zero-trust

There are 192 repositories under zero-trust topic.

  • gravitl/netmaker

    Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

    Language:Go9.1k82819533
  • immudb

    codenotary/immudb

    immudb - immutable database based on zero trust, SQL/Key-Value/Document model, tamperproof, data change history

    Language:Go8.5k79521338
  • ockam

    build-trust/ockam

    Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.

    Language:Rust4.4k581.8k557
  • pomerium

    pomerium/pomerium

    Pomerium is an identity and context-aware access proxy.

    Language:Go3.9k38975277
  • boundary

    hashicorp/boundary

    Boundary enables identity-based access management for dynamic infrastructure.

    Language:Go3.8k200348277
  • Security-101

    microsoft/Security-101

    8 Lessons, Kick-start Your Cybersecurity Learning.

    3.5k7017371

  • BrowserBox/BrowserBox

    🌀 Browse the web from a browser you run on a server, rather than on your local device. Lightweight virtual browser. For security, privacy and more! By https://github.com/dosyago

    Language:JavaScript3.2k28291319
  • ziti

    openziti/ziti

    The parent project for OpenZiti. Here you will find the executables for a fully zero trust, application embedded, programmable network @OpenZiti

    Language:Go2.2k32556125
  • zrok

    openziti/zrok

    Geo-scale, next-generation peer-to-peer sharing platform built on top of OpenZiti.

    Language:Go2.2k2540277

  • lunasec-io/lunasec

    LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

    Language:TypeScript1.4k30290162

  • warrant-dev/warrant

    Warrant is a highly scalable, centralized authorization service based on Google Zanzibar, used for defining, querying, and auditing application authorization models and access control rules.

    Language:Go1k43629

  • mrash/fwknop

    Single Packet Authorization > Port Knocking

    Language:Perl1k54236225

  • pomerium/awesome-zero-trust

    A curated collection of awesome resources for the zero-trust security model.

    71735875

  • pritunl/pritunl-zero

    Zero trust system

    Language:Go569250105

  • seknox/trasa

    Zero Trust Service Access

    Language:Go3822511569

  • dosyago/chai

    chai - Experience Zero Trust security with Chai! Convert and view documents as vivid images right in your browser. No mandatory downloads, no hassle—just pure, joyful security! 🌈

    Language:Shell360111734

  • wecooperate/iMonitorSDK

    系统监控开发套件(sysmon、procmon、edr、终端安全、主机安全、零信任、上网行为管理、沙箱)

    Language:C++33210379

  • zyclonite/zerotier-docker

    ZeroTier One as Docker Image

    Language:Shell295121974

  • otterize/intents-operator

    Manage network policies, AWS, GCP & Azure IAM policies, Istio Authorization Policies, and Kafka ACLs in a Kubernetes cluster with ease.

    Language:Go28251214

  • sandworm-hq/sandworm-guard-js

    Easy auditing & sandboxing for your JavaScript dependencies 🪱

    Language:JavaScript2504208

  • cogolabs/beyond

    BeyondCorp-inspired HTTPS/SSO Access Proxy. Secure internal services outside your VPN/perimeter network during a zero-trust transition.

    Language:Go2479524

  • MirageNetwork/MirageServer

    蜃境:基于Headscale修改的带WebUI开源版本Tailscale控制器

    Language:Vue17142914

  • zyclonite/nassh-relay

    Relay Server for the Secure Shell Chromium plugin

    Language:Java14081622

  • Erisa/discord-oidc-worker

    Sign into Discord on Cloudflare Access, powered by Cloudflare Workers!

    Language:JavaScript1312321
  • secrets-manager

    vmware-tanzu/secrets-manager

    VMware Secrets Manager for Cloud-Native Apps is a lightweight secrets manager to protect your sensitive data. It’s perfect for edge deployments where energy and footprint requirements are strict—See more: https://vsecm.com/

    Language:Go130762224

  • lucadibello/zerotrust-your-home

    🔐 Securing Your Digital Sanctuary, Trust None, Protect Everything.

    Language:Shell115308

  • ssbostan/tondra

    Continuous Development on Kubernetes environments with Skaffold

    Language:Python111202
  • sdk-golang

    openziti/sdk-golang

    Ziti SDK for Golang

    Language:Go91157515
  • werbot

    werbot/werbot

    🔑 Share access for teams - self-hosted solution for teams with single sign-on for easy, secure shared access to servers, databases or applications.

    Language:Go85266

  • uatuko/sentium

    🔐 Lightning fast, global scale authorization service without the overhead of yet another DSL.

    Language:C++82346
  • azure-spring-apps-landing-zone-accelerator

    Azure/azure-spring-apps-landing-zone-accelerator

    The Azure Spring Apps landing zone accelerator is an open-source collection of architectural guidance and reference implementation to accelerate deployment of Azure Spring Apps at scale.

    Language:HCL80143874

  • openziti/edge

    Application-embedded connectivity and zero-trust components

    Language:Go761225819

  • philips-labs/spiffe-vault

    Integrates Spiffe and Vault to have secretless authentication

    Language:Go76327

  • ThalesGroup/sshizzle

    Serverless, Zero-Trust SSH for Microsoft Azure

    Language:Go704818

  • CloudDefenseAI/AWSZeroTrustPolicy

    Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control

    Language:Python692013

  • quicsec/quicsec

    HTTP/3-enable existing HTTP apps. Leverage HTTP3 native features and auto-enable workload identity (SPIFFE), AuthN (mTLS/x509, OIDC/Auth0-Okta), AuthZ (OPA), defense-in-depth (WAAP/WAF), and observability (metrics, logs, alerting, dashboard).

    Language:Go684152