SaaSHub helps you find the best software and product alternatives Learn more β
Top 23 ssh-agent Open-Source Projects
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
wsl-ssh-agent
Helper to interface with Windows ssh-agent.exe service from Windows Subsystem for Linux (WSL)
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
winssh-pageant
Bridge to Windows OpenSSH agent from Pageant. This means the openssh agent has the keys and this proxies pageant requests to it.
-
piv-agent
An SSH and GPG agent which you can use with your PIV hardware security device (e.g. a Yubikey).
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
[Windows only]
I recently discovered Cmder:
https://cmder.app/
It's a portable console emulator and gives you the ability to "place your own executable files into the bin folder to be injected into your PATH" when it's run.
So far I've added:
jq
This is a great idea. I now exclusively use SSH keys on hardware security modules of some kind. I use "Secretive", a mac app that does the same, plus a yubikey using yubikey-agent (https://github.com/FiloSottile/yubikey-agent; there are too many complicated ways to use SSH keys with a yubikey this is one of the friendliest ones). Depending on the security and frequency of which I access the service impacts whether I need presence confirmation or use secretive versus the yubikey.
I would be remiss to mention there are existing SSH TPM projects, not sure how this one differentiates. It seems to at least have the user experience pretty simple, similar to yubikey-agent (and secretive), and unlike some of the existing solutions which have quite a few extra steps:
Once the image has been built and pushed, you only need to trigger the deployment using Kamal. We use the webfactory/ssh-agent to establish a connection to our production server. After installing the required Ruby dependencies, itβs only a matter of running Kamal. As the image is already built and pushed, we use the --skip-push flag.
If you want to try Vault, you could try hashi-up to get it installed easily.
If that project https://github.com/buptczq/WinCryptSSHAgent had a pin timeout, it would be the perfect Windows ssh agent. It support named pipe, pagent shared memory and a UNIX socket under WSL2 using Hyper-V and socat.
Project mention: Goldwarden: Bitwarden Compatible Desktop Integration | news.ycombinator.com | 2024-01-03
Project mention: An Excruciatingly Detailed Guide to SSH (But Only the Things I Find Useful) | news.ycombinator.com | 2023-08-23I've been hacking on `ssh-tpm-agent` which allows you to create or import TPM sealed keys. This is practical as it prevents key extraction and it has dictionary attack protection which allows you to have 4 digit pins instead of passphrases to protect your private keys.
https://github.com/Foxboron/ssh-tpm-agent
Currently hacking up better support for `HostKeyAgent` and `HostKey` for `sshd`.
Project mention: Show HN: SSH-crypt β helps to keep passwords in your shell scripts safely | news.ycombinator.com | 2023-08-29
Location: New Delhi, India
Remote: Yes
Willing to relocate: within India
Technologies: Rust, C++, C, Python, Go, Postgres, MySQL, SQL, Linux, Nix
RΓ©sumΓ©/CV: https://gotlou.srht.site/resume.pdf
Email: [email protected]
Blog: https://gotlou.srht.site
LinkedIn: https://www.linkedin.com/in/saksham--mittal
I'm a student, and am looking for a good internship experience in the first half of 2024. I am currently a Google Summer of Code contributor at the Tor Project, and have contributed to Arti, the Rust rewrite of Tor in C, working beside the Arti devs.
I'm particularly interested in open source, computer networking and associated software. A while back I hacked around and built a peer to peer file transfer program to learn Rust, including the file transfer protocol too (you can check it out on https://github.com/gotlougit/p2p-file-transfer or on https://git.sr.ht/~gotlou/p2p-file-transfer). I did this mostly being inspired by Tailscale and also out of frustration of how getting uncompressed photos from friends was a mess.
I love learning new things and am a fast learner. Currently I am writing a more secure, drop-in SSH agent replacement (at https://github.com/gotlougit/sshield) which encrypts SSH keys and unlocks them with a master password, with planned features including using Linux sandboxing mechanisms such as Landlock or seccomp-bpf to make the agent process less prone to RCEs.
For more info, check out my Github at https://github.com/gotlougit
ssh-agent related posts
-
Unix sockets, Cygwin, SSH agents, and sadness
-
Show HN: ssh-tpm-agent β SSH agent for TPMs
-
Show HN: SSH-tpm-agent β SSH agent for TPMs
-
What SSH / terminal tool are we using?
-
We need better support for SSH host certificates
-
Yubikey ssh keys with Ansible, wants to be touched constantly
-
libagentcrypt - Symmetric encryption with SSH Agent
-
A note from our sponsor - SaaSHub
www.saashub.com | 7 May 2024
Index
What are some of the best open-source ssh-agent projects? This list will help you:
Project | Stars | |
---|---|---|
1 | cmder | 25,573 |
2 | yubikey-agent | 2,571 |
3 | see awesome-ssh | 2,370 |
4 | goph | 1,656 |
5 | ssh-agent | 1,092 |
6 | hashi-up | 659 |
7 | wsl-ssh-agent | 527 |
8 | WinCryptSSHAgent | 516 |
9 | goldwarden | 444 |
10 | ssh-tpm-agent | 292 |
11 | winssh-pageant | 234 |
12 | kubectl-plugin-ssh-jump | 167 |
13 | OmniSSHAgent | 116 |
14 | pam_rssh | 73 |
15 | piv-agent | 74 |
16 | nCryptAgent | 39 |
17 | ssh-agency | 38 |
18 | ssh-crypt | 25 |
19 | zsh-ssh-agent | 24 |
20 | libagentcrypt | 10 |
21 | sshield | 9 |
22 | ssh-agent-macos.fish | 5 |
23 | SSHAgentSecureProxy | 1 |
Sponsored