Security OSS tools — 17 tracked with release & CVE alerts

infisical Healthy open source

Infisical is the open-source platform for secrets, certificates, and privileged access management.

OpenZiti Healthy open source

Fully-featured, zero trust, full mesh overlay network. Includes a 2FA support out of the box, clients for all major desktop/mobile OS'es.

teleport Healthy open source

The easiest, and most secure way to access and protect all of your infrastructure.

beelzebub Healthy open source

Honeypot framework designed to provide a highly secure environment for detecting and analyzing cyber attacks.

grype Mixed open source

A vulnerability scanner for container images and filesystems

Trivy At Risk open source

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

authelia Mixed open source

The Single Sign-On Multi-Factor portal for web apps, now OpenID Certified™

cerbos Mixed open source

Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control policies for your application resources.

Pomerium Mixed open source

Pomerium is an identity and context-aware access proxy.

openbao Healthy open source

OpenBao is a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys.

sup3rS3cretMes5age At Risk open source

Simple to use, simple to deploy, one time self destruct messaging service, with hashicorp vault as a backend

forest6511/secretctl At Risk open source

AI-safe secrets manager with MCP integration. Run commands with credentials injected as environment variables - AI agents never see plaintext secrets. Features output sanitization, AES-256-GCM encryption, and Argon2id key derivation.

ajitpratap0/GoSQLX Healthy open source

7 SQL tools (validate, format, parse, lint, security scan, metadata extraction, full analysis) over Streamable HTTP. Public remote server at mcp.gosqlx.dev - no install needed. 1.25M+ ops/sec, 6 SQL dialects.

ots Mixed open source

One-Time-Secret sharing platform with a symmetric 256bit AES encryption in the browser

certificates Mixed open source

A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

Amass At Risk open source

In-depth attack surface mapping and asset discovery

Themis At Risk open source

Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.

Tools