Top 23 Credential Open-Source Projects

• trufflehog

  25 13,907 9.9 Go

  Find and verify secrets

  

Project mention: Seeking help to identify vulnerabilities and secrets in a website backup file | /r/HowToHack | 2023-07-03

Trufflehog

• aws-vault

  49 8,141 1.7 Go

  A vault for securely storing and accessing AWS credentials in development environments

  

Project mention: Keep your AWS CLI config fresh with Cog | dev.to | 2024-03-28

Undying fondness for aws-vault to securely cache my session credentials.

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• Passbolt

  40 4,376 9.7 PHP

  Passbolt Community Edition (CE) API. The JSON API for the open source password manager for teams!

  

Project mention: Open Source alternatives to tools you Pay for | dev.to | 2023-12-08

Passbolt - Open Source Alternative to 1Password

• Ockam

  76 4,352 10.0 Rust

  Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.

  

Project mention: Tunnelmole, an ngrok alternative (open source) | news.ycombinator.com | 2024-03-21

disclosure: I work at Ockam.

The Portals for Mac app is an example of the type of thing you could build using the open source stack of protocols. The README (linked by parent) links out to all of the relevant parts of the protocol documentation to explain how these work together. The NAT Traversal (https://github.com/build-trust/ockam/blob/develop/examples/a...) part of the README is probably the best explanation of why the free relay you get via Ockam Orchestrator is a useful part of this demo.

As for why would anyone trust this: The protocols are designed so you absolutely don't have to trust the relay. Trust is pushed out to the edges that you control and so you're not susceptible to a MITM attack if something like a relay is compromised. The protocol design for all of this is open and documented, and was independently audited by (IMO) some of the best in the business, Trail of Bits: https://docs.ockam.io/reference/protocols.

• ggshield

  22 1,527 9.6 Python

  Find and fix 360+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.

  

• noseyparker

  13 1,511 9.4 Rust

  Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.

  

Project mention: Magika: AI powered fast and efficient file type identification | news.ycombinator.com | 2024-02-15

Yes!

Sometimes a file has no extension. Other times the extension is a lie. Still other times, you may be dealing with an unnamed bytestring and wish to know what kind of content it is.

This last case happens quite a lot in Nosey Parker [1], a detector of secrets in textual data. There, it is possible to come across unnamed files in Git history, and it would be useful to the user to still indicate what type of file it seems to be.

I added file type detection based on libmagic to Nosey Parker a while back, but it's not compiled in by default because libmagic is slow and complicates the build process. Also, libmagic is implemented as a large C library whose primary job is parsing, which makes the security side of me jittery.

I will likely add enabled-by-default filetype detection to Nosey Parker using Magika's ONNX model.

[1] https://github.com/praetorian-inc/noseyparker

• envchain

  3 1,139 0.0 C

  Environment variables meet macOS Keychain and gnome-keyring <3

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• granted

  15 888 8.7 Go

  The easiest way to access your cloud.

  

Project mention: Ask HN: How do you manage many profiles and credentials for cloud tooling? | news.ycombinator.com | 2023-10-03

You're going to love https://granted.dev. It can be extended further, as we've done internally: https://www.duckbillgroup.com/blog/overhauling-aws-account-a...

• elpscrk

  5 726 0.0 Python

  An Intelligent wordlist generator based on user profiling, permutations, and statistics. (Named after the same tool in Mr.Robot series S01E01)

Project mention: how did he do it , like for example to crack a wifi pass you need to capture a handshake first then only you can use a dictionary attack . i really wanna know how he did it? | /r/MrRobot | 2023-05-26

• chameleon

  1 638 3.0 Dockerfile

  19 Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres, MySQL, MSSQL, Elastic and ldap) (by qeeqbox)

  

• honeypots

  1 585 9.2 Python

  30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, sip, smb, smtp, snmp, socks5, ssh, telnet, vnc)

  

• mXtract

  1 572 0.0 C++

  mXtract - Memory Extractor & Analyzer

• credential-plus

  1 532 0.0 JavaScript

  🔒Unified API for password hashing algorithms

• AWS-Guide

  4 470 6.4 Java

  Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications.

• buttercup-core

  10 461 7.8 TypeScript

  :tophat: The mighty NodeJS password vault

  

• aws-sso-cli

  3 394 8.9 Go

  A powerful tool for using AWS Identity Center for the CLI and web console.

Project mention: JIT WireGuard | news.ycombinator.com | 2024-03-13

• wifiqr

  6 251 1.0 Go

  Create a QR code with your Wi-Fi login details

• deadshot

  2 188 0.0 Python

  Deadshot is a Github pull request scanner to identify sensitive data being committed to a repository

  

• windows-Credential-Provider-library

  1 178 2.6 C++

  This repository will be updated with all the examples and links that I can find with relevant knowledge & information about CP in MS Windows vista up to version 10.

• cfn-secret-provider

  2 142 4.9 Python

  A CloudFormation custom resource provider for deploying secrets and keys

  

• setup-git-credentials

  1 82 5.6 TypeScript

  GitHub action to enable cloning private respositories.

  

• secret-service

  3 79 0.0 Go

  Service to keep secrets of applications

• blockchain-certificates

  2 65 0.0 Python

  Used to create, issue, revoke, or validate certificates (or any other PDF file) on the public Bitcoin blockchain.

  

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Credentials related posts

• Magika: AI powered fast and efficient file type identification
  15 projects | news.ycombinator.com | 15 Feb 2024
• GitHub: Can no longer search code without being logged in
  1 project | news.ycombinator.com | 27 Nov 2023
• Ask HN: How do you manage many profiles and credentials for cloud tooling?
  1 project | news.ycombinator.com | 3 Oct 2023
• Seeking help to identify vulnerabilities and secrets in a website backup file
  1 project | /r/HowToHack | 3 Jul 2023
• A CLI app that keeps your passwords encrypted and lets you manage them using a single secret
  3 projects | /r/golang | 1 Jul 2023
• Granted
  1 project | /r/devopspro | 17 May 2023
• Introducing DeepSecrets: a better appsec tool for secrets scanning
  4 projects | /r/netsec | 27 Apr 2023
• A note from our sponsor - WorkOS
  workos.com | 29 Apr 2024

  The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com