A lightweight, cryptography-powered, open-source toolkit built to enforce Zero Trust security for infrastructure, applications, and data in the AI-driven world.
-
Updated
Aug 13, 2025 - Go
#
zero-trust
Here are 284 public repositories matching this topic...
Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.
kubernetes security cloud self-hosted vpn mesh vpn-server k8s ipv6-support overlay-network wireguard devsecops zero-trust site-to-site mesh-network wireguard-vpn wg-quick virtual-networking wireguard-ui secure-remote-access
-
Updated
Aug 29, 2025 - Go
immudb - immutable database based on zero trust, SQL/Key-Value/Document model, tamperproof, data change history
go verify performance immutable sql database key-value verification pci-dss cryptographic compliance merkle-tree immutable-database gdpr zero-trust timetravel tamper-evident auditable tamperproof
-
Updated
May 30, 2025 - Go
8 Lessons, Kick-start Your Cybersecurity Learning.
security identity iam secops threat-modeling appsec data-protection risk-management data-security zero-trust cia-triad
-
Updated
Aug 7, 2025 - HTML
Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.
rust security distributed-systems identity encryption kafka authentication credentials messaging snowflake authorization encrypted-connections trust encrypted-messages e2ee key-management end-to-end-encryption zero-trust
-
Updated
Aug 29, 2025 - Rust
Pomerium is an identity and context-aware access proxy.
-
Updated
Aug 29, 2025 - Go
Boundary enables identity-based access management for dynamic infrastructure.
-
Updated
Aug 29, 2025 - Go
💚 Secure remote browsing anywhere.
sanitization chrome browser embeddable multiplayer webrtc proxy-server tor onion-service reverse-proxy cybersecurity web-browser cdr hidden-services rbi zero-trust remote-browser-isolation cobrowsing remote-browsers web-isolation
-
Updated
Aug 29, 2025 - JavaScript
The parent project for OpenZiti. Here you will find the executables for a fully zero trust, application embedded, programmable network @openziti
golang networking network overlay vpn mesh overlay-network netsec appsec zero-trust zerotrust zero-trust-network zero-trust-network-access ztna zero-trust-security zero-trust-cloud ztaa ztha secure-networking vpn-2
-
Updated
Aug 28, 2025 - Go
Geo-scale, next-generation peer-to-peer sharing platform built on top of OpenZiti.
-
Updated
Aug 25, 2025 - Go
A next-gen FOSS self-hosted unified zero trust secure access platform that can operate as a remote access VPN, a ZTNA/BeyondCorp architecture, API/AI gateway, a PaaS, an infrastructure for MCP & A2A architectures or even as an ngrok-alternative and a homelab infrastructure.
kubernetes tunnel ssh api-gateway mcp paas vpn sso quic mfa remote-access abac homelab wireguard zero-trust beyondcorp policy-as-code ztna ai-gateway mcp-gateway
-
Updated
Aug 29, 2025 - Go
DockFlare: Automate Cloudflare Tunnels with Docker Labels
python dns docker flask security automation networking selfhosted reverse-proxy cloudflare ingress-controller network-automation homelab zero-trust api-integration cloudflare-dns cloudflared cloudflare-access docker-labels cloudflare-tunnel
-
Updated
Aug 29, 2025 - Python
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
security continuous-delivery dependency-analysis cybersecurity pci-dss web-security compliance scanning cve-scanning tokenization gdpr security-tools devsecops software-composition-analysis zero-trust soc2 sbom scanning-tool sbom-generator log4shell
-
Updated
May 2, 2024 - TypeScript
Warrant is a highly scalable, centralized authorization service based on Google Zanzibar. Use it to define, enforce, query, and audit application authorization and access control.
golang permissions iam acl authorization rbac role-based-access-control entitlements access-control abac authz ciam zero-trust fine-grained-access-control zanzibar fine-grained-authorization rebac pricing-tiers relationship-based-access-control fgac
-
Updated
Apr 16, 2025 - Go
Single Packet Authorization > Port Knocking
-
Updated
Sep 22, 2024 - Perl
OpenAM is an open-source access management solution for identity authentication, authorization, and federation. It provides single sign-on, adaptive authentication, and centralized policy control, enabling secure access to web, mobile, and cloud applications
oauth saml oauth2 authentication accounting active-directory aaa policy authorization access sso kerberos federation oidc openam access-management zero-trust webauthn opensso zta
-
Updated
Aug 29, 2025 - Java
A curated collection of awesome resources for the zero-trust security model.
-
Updated
Dec 9, 2022
OpenDJ is an open-source LDAP directory server written in Java. It provides robust, scalable, and secure directory services for identity management, access control, and authentication in enterprise environments. OpenDJ supports LDAPv3 standard, replication, REST APIs, and high-performance
ldap rest replication rest-api ldap-server opendj ldap-client zero-trust ldap-service rest2ldap opends zta
-
Updated
Aug 29, 2025 - Java
Zero Trust Service Access
-
Updated
Dec 22, 2021 - Go
Improve this page
Add a description, image, and links to the zero-trust topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the zero-trust topic, visit your repo's landing page and select "manage topics."