Tools

Enterprise-class Open Source LDAP server for Linux.

Fully-featured, zero trust, full mesh overlay network. Includes a 2FA support out of the box, clients for all major desktop/mobile OS'es.

A next-gen FOSS self-hosted unified zero trust secure access platform that can operate as a remote access VPN, a ZTNA platform, API/AI/MCP gateway, a PaaS, an ngrok-alternative and a homelab infrastructure.

All in one IP Toolbox. Easy to check what's your IPs, IP geolocation, check for DNS leaks, examine WebRTC connections, speed test, ping test, MTR test, check website availability and more.

The easiest, and most secure way to access and protect all of your infrastructure.

FreeRADIUS - A multi-protocol policy server.

A Smart Ethernet Switch for Earth

Industry-leading high-performance, AI and semantic technology web application firewall and API security gateway (fork of nginx).

SSH bastion server with access control, session recording, and optional TPM-backed key protection. `EUPL-1.2` `Go/Docker`

Centralized network visibility and continuous asset discovery. Monitor devices, detect change, and stay aware across distributed networks.

Distributed, secure messenger with audio and video chat capabilities.

Highly customizable SSH server with several ways to authorize a user and options where and how to execute a user's session.

Selfhostable web app to make managing mTLS certificates a breeze

Fast, easy, free Bittorrent client.

Open-source and next-generation Web Application Firewall (WAF)

Modular SIP server (registrar/proxy/router/etc).

Simple, robust, BitTorrent tracker (client and server) implementation.

Independent, privacy-first, self-hostable PoW CAPTCHA service made in EU

SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Lightweight SIP proxy, location server, and registrar for a reliable and scalable SIP infrastructure.

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

Pomerium is an identity and context-aware access proxy.

Proxy over your Docker socket to restrict which requests it accepts

open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

portchecker.io is a free online utility to check the port status of a given hostname or IP address.

Rapid spam filtering system.

Light-weight HTTP/HTTPS proxy daemon.

HTTP(S)/WS(S)/TCP tunnels to localhost using only SSH (serveo/ngrok alternative)

Anonymously share files, browse and publish _freesites_ (web sites accessible only through Hyphanet) and chat on forums.

Creates Wireguard configuration for hub and peers with ease

OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.

A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

The modern spam protection tool. It replaces other captcha methods with a simple and easy to use spam protection solution.