Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 11 Go Yubikey Projects
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
yubikey-touch-detector
A tool to detect when your YubiKey is waiting for a touch (to send notification or display a visual indicator on the screen)
-
WireGuard-Guide
WireGuard Guide. Learn all about WireGuard for Networking and in the Cloud (Microsoft Azure, AWS, and Google Cloud).
-
piv-agent
An SSH and GPG agent which you can use with your PIV hardware security device (e.g. a Yubikey).
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
yubisigner
YubiSigner provides a convenient way to sign and securely verify file signatures with Yubico YubiKey, utilizing an organization's PKI infrastructure.
-
pinentry-mac-keychain
A pinentry program for macOs that stores entered PINs in the macOS KeyChain. Convenient when use with smart cards, like Yubikey
It's me and two others though I'm definitely the most active. We put a lot of effort into security best practices and one of my co-developers is currently reviewing the 4.38.0 release. It's a fairly major release with a lot of important code paths that have been improved for the future.
Our official docs can be found at https://www.authelia.com and you can find docs for a particular PR in the relevant PR. We've also linked the pre-release docs in the pre-release discussions which can be found here: https://github.com/authelia/authelia/discussions/categories/...
This is a great idea. I now exclusively use SSH keys on hardware security modules of some kind. I use "Secretive", a mac app that does the same, plus a yubikey using yubikey-agent (https://github.com/FiloSottile/yubikey-agent; there are too many complicated ways to use SSH keys with a yubikey this is one of the friendliest ones). Depending on the security and frequency of which I access the service impacts whether I need presence confirmation or use secretive versus the yubikey.
I would be remiss to mention there are existing SSH TPM projects, not sure how this one differentiates. It seems to at least have the user experience pretty simple, similar to yubikey-agent (and secretive), and unlike some of the existing solutions which have quite a few extra steps:
If that project https://github.com/buptczq/WinCryptSSHAgent had a pin timeout, it would be the perfect Windows ssh agent. It support named pipe, pagent shared memory and a UNIX socket under WSL2 using Hyper-V and socat.
On Linux there is https://github.com/maximbaz/yubikey-touch-detector which does exactly this.
Go Yubikey related posts
-
Yubikey ssh keys with Ansible, wants to be touched constantly
-
protecting a webapp with FIDO2 authentication
-
Is it possible to use AGE with a Ledger hardware device?
-
Cloudflare Hardware Keys (Yubico Partnership)
-
Am I the only one who's nervous when SSH-agent forwarding?
-
Failed to fetch key with ECDSA keys via libykcs11.dll
-
Guide to Using YubiKey for GPG and SSH
-
A note from our sponsor - InfluxDB
www.influxdata.com | 4 May 2024
Index
What are some of the best open-source Yubikey projects in Go? This list will help you:
Project | Stars | |
---|---|---|
1 | authelia | 19,578 |
2 | yubikey-agent | 2,571 |
3 | WinCryptSSHAgent | 516 |
4 | yubikey-touch-detector | 383 |
5 | WireGuard-Guide | 360 |
6 | awsu | 172 |
7 | piv-agent | 74 |
8 | nCryptAgent | 39 |
9 | yubisigner | 7 |
10 | yubikey-otp | 4 |
11 | pinentry-mac-keychain | 2 |
Sponsored