google / hiba
HIBA is a system built on top of regular OpenSSH certificate-based authentication that allows to manage flexible authorization of principals on pools of target hosts without the need to push customized authorized_users files periodically.
☆366Updated 3 months ago
Related projects: ⓘ
- Silly usage of AWS EC2 IPv6 prefixes☆322Updated 2 years ago
- Short term certificate based identity system (ssh/x509 ca + openidc)☆122Updated last month
- Wireguard secrets engine for Vault☆84Updated last year
- ssh-agent for TPMs☆333Updated 2 weeks ago
- Progressively image a mounted disk correctly without corruption☆276Updated 2 years ago
- A configuration management system for Pets, not Cattle☆460Updated last year
- Kadeessh (formerly Caddy-SSH) is a general-purpose, extensible, modular, memory-safe SSH server built in Go☆541Updated last month
- Turn IP sockets into Unix domain sockets☆357Updated 2 months ago
- A fancy-schmancy tcpdump-esque TUI, programmed in Go.☆362Updated 2 years ago
- build distroless images with alpine tools☆127Updated 2 years ago
- Test ssh login key acceptance without having the private key☆215Updated 2 years ago
- A jump-host SSH server that starts machines on-demand☆481Updated 3 years ago
- Get LetsEncrypt TLS certs for internal-only TLS servers via a delegated golang.org/x/crypto/acme/autocert server.☆246Updated 4 years ago
- Zero config TLS proxy server that uses SNI☆120Updated last year
- 🦠 NVMe-TCP at your fingertips 🦠☆294Updated 4 months ago
- 🦐SSH Certificate Authority in a Lambda (on the barbie)☆116Updated 4 years ago
- Proxy for enforcing webauthn authentication, written in Go☆123Updated 3 months ago
- Software Supply Chain Transparency Log☆880Updated this week
- tobab: the poor mans identity aware proxy, easy to use setup for beyondcorp in your homelab☆152Updated 7 months ago
- ☆338Updated last year
- ☆572Updated 2 months ago
- Inspect certificate authorities in container images☆226Updated 4 months ago
- FIDO2 (WebAuthn) and FIDO U2F platform library for Linux written in Rust; includes a proposal for a new D-Bus Portal interface for FIDO2,…☆351Updated 2 months ago
- Imagine your SSH server only listens on an IPv6 address, and where the last 6 digits are changing every 30 seconds as a TOTP code...☆416Updated 3 years ago
- Fly☆259Updated 5 months ago
- ☆144Updated 3 months ago
- Run containerized, rootless applications with podman☆122Updated 2 years ago
- Split ping, see what direction the loss or latency is on☆307Updated last year
- eBPF Port Knocking Tool☆230Updated last year
- Powerful system container and virtual machine manager☆67Updated last week