Top 23 Go Security Projects
Fast, multi-platform web server with automatic HTTPSLatest mention: Shipping Jamstack like a hero - beware, it's cool | dev.to | 2021-01-25
The solution: Meli, a self-hosted platform built on top of the well-known Caddy Server. Out of the box, you get automatic HTTPs, zero-downtime, and heavy-duty performance.
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Compatible with MITREid.Latest mention: Ory Hydra 1.9: Open-source Golang OAuth2 provider | reddit.com/r/patient_hackernews | 2021-01-13
DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)Latest mention: Docker Image Size Reduction | dev.to | 2021-01-05
6) I stumbled across a tool docker-slim that can supposedly reduce a container's size by up to 30x.
Secure Access for Developers that doesn't get in the way.Latest mention: Pomerium — open source identity-aware access proxy — now supports TCP | reddit.com/r/devops | 2021-01-22
How doe this compare to e.g. Teleport?
The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and MITM attacks.Latest mention: Gopher Gold #10 - Wed Sep 09 2020 | dev.to | 2020-09-09
bettercap/bettercap (Go): The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and MITM attacks.
eBPF-based Networking, Security, and ObservabilityLatest mention: Gopher Gold #20 - Wed Nov 18 2020 | dev.to | 2020-11-17
cilium/cilium (Go): eBPF-based Networking, Security, and Observability
Simple and flexible tool for managing secretsLatest mention: Get config files inside pods | reddit.com/r/kubernetes | 2021-01-21
I run a personal server with many different projects orchestrated using k8s. I commit encrypted secrets to git which are output from a tool called sops https://github.com/mozilla/sops
A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CILatest mention: Container security scanner | reddit.com/r/devops | 2021-01-27
Safely store secrets in Git/Mercurial/SubversionLatest mention: Looking for an interesting project to contribute | reddit.com/r/golang | 2021-01-15
Interested in making GPG easier to use for encrypting secrets in Git? https://github.com/StackExchange/blackbox is being rewritten in Go and needs help testing, improving, ensuring compatibility, etc.
Open-Source Phishing ToolkitLatest mention: Gophish: An Open-Source Phishing Toolkit | reddit.com/r/netsec | 2021-01-20
Reconnaissance tool for GitHub organizations
Let's Encrypt client and ACME library written in GoLatest mention: Nginx reverse proxy manager - how to do manual DNS challenge? | reddit.com/r/selfhosted | 2021-01-08
Maybe https://github.com/go-acme/lego is an alternative for you. The dns integration lists Google Cloud
Manage your dotfiles across multiple diverse machines, securely.Latest mention: Getting started with dotfiles | reddit.com/r/dotfiles | 2021-01-27
There are a lot of different tools that can help you to manage your dotfiles. I use Dotdrop but there are several alternatives. Chezmoi Yadm Dotbot They can handle different systems but still being sync. Hope it helps!
The Single Sign-On Multi-Factor portal for web appsLatest mention: Single login for multiple services via Caddy? | reddit.com/r/selfhosted | 2021-01-19
People seem to recommend https://github.com/authelia/authelia these days. I haven't set it up myself yet.
Crowdsec - An open-source, lightweight agent to detect and respond to bad behaviours. It also automatically benefits from our global community-wide IP reputation database.Latest mention: CrowdSec, an open-source, modernized & collaborative fail2ban | reddit.com/r/cybersecurity | 2021-01-18
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.Latest mention: Ansible best practices | reddit.com/r/linuxadmin | 2021-01-22
Hashicorp Vault is the most well known tool for this, but I’ve also heard good things about Smallstep’s Certificate store (GitHub: https://github.com/smallstep/certificates)
Cameradar hacks its way into RTSP videosurveillance cameras
Privacy and Security focused Segment-alternative, in Golang and React
🔒🌍 Security scanner for your Terraform codeLatest mention: Terraform VMware vSphere Provider - is it worth it? | reddit.com/r/Terraform | 2021-01-12
I know tfsec (https://github.com/tfsec/tfsec) which is pretty good for AWS resources but I think vSphere resources are not implemented.
Google CTFLatest mention: The International Obfuscated C Code Contest 2020 winners | news.ycombinator.com | 2021-01-08
For those interested in more Turing complete format strings, look no further than the "sprint" challenge from this years Google CTF: https://ctftime.org/task/12834. It's sprintf in a loop this time and the program simulates a maze: https://github.com/google/google-ctf/tree/master/2020/quals/...
Kata Containers version 1.x runtime (for version 2.x see https://github.com/kata-containers/kata-containers).Latest mention: Building a secure/sandboxed environment for executing untrusted code | dev.to | 2021-01-16
[mirror] Go supplementary cryptography librariesLatest mention: how does bcrypt.CompareHash function know which cost to select? | reddit.com/r/golang | 2021-01-02
Secure software enclave for storage of sensitive information in memory.
What are some of the best open-source Security projects in Go? This list will help you:
|3||Lean and Mean Docker containers||9,567|