Top 23 Rust Security Projects

Security

• Add a project

1. sniffnet

   1 91 37,930 9.7 Rust

   Comfortably monitor your Internet traffic 🕵️‍♂️

   

   Project mention: Announcing Sniffnet v1.4: introduced PCAP files import — it’s 2X faster than Wireshark! | dev.to | 2025-06-28

   For those of you that still don't know it, Sniffnet is an open-source, cross-platform, Rust-based application enabling you to comfortably monitor Internet traffic (official website | GitHub repository).

2. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

3. RustScan

   2 27 19,886 8.3 Rust

   🤖 The Modern Port Scanner 🤖

   

4. shadowsocks-rust

   3 25 10,678 9.5 Rust

   A Rust port of shadowsocks

   

   Project mention: Testing Geo-Blocked Features with Docker on a Zero-Budget Setup | dev.to | 2026-02-03

   To mimic different geographic locations, leverage free proxies or proxy chains. Some options include Free Proxy List or Shadowsocks, which can often be set up with minimal effort.

5. kata-containers

   4 20 8,017 10.0 Rust

   Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs. https://katacontainers.io/

   

   Project mention: Kubelet Metrics: How cAdvisor and CRI Collect Kubernetes Stats | dev.to | 2026-05-20

   container-stats exporter to the Kata Containers

6. microsandbox

   5 9 6,426 8.3 Rust

   🧱 local-first and microVM-backed programmable sandboxes for AI agents

   

   Project mention: Microsandbox – local-first programmable micro VMs | news.ycombinator.com | 2026-06-06

7. lldap

   6 82 6,275 8.8 Rust

   Light LDAP implementation

   

   Project mention: Show HN: Pangolin – OSS tunneled reverse proxy (self-hosted Cloudflare Tunnels) | news.ycombinator.com | 2025-07-10

   > So I am wondering if I can reduce attack surface by making "management" services (Keycloak admin console, the headless CMS admin interface etc.) accessible only to me...

   The answer to this is YES. Of course there are a variety of ways to implement. In your case I would start simple with something like wireguard. Keycloak won't be easy to install and configure as a beginner. If your needs are simple, check out https://github.com/lldap/lldap for authentication (and user management).

8. innernet

   7 64 5,490 7.4 Rust

   A private network system that uses WireGuard under the hood.

   

   Project mention: innernet: Simple, free and open-source infrastructure for WireGuard | news.ycombinator.com | 2026-02-02

9. zizmor

   8 14 5,482 9.8 Rust

   Static analysis for GitHub Actions

   

   Project mention: GitHub is investigating unauthorized access to their internal repositories | news.ycombinator.com | 2026-05-19

10. libreddit

    9 283 5,192 2.7 Rust

    Private front-end for Reddit

    

11. dalfox

    10 1 5,045 9.1 Rust

    🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

    

12. kanidm

    11 13 5,028 9.5 Rust

    Kanidm: A simple, secure, and fast identity management platform

    

13. Ockam

    12 77 4,625 9.6 Rust

    Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.

    

14. aya

    13 15 4,583 9.5 Rust

    Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.

    

    Project mention: Io_uring, kTLS and Rust for zero syscall HTTPS server | news.ycombinator.com | 2025-08-21

    Btw, I feel the pain with the unsafe io_uring.

    [1] - https://github.com/aya-rs/aya

15. black-hat-rust

    14 49 4,341 0.0 Rust

    Applied offensive security with Rust - https://kerkour.com/black-hat-rust

    

16. sozu

    15 11 3,679 7.5 Rust

    Sōzu HTTP reverse proxy, configurable at runtime, fast and safe, built in Rust. It is awesome!

    

    Project mention: Sōzune – a reverse proxy built on Sōzu, with Traefik-style autodiscovery | news.ycombinator.com | 2026-05-19

    Hi HN,

    Sōzune is a reverse proxy I've been building on top of Sōzu (https://github.com/sozu-proxy/sozu), the Rust proxy from Clever Cloud. Sōzu is fast and reload-without-downtime, but it's a low-level building block — you talk to it over a socket and

17. chainsaw

    16 14 3,560 6.8 Rust

    Rapidly Search and Hunt through Windows Forensic Artefacts

    

18. OpenSK

    17 12 3,354 6.8 Rust

    OpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards.

    

19. OxiCloud

    18 1 3,200 9.7 Rust

    ☁️ Ultra-fast, secure & lightweight self-hosted cloud storage — your files, photos, calendars & contacts, all in one place. Built in Rust.

    

20. hayabusa

    19 7 3,189 9.0 Rust

    Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

    

21. defguard

    20 14 2,738 9.4 Rust

    Zero-Trust access management with true WireGuard® 2FA/MFA

    

22. nono

    21 17 2,566 9.4 Rust

    Capability-based agent runtime with fine-grained policies . Brokering access directly within the agent's operating context, with zero setup and zero latency

    

    Project mention: Anthropic, please ship an official Claude Desktop for Linux | news.ycombinator.com | 2026-06-07

    There are a number of utilities for this. I use jai: https://jai.scs.stanford.edu/ but also have seen nono: https://github.com/always-further/nono smolvm: https://github.com/smol-machines/smolvm zerobox https://github.com/afshinm/zerobox and matchlock https://github.com/jingkaihe/matchlock

    They all have pros and cons. Pick the one that suits you best. Then you're also agent harness flexible (I use opencode).

23. oryx

    22 10 2,483 7.6 Rust

    🕵️‍♂️ TUI for sniffing network traffic using eBPF on Linux

    

    Project mention: Show HN: Nano PDF – A CLI Tool to Edit PDFs with Gemini's Nano Banana | news.ycombinator.com | 2025-11-29

24. sn0int

    23 1 2,431 4.0 Rust

    Semi-automatic OSINT framework and package manager

    

Rust Security related posts

• Sōzune – a reverse proxy built on Sōzu, with Traefik-style autodiscovery

  3 projects | news.ycombinator.com | 19 May 2026

• Static Analysis for GitHub Actions

  1 project | news.ycombinator.com | 13 May 2026

• Static Analysis for GitHub Actions

  3 projects | news.ycombinator.com | 12 May 2026

• How I cut my OpenAI Agent latency by replacing cloud sandboxes with a local microVM

  1 project | dev.to | 28 Apr 2026

• Show HN: I built an open source and secure infrastructure for internal apps

  1 project | news.ycombinator.com | 19 Apr 2026

• RootCX: A Supabase alternative for internal software

  1 project | news.ycombinator.com | 15 Apr 2026

• Supply chain nightmare: How Rust will be attacked and what we can do to mitigate

  4 projects | news.ycombinator.com | 10 Apr 2026
• A note from our sponsor - SaaSHub
  www.saashub.com | 9 Jun 2026

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Rust projects with our weekly report!