A curated collection of awesome resources for the zero-trust security model.
☆771Dec 9, 2022Updated 3 years ago
Alternatives and similar repositories for awesome-zero-trust
Users that are interested in awesome-zero-trust are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Principles to help you design and deploy a zero trust architecture☆1,696Apr 25, 2023Updated 3 years ago
- Zero trust system☆648Apr 30, 2026Updated last week
- BeyondCorp-inspired HTTPS/SSO Access Proxy. Secure internal services outside your VPN/perimeter network during a zero-trust transition.☆254Nov 10, 2025Updated 5 months ago
- Pomerium is an identity and context-aware access proxy.☆4,777Updated this week
- A cloud native Identity & Access Proxy / API (IAP) and Access Control Decision API that authenticates, authorizes, and mutates incoming H…☆3,552Apr 29, 2026Updated last week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.☆4,213Apr 28, 2026Updated last week
- Identity-Aware Proxy☆21Feb 25, 2023Updated 3 years ago
- Zero Trust Service Access☆379Dec 22, 2021Updated 4 years ago
- Single Packet Authorization > Port Knocking☆1,354Nov 26, 2025Updated 5 months ago
- a traefik / nginx companion to create an identity aware proxy like beyondcorp☆29Jan 3, 2019Updated 7 years ago
- 🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywher…☆8,477Updated this week
- OpenSPA - An open and extensible Single Packet Authorization (SPA) protocol☆104Jan 25, 2023Updated 3 years ago
- BeyondCorp-style federated access proxy☆51Aug 1, 2023Updated 2 years ago
- A signed hash chain implementation for zero-trust data management.☆48Dec 17, 2018Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A proof of concept Software Defined Perimeter (SDP) implementation using OpenSPA for service hiding☆57Feb 13, 2022Updated 4 years ago
- A flexible control server for osquery fleets☆1,100Dec 15, 2020Updated 5 years ago
- Cloud Native Runtime Security☆8,918Updated this week
- Boundary enables identity-based access management for dynamic infrastructure.☆4,025Apr 30, 2026Updated last week
- The easiest, and most secure way to access and protect all of your infrastructure.☆20,232Updated this week
- CFSSL: Cloudflare's PKI and TLS toolkit☆9,408Apr 24, 2026Updated 2 weeks ago
- A simple SSL/TLS proxy with mutual authentication for securing non-TLS services.☆2,150May 1, 2026Updated last week
- ☆10May 28, 2020Updated 5 years ago
- sso, aka S.S.Octopus, aka octoboi, is a single sign-on solution for securing internal services☆3,124Dec 5, 2025Updated 5 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,446Apr 17, 2026Updated 3 weeks ago
- Kilo is a multi-cloud network overlay built on WireGuard and designed for Kubernetes (k8s + wg = kg)☆2,247Apr 29, 2026Updated last week
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,166May 1, 2026Updated last week
- Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function☆2,760Aug 16, 2024Updated last year
- A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.☆14,336Updated this week
- A horizontally scalable, highly available, multi-tenant, long term Prometheus.☆5,798Updated this week
- A collection of public security audits.☆208Dec 3, 2019Updated 6 years ago
- Zero Trust Network Framework☆10Sep 29, 2019Updated 6 years ago
- Monzo's real-time incident response and reporting tool ⚡️☆1,555Mar 20, 2024Updated 2 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- An authenticating Docker Registry proxy with transparent Kubernetes integration☆17Oct 18, 2020Updated 5 years ago
- An operator for running Pomerium on a Kubernetes cluster.☆28May 23, 2022Updated 3 years ago
- uber's ssh certificate pam module☆869Mar 19, 2023Updated 3 years ago
- A pretty sweet vulnerability scanner☆4,157Apr 23, 2026Updated 2 weeks ago
- AWS CloudWatch Logs Agent written in Go with zero runtime dependencies☆12Oct 7, 2016Updated 9 years ago
- Official helm charts for Pomerium.☆56Oct 5, 2023Updated 2 years ago
- Vulnerability Static Analysis for Containers☆10,976Updated this week