age
A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
22,177 643
Packages (50)
lego
Pure Go ACME client library and CLI tool (for use with Let's Encrypt).
9,518 1,123
CertMagic
Mature, robust, and powerful ACME client integration for fully-managed TLS certificate issuance and renewal.
5,549 330
Cameradar
Tool and library to remotely hack RTSP streams from surveillance cameras.
5,016 621
Coraza
Enterprise-ready, modsecurity and OWASP CRS compatible WAF library.
3,455 321
memguard
A pure Go library for handling sensitive values in memory.
2,734 134
secure
HTTP middleware for Go that facilitates some quick security wins.
2,342 146
acmetool
ACME (Let's Encrypt) client tool with automatic renewal.
2,088 127
beelzebub
A secure low code honeypot framework, leveraging AI for System Virtualization.
1,980 190
themis
high-level cryptographic library for solving typical data security tasks (secure data storage, secure messaging, zero-knowledge proof authentication), available for 14 languages, best fit for multi-platform apps.
1,963 157
acra
Network encryption proxy to protect database-based applications from data leaks: strong selective encryption, SQL injections prevention, intrusion detection system.
1,474 136
dongle
A simple, semantic and developer-friendly golang package for encoding&decoding and encryption&decryption.
1,104 79
SafeDep/vet
Protect against malicious open source packages.
1,026 95
booster
Fast initramfs generator with full-disk encryption support.
629 59
go-password-validator
Password validator based on raw cryptographic entropy values.
578 47
nacl
Go implementation of the NaCL set of API's.
552 25
ssh-vault
encrypt/decrypt using ssh keys.
505 32
teler-waf
teler-waf is a Go HTTP middleware that provide teler IDS functionality to protect against web-based attacks and improve the security of Go-based web applications. It is highly configurable and easy to integrate into existing Go applications.
402 33
go-yara
Go Bindings for [YARA](https://github.com/plusvic/yara), the "pattern matching swiss knife for malware researchers (and everyone else)".
388 113
optimus-go
ID hashing and Obfuscation using Knuth's Algorithm.
369 25
firewalld-rest
A rest application to dynamically update firewalld rules on a linux server.
343 19
BadActor
In-memory, application-driven jailer built in the spirit of fail2ban.
324 18
go-peer
A software library for creating secure and anonymous decentralized systems.
320 15
passlib
Futureproof password hashing library.
289 30
simple-scrypt
Scrypt package with a simple, obvious API and automatic cost calibration built-in.
202 27
urusai
Urusai ("noisy" in Japanese) is a Go implementation of a random HTTP/DNS traffic noise generator that helps protect privacy by creating digital smokescreens while browsing.
181 12
luks.go
Pure Golang library to manage LUKS partitions.
96 11
pii-shield
Zero-code log sanitization sidecar for Kubernetes that redacts PII from logs.
76 4
passwap
Provides a unified implementation between different password hashing algorithms
75 8
goSecretBoxPassword
A probably paranoid package for securely hashing and encrypting passwords.
60 9
go-generate-password
Password generator that can be used on the cli or as a library.
57 6
go-htpasswd
Apache htpasswd Parser for Go.
47 12
certificates
An opinionated tool for generating tls certificates.
38 7
secret
Prevent your secrets from leaking into logs, std\* etc.
33 2
secureio
An keyexchanging+authenticating+encrypting wrapper and multiplexer for `io.ReadWriteCloser` based on XChaCha20-poly1305, ECDH and ED25519.
33 4
sslmgr
SSL certificates made easy with a high level wrapper around acme/autocert.
31 5
argon2-hashing
light wrapper around Go's argon2 package that closely mirrors with Go's standard library Bcrypt and simple-scrypt package.
25 4
goArgonPass
Argon2 password hash and verification designed to be compatible with existing Python and PHP implementations.
20 7
qrand
Client for the ANU Quantum Numbers (AQN) API, providing quantum-mechanically secure random data.
17 2
leakhound
Static analysis tool to detect accidental logging of sensitive struct fields, preventing data leaks in logs.
16
multikey
An n-out-of-N keys encryption/decryption framework based on Shamir's Secret Sharing algorithm.
12 2
Interpol
Rule-based data generator for fuzzing and penetration testing.
7
encid
Encode and decode encrypted integer IDs.
6
entpassgen
Entropy Password Generator with extensive command line arguments to generate random strings securely including digits, passwords, and passwords built using obscure dictionary words mixed with symbols and digits.
6
canery
Minimal, stateless authorization engine with a pluggable evaluation model.
4
procscope
Process-scoped runtime investigator using eBPF to trace process lifecycle, file activity, and network connections.
2
gost-crypto
Go library for Russian GOST cryptographic standards (digital signatures, Streebog hash, Kuznechik cipher, MGM AEAD) backed by OpenSSL gost-engine.
1
pm
Unix-style password manager written in Go to save your data with OpenPGP encryption.
1
redact
Redact sensitive information from slog-based logs using a configurable pipeline.
1
gspy
Forensic goroutine-to-syscall inspector for live Go processes.