxy is a high performance HTTP(S) proxies, SOCKS5 proxies,WEBSOCKET, TCP, UDP proxy server implemented by golang. Now, it supports chain-style proxies,nat forwarding in different lan,TCP/UDP port forwarding, SSH forwarding.Proxy是golang实现的高性能http,https,websocket,tcp,socks5代理服务器,支持内网穿透,链式代理,通讯加密,智能HTTP,SOCKS5代理,黑白名单,限速,限流量,限连接数,跨平台,KCP支持,认证API。

  • gost

    GO Simple Tunnel - a simple tunnel written in golang

    • Project mention: Teach us something Sundays | /r/ExperiencedFounders | 2023-05-21

    With a combination of Gost and cloudflare tunnel you can access literally anything on the local LAN network.

  • brook

    A cross-platform programmable network tool

    • Project mention: How Brook bypass domain regardless of their IP | /r/u_txthinking | 2023-05-26

    Programming is very flexible, more can be found in documentation and other articles of this blog

  • cert-manager

    Automatically provision and manage TLS certificates in Kubernetes

    • Project mention: deploying a minio service to kubernetes | dev.to | 2024-04-08

    cert-manager

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo

  • fq

    jq for binary formats - tool, language and decoders for working with binary and text formats

    • Project mention: How to Use JSON Path | news.ycombinator.com | 2024-05-03

    I see, thanks for replying and no worries! yeap some of the "self-describing" formats like msgpack, cbor etc will because of how fq works have to be decoded into something more of a meta-msgpack etc.

    About blobs, if you want to change how (possibly large) binaries are represented as JSON you can use the bits_format options, see https://github.com/wader/fq/blob/master/doc/usage.md#options, so fq -o bits_format=md5 torepr ...

    I can highly recommend to learn jq, it's what makes fq really useful, and as a bonus you will learn jq in general! :)

  • trojan-go

    Go实现的Trojan代理,支持多路复用/路由功能/CDN中转/Shadowsocks混淆插件,多平台,无依赖。A Trojan proxy written in Go. An unidentifiable mechanism that helps you bypass GFW. https://p4gefau1t.github.io/trojan-go/

  • lego

    Let's Encrypt/ACME client and library written in Go

    • Project mention: Take a look at traefik, even if you don't use containers | news.ycombinator.com | 2024-05-05

    This is one area where I've found nixos to be really helpful. I can set this up with just adding some lines to the configuration.nix (which uses [lego](https://github.com/go-acme/lego) and letsencrypt in the backend):

    ```nix

  • certificates

    🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

    • Project mention: You shouldn't run NSA-grade Wi-Fi at home | news.ycombinator.com | 2024-01-04

    You can roll your own with https://github.com/smallstep/certificates. We maintain major open source projects and contribute a lot to other projects. I don’t think that means everything we do has to be open source. Sorry this one wasn’t. Doing this in pure open source would be a book, not a blog post.

    Love Let’s Encrypt — we’re sponsors — but using them for WiFi is a terrible idea. You need internal PKI for WiFi.

  • Ponzu

    Headless CMS with automatic JSON API. Featuring auto-HTTPS from Let's Encrypt, HTTP/2 Server Push, and flexible server framework written in Go.

  • boulder

    An ACME-based certificate authority, written in Go.

    • Project mention: Trying to do something a bit crazy | /r/homelab | 2023-06-04

    There's no reason you couldn't run your own ACME server (the Let's Encrypt folk publish an open source one, boulder, but there's plenty of others). Then you can just use certbot in your VMs to manage certificates, configured to point to your CA server instead of the Let's Encrypt one.

  • certmagic

    Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal

    • Project mention: Show HN: Clace – Platform for secure internal web applications | news.ycombinator.com | 2023-10-18

  • cli

    🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc. (by smallstep)

    • Project mention: Google will disable all but OAuth for IMAP, SMTP and POP starting Sept. 30 | news.ycombinator.com | 2024-01-18

    https://github.com/smallstep/cli implements some OAuth flows from the CLI, it may be helpful for you.

  • go-http-tunnel

    Fast and secure tunnels over HTTP/2

    • Project mention: List of ngrok/Cloudflare Tunnel alternatives and other tunneling software and services. Focus on self-hosting. | dev.to | 2024-04-30

    go-http-tunnel - Uses a single HTTP/2 connection for muxing. Need to manually generate certs for server and clients.

  • certstrap

    Tools to bootstrap CAs, certificate requests, and signed certificates.

    • Project mention: Selfhosted CA tutorial | /r/selfhosted | 2023-05-14

  • acmetool

    :lock: acmetool, an automatic certificate acquisition tool for ACME (Let's Encrypt)

  • gobetween

    :cloud: Modern & minimalistic load balancer for the Сloud era

  • ghostunnel

    A simple SSL/TLS proxy with mutual authentication for securing non-TLS services.

  • utls

    Fork of the Go standard TLS library, providing low-level access to the ClientHello for mimicry purposes.

    • Project mention: uTLS – Go TLS fork with low-level access to ClientHello for mimicry purposes | news.ycombinator.com | 2024-03-12

  • grpc-tools

    A suite of gRPC debugging tools. Like Fiddler/Charles but for gRPC.

  • certigo

    A utility to examine and validate certificates in a variety of formats

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Go TLS related posts

  • HTTPS on Localhost with Next.js

    3 projects | dev.to | 29 Apr 2024

  • Mkcert: Simple zero-config tool to make locally trusted development certificates

    1 project | news.ycombinator.com | 26 Apr 2024

  • Mkcert: Simple tool to make locally trusted dev certificates names you'd like

    1 project | news.ycombinator.com | 15 Mar 2024

  • uTLS – Go TLS fork with low-level access to ClientHello for mimicry purposes

    1 project | news.ycombinator.com | 12 Mar 2024

  • Importing kubernetes manifests with terraform for cert-manager

    1 project | dev.to | 17 Jan 2024

  • You Can't Follow Me

    7 projects | news.ycombinator.com | 11 Jan 2024

  • SSL Certificates for Home Network

    1 project | /r/homelab | 7 Dec 2023
  • A note from our sponsor - InfluxDB
    www.influxdata.com | 10 May 2024
    Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Index

What are some of the best open-source TLS projects in Go? This list will help you:

Project Stars
1 Caddy 54,077
2 mkcert 45,913
3 Xray-core 22,002
4 goproxy 15,195
5 gost 15,154
6 brook 14,271
7 cert-manager 11,516
8 fq 9,417
9 trojan-go 7,414
10 lego 7,310
11 certificates 6,195
12 Ponzu 5,640
13 boulder 4,983
14 certmagic 4,835
15 cli 3,487
16 go-http-tunnel 3,176
17 certstrap 2,213
18 acmetool 2,026
19 gobetween 1,888
20 ghostunnel 1,858
21 utls 1,524
22 grpc-tools 1,185
23 certigo 921

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com