A curated collection of awesome resources for the zero-trust security model.
☆770Dec 9, 2022Updated 3 years ago
Alternatives and similar repositories for awesome-zero-trust
Users that are interested in awesome-zero-trust are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Principles to help you design and deploy a zero trust architecture☆1,695Apr 25, 2023Updated 2 years ago
- Zero trust system☆646Apr 10, 2026Updated last week
- BeyondCorp-inspired HTTPS/SSO Access Proxy. Secure internal services outside your VPN/perimeter network during a zero-trust transition.☆254Nov 10, 2025Updated 5 months ago
- Pomerium is an identity and context-aware access proxy.☆4,747Updated this week
- A cloud native Identity & Access Proxy / API (IAP) and Access Control Decision API that authenticates, authorizes, and mutates incoming H…☆3,552Apr 10, 2026Updated last week
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- 🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.☆4,191Updated this week
- Identity-Aware Proxy☆21Feb 25, 2023Updated 3 years ago
- Zero Trust Service Access☆378Dec 22, 2021Updated 4 years ago
- Single Packet Authorization > Port Knocking☆1,346Nov 26, 2025Updated 4 months ago
- a traefik / nginx companion to create an identity aware proxy like beyondcorp☆29Jan 3, 2019Updated 7 years ago
- 🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywher…☆8,405Updated this week
- OpenSPA - An open and extensible Single Packet Authorization (SPA) protocol☆104Jan 25, 2023Updated 3 years ago
- BeyondCorp-style federated access proxy☆50Aug 1, 2023Updated 2 years ago
- A signed hash chain implementation for zero-trust data management.☆48Dec 17, 2018Updated 7 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A proof of concept Software Defined Perimeter (SDP) implementation using OpenSPA for service hiding☆57Feb 13, 2022Updated 4 years ago
- A flexible control server for osquery fleets☆1,101Dec 15, 2020Updated 5 years ago
- Cloud Native Runtime Security☆8,860Updated this week
- Boundary enables identity-based access management for dynamic infrastructure.☆4,020Updated this week
- The easiest, and most secure way to access and protect all of your infrastructure.☆20,131Updated this week
- CFSSL: Cloudflare's PKI and TLS toolkit☆9,390Feb 26, 2025Updated last year
- A simple SSL/TLS proxy with mutual authentication for securing non-TLS services.☆2,144Apr 7, 2026Updated last week
- sso, aka S.S.Octopus, aka octoboi, is a single sign-on solution for securing internal services☆3,123Dec 5, 2025Updated 4 months ago
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,431Oct 16, 2025Updated 6 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Kilo is a multi-cloud network overlay built on WireGuard and designed for Kubernetes (k8s + wg = kg)☆2,238Apr 9, 2026Updated last week
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,155Updated this week
- Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function☆2,760Aug 16, 2024Updated last year
- A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.☆14,199Updated this week
- A horizontally scalable, highly available, multi-tenant, long term Prometheus.☆5,783Updated this week
- A collection of public security audits.☆208Dec 3, 2019Updated 6 years ago
- Zero Trust Network Framework☆10Sep 29, 2019Updated 6 years ago
- Monzo's real-time incident response and reporting tool ⚡️☆1,553Mar 20, 2024Updated 2 years ago
- Kubernetes OIDC authentication client☆17Feb 26, 2022Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- An operator for running Pomerium on a Kubernetes cluster.☆27May 23, 2022Updated 3 years ago
- uber's ssh certificate pam module☆868Mar 19, 2023Updated 3 years ago
- A pretty sweet vulnerability scanner☆4,150Sep 25, 2024Updated last year
- AWS CloudWatch Logs Agent written in Go with zero runtime dependencies☆12Oct 7, 2016Updated 9 years ago
- Official helm charts for Pomerium.☆56Oct 5, 2023Updated 2 years ago
- Vulnerability Static Analysis for Containers☆10,968Updated this week
- go-audit is an alternative to the auditd daemon that ships with many distros☆1,654Mar 19, 2026Updated last month