9 projects
Vault
Vault is a secure secrets management and data protection system that provides encryption as a service, access control, and key management capabilities. It enables organizations to securely store and control access to tokens, passwords, certificates, API keys, and other sensitive data.
Contributors
8,251
Organizations
2,556
Software value
$29M
JumpServer
JumpServer is an open-source PAM (Privileged Access Management) platform that provides secure access control, session monitoring, and audit capabilities for enterprise infrastructure. It enables centralized management of system accounts, SSH keys, and remote access while supporting multi-factor authentication and detailed operation logs.
Contributors
4,561
Organizations
301
Software value
$5.2M
Teleport
The easiest, and most secure way to access and protect all of your infrastructure.
Contributors
3,384
Organizations
853
Software value
$103M
OpenBao
OpenBao is a secure secret management and encryption tool that provides a centralized solution for storing and controlling access to tokens, passwords, certificates, and other sensitive data. It is a fork of HashiCorp Vault focused on maintaining core secret management functionality.
Contributors
2,488
Organizations
555
Software value
$236M
step-ca
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Contributors
902
Organizations
245
Software value
$4.3M
FreeIPA
FreeIPA is an integrated security information management solution combining Linux (389) Directory Server, MIT Kerberos, NTP, DNS, and Dogtag certificate system. It provides centralized authentication, authorization and account information by storing data about users, groups, hosts and other objects necessary to manage the security aspects of a network of computers.
Contributors
520
Organizations
74
Software value
$26M
Firezone
Enterprise-ready zero-trust access platform built on WireGuard®.
Contributors
491
Organizations
131
Software value
$7.6M
Permify
Permify is an open-source authorization service and policy engine that implements attribute-based access control (ABAC). It provides a scalable solution for managing permissions and access control in applications, with features like policy management, real-time authorization decisions, and integration capabilities.
Contributors
270
Organizations
68
Software value
$5M
Paralus
Paralus offers access management for developers, architects, and CI/CD tools to remote K8s clusters by consolidating zero-trust access principles such as transaction level authentication and authorization into a single open-source tool. It helps engineering and architecture teams streamline access control for their fleet of K8s clusters spanning different operating environments, different public clouds and K8s distributions, and on-premises data centers operating behind firewalls. Paralus grants authorized users seamless and secure access to all clusters with a native and familiar kubectl experience by acting as a proxy between the users and systems needing access and the K8s API server. It also addresses one of K8s’ main pain points by eliminating the burden of managing K8s access controls cluster by cluster. Without Paralus, companies must manually manage access to each cluster using jump hosts or VPNs, and build custom tooling to audit and map all actions performed to a user’s identity – all of which is error-prone and increases the risk of breaches as the number of clusters grows. Along with helping directly manage role-based access control (RBAC) policies and assignments, Paralus enables: - Creation of custom roles, users, and groups. - Custom user role creation and revoking of permissions. - Ability to control access via pre-configured roles across clusters, namespaces, projects, and more. - Seamless integration with Identity Providers (IdPs) allowing the use of external authentication engines for users and group definitions, such as GitHub, Google, Azure AD, Okta, and others. - Automatic logging of all user actions performed for audit and compliance purposes. - Interact with Paralus either with a modern web GUI (default), a CLI tool called pctl, or Paralus API.
Contributors
145
Organizations
43
Software value
$8.5M