Open-source projects categorized as Certificate Edit details
Related topics: #Letsencrypt #TLS #SSL #X509 #ACME

Top 23 Certificate Open-Source Projects

  • letsencrypt

    Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.

    Project mention: Good Use Of Golang? | reddit.com/r/golang | 2022-09-04

    Here’s a good code reference (Python and rust): https://github.com/certbot/certbot

  • Gravitational Teleport

    The easiest, most secure way to access infrastructure.

    Project mention: Python PyPi packages leaking AWS keys, env vars, secrets to the web | reddit.com/r/devops | 2022-07-01

    It’s time to no longer rely on keys, check out Teleport to use short-lived x509/TLS certificates instead of easily compromised keys, secrets, or passwords. https://github.com/gravitational/teleport

  • SonarLint

    Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.

  • cert-manager

    Automatically provision and manage TLS certificates in Kubernetes

    Project mention: Kubernetes volumes upside-down with Discoblocks - #2 | dev.to | 2022-09-23

    kind create cluster --image=storageos/kind-node:v1.24.2 kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.8.0/cert-manager.yaml kubectl storageos install --include-etcd --etcd-replicas 1 --stos-version develop kubectl apply -f https://github.com/ondat/discoblocks/releases/download/v0.0.5/discoblocks_v0.0.5.yaml

  • lego

    Let's Encrypt/ACME client and library written in Go

    Project mention: Making nginx easier to use (like Caddy) | reddit.com/r/selfhosted | 2022-09-06

    It is basically a light-weight abstraction layer around nginx and lego using a podman container.

  • dehydrated

    letsencrypt/acme client implemented as a shell-script – just add water

    Project mention: Lane County Property Records Web Security | reddit.com/r/Eugene | 2022-07-22

    If you don't wanna use a CDN (or if you're also worried about the backend traffic between the CDN and your server) then you can use certbot or dehydrated or something similar to automate the provisioning of letsenscrypt.org certificates on your server (or just ensure you're using a host that does this for you).

  • forge

    A native implementation of TLS in Javascript and tools to write crypto-based and network-heavy webapps

    Project mention: Environment variables & Its best practices | dev.to | 2022-09-12

    You might use the .env file, which sits inside a server, to store important passwords and keys to databases and APIs. Keeping it in text inside a .env is risky as it may get exposed if the server is compromised. To avoid this issue, one should use Encryption and Decryption. There are a couple of tools and libraries which offer similar functionality. You can try any of those, but we recommend using CryptoJS or Forge.

  • websockify

    Websockify is a WebSocket to TCP proxy/bridge. This allows a browser to connect to any application/server/service.

    Project mention: Hide WireGuard Handshake | reddit.com/r/mikrotik | 2022-06-24
  • talent.io

    Download talent.io’s Tech Salary Report. Median salaries, most in-demand technologies, state of the remote work... all you need to know your worth on the market by tech recruitment platform talent.io

  • cli

    🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc. (by smallstep)

    Project mention: Uacme: ACMEv2 client written in plain C with minimal dependencies | news.ycombinator.com | 2022-08-21
  • nginx-proxy-automation

    Automated docker nginx proxy integrated with letsencrypt.

    Project mention: lurker's homelab | reddit.com/r/homelab | 2022-04-03

    For my nginx proxy using lets encrypt I used this resouce and wordpress was this.

  • acmetool

    :lock: acmetool, an automatic certificate acquisition tool for ACME (Let's Encrypt)

    Project mention: Homebrew installed infected software? | reddit.com/r/MacOS | 2022-05-17

    as it states on that page it pulls from https://github.com/hlandau/acmetool <- Is the original repo, and if it were infected would be the source of the SCA.

  • certstrap

    Tools to bootstrap CAs, certificate requests, and signed certificates.

    Project mention: Step by step guide of setting up SSL/TLS for a server and client | reddit.com/r/java | 2022-05-10

    I like certstrap for this sort of thing, personally. I used to bugger about with OpenSSL but that’s far too real ale these days.

  • getssl

    obtain free SSL certificates from letsencrypt ACME server Suitable for automating the process on remote servers.

    Project mention: Uacme: ACMEv2 client written in plain C with minimal dependencies | news.ycombinator.com | 2022-08-21
  • certify

    Professional TLS/SSL Certificate Manager UI for Windows, powered by Let's Encrypt and compatible with all ACME v2 CAs. Download from certifytheweb.com

    Project mention: Who do you use for SSL Certificates? | reddit.com/r/msp | 2022-08-15
  • LettuceEncrypt

    Free, automatic HTTPS certificate generation for ASP.NET Core web apps

    Project mention: Let's secure our .NET Web APIs with a Free Let's Encrypt certificate by manually generating a Wildcard certificate and installing it in NGINX or Kestrel. | reddit.com/r/dotnet | 2022-09-04

    If you're using kestrel directly as your server, use LettuceEncrypt to generate the cert for you.

  • covidpass

    Web app for adding EU Digital COVID Certificates to your wallet apps

    Project mention: Caffè Italia * 06/08/22 | reddit.com/r/italy | 2022-08-06
  • DCA

    Docker Certified Associate Exam Preparation Guide

    Project mention: DCA Exam | reddit.com/r/docker | 2022-09-12
  • PKI.js

    PKI.js is a pure JavaScript library implementing the formats that are used in PKI applications (signing, encryption, certificate requests, OCSP and TSP requests/responses). It is built on WebCrypto (Web Cryptography API) and requires no plug-ins.

  • WeIdentity

    基于区块链的符合W3C DID和Verifiable Credential规范的分布式身份解决方案

  • serverless-domain-manager

    Serverless plugin for managing custom domains with API Gateways.

    Project mention: Build a multi-region, multi-master application with Serverless and DynamoDB Global Tables | dev.to | 2022-05-05

    We’re going to use the serverless-domain-manager plugin to simplify this.

  • certigo

    A utility to examine and validate certificates in a variety of formats

    Project mention: How to manually download and validate SSL certificates using openssl | reddit.com/r/selfhosted | 2022-03-10

    not sure what you usually do with it, but go source code can be compiled statically and run on systems without the need to have the compiler installed everywhere. Here you can find the latest executables https://github.com/square/certigo/releases/tag/v1.15.0 .

  • cashier

    A self-service CA for OpenSSH

    Project mention: What are SSH Certificate Authority solutions? | reddit.com/r/linuxadmin | 2022-07-26

    In the quick search I learned about ssh cert authority which looks very manual and also like a dead project smallstep's step-ca who put together very nice article about how to begin certificate authority process Netflix' BLESS is AWS only Cashier which also looks quite ok

  • routeros-scripts

    a collection of scripts for MikroTik RouterOS

    Project mention: What are people using for DHCP DNS creation in v7? | reddit.com/r/mikrotik | 2022-07-23

    Check the eworm scripts: https://github.com/eworm-de/routeros-scripts

  • keyvault-acmebot

    Automated ACME SSL/TLS certificates issuer for Azure Key Vault (App Gateway / Front Door / CDN / others)

    Project mention: Wildcard SSL for inward-only facing, non-critical, non -PHI, non-confidential systems? | reddit.com/r/sysadmin | 2022-07-21

    If you happen to be using things in Azure already (or are okay with adding a few), I've found this solution to be very useful https://github.com/shibayan/keyvault-acmebot as it just drops the certificates in Azure KeyVault and keeps them updated.

  • Scout APM

    Truly a developer’s best friend. Scout APM is great for developers who want to find and fix performance issues in their applications. With Scout, we'll take care of the bugs so you can focus on building great things 🚀.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2022-09-23.

Certificate related posts


What are some of the best open-source Certificate projects? This list will help you:

Project Stars
1 letsencrypt 29,306
2 Gravitational Teleport 12,643
3 cert-manager 9,364
4 lego 5,551
5 dehydrated 5,406
6 forge 4,494
7 websockify 3,169
8 cli 2,696
9 nginx-proxy-automation 2,443
10 acmetool 1,934
11 certstrap 1,884
12 getssl 1,805
13 certify 1,308
14 LettuceEncrypt 1,246
15 covidpass 1,227
16 DCA 1,146
17 PKI.js 1,091
18 WeIdentity 1,048
19 serverless-domain-manager 876
20 certigo 832
21 cashier 643
22 routeros-scripts 636
23 keyvault-acmebot 616
Find remote jobs at our new job board 99remotejobs.com. There are 5 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.
Truly a developer’s best friend
Scout APM is great for developers who want to find and fix performance issues in their applications. With Scout, we'll take care of the bugs so you can focus on building great things 🚀.