SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 Java Security Projects
-
Authentication with Keycloak
-
InfluxDB
InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
-
Project mention: The Backend Shift: Leveraging Open Source Powerhouses for Faster, Leaner Apps | dev.to | 2025-05-10
-
Project mention: Security - Solving the "Content Security Policy (CSP) Header Not Set" in Next.js | dev.to | 2025-05-28
Zed Attack Proxy (ZAP)
-
Cryptomator
Cryptomator for Windows, macOS, and Linux: Secure client-side encryption for your cloud storage, ensuring privacy and control over your data.
Cryptomator - Secure cloud storage encryption.
-
-
Comprehensive details are available in the release notes.
-
🔗 Graylog
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
MifareClassicTool
An Android NFC app for reading, writing, analyzing, etc. MIFARE Classic RFID tags.
-
Project mention: Show HN: Torii – a framework agnostic authentication library for Rust | news.ycombinator.com | 2025-02-28
I think the most similar you'd find for Java are Shiro [0], Java Authentication and Authorization Service (JAAS) [1], and pac4j [2].
0: https://shiro.apache.org/
-
-
> It is not uncommon to have bugs on certain Android brands, with the community on github reporting the bug but waiting months for it to be fixed.
Welcome to Android.
https://github.com/M66B/FairEmail/blob/master/app/src/main/j...
-
dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Project mention: Dependency-Track: Software Bill of Materials (SBoM) Analysis | news.ycombinator.com | 2025-01-23 -
-
-
-
pac4j
Security engine for Java (authentication, authorization, multi frameworks): OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
Project mention: Show HN: Torii – a framework agnostic authentication library for Rust | news.ycombinator.com | 2025-02-28 -
Due to the specifics of the week number, so testing isn't the best pal to find this error. So why does such a topical bug come in the last place? The reason is that the warning isn't from the actual version of Bouncy Castle but from our testing base. The old sources still remain there, and this bug has been fixed for a long time. This is such a salute from the past, just a time travel again :)
-
find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
-
G'day mempko, I remember firestr! Very nice! You might remember around the same time (2013) I started Peergos. We're still working on it!
https://peergos.org
-
burpgpt
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.
-
itext-java
iText for Java represents the next level of SDKs for developers that want to take advantage of the benefits PDF can bring. Equipped with a better document engine, high and low-level programming capabilities and the ability to create, edit and enhance PDF documents, iText can be a boon to nearly every workflow.
Project mention: How I Made PDF Table Rendering 95% Faster in an Afternoon | news.ycombinator.com | 2025-05-16 -
ballcat
😸一个快速开发脚手架,快速搭建企业级后台管理系统,并提供多种便捷starter进行功能扩展。主要功能包括前后台用户分离,菜单权限,数据权限,定时任务,访问日志,操作日志,异常日志,统一异常处理,XSS过滤,SQL防注入,国际化 等多种功能
Project mention: BallCat: Your New Secret Weapon for Supercharged Project Development | dev.to | 2025-04-19View the Project on GitHub
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Java Security discussion
Java Security related posts
-
Keycloak and Okta Integration: Complete Developer Guide
-
Security - Solving the "Content Security Policy (CSP) Header Not Set" in Next.js
-
Building a Self-hosted IAM Platform to Add SSO to My Home Lab
-
Setting up Parseable with Kubernetes and Docker Desktop
-
Fortifying Cloud-Native Applications: Key Security Measures
-
March 2025 Java Key Updates in Boot, Security, and More
-
Unveiling the Success Behind Spring Security: Open Source Business Models, Funding, and Community
-
A note from our sponsor - SaaSHub
www.saashub.com | 13 Jun 2025
Index
What are some of the best open-source Security projects in Java? This list will help you:
# | Project | Stars |
---|---|---|
1 | Keycloak | 27,668 |
2 | SuperTokens Community | 14,190 |
3 | ZAP | 13,704 |
4 | Cryptomator | 12,956 |
5 | jjwt | 10,708 |
6 | Spring Security | 9,163 |
7 | graylog | 7,698 |
8 | MifareClassicTool | 5,166 |
9 | Apache Shiro | 4,380 |
10 | hawk | 3,984 |
11 | FairEmail | 3,680 |
12 | dependency-track | 3,086 |
13 | jasypt-spring-boot | 2,965 |
14 | orbot-android | 2,547 |
15 | jCasbin | 2,506 |
16 | pac4j | 2,476 |
17 | Bouncy Castle | 2,472 |
18 | find-sec-bugs | 2,349 |
19 | Peergos | 2,165 |
20 | burpgpt | 2,142 |
21 | itext-java | 2,112 |
22 | ballcat | 1,628 |
23 | BinAbsInspector | 1,619 |