< Go

Share Share Share

Awesome Go Security Libraries

• acl-go 2

  

  | updated over 4 years ago | MIT License

  A simple but powerful Access Control List manager

• acmetool 2,015

  

  | updated over 1 year ago

  🔒 acmetool, an automatic certificate acquisition tool for ACME (Let's Encrypt)

• acra 1,337

  

  | updated 3 months ago | Apache License 2.0

  Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL.

• age 16,957

  

  | updated 3 months ago | BSD 3-Clause "New...

  A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.

• argon2-hashing 20

  

  | updated 10 months ago | MIT License

  A light package for generating and comparing password hashing with argon2 in Go

• argon2pw 90

  

  | updated about 3 years ago | GNU General Publi...

  Argon2 password hashing package for go with constant time hash comparison

• badactor 322

  

  | updated over 4 years ago | MIT License

  BadActor.org An in-memory application driven jailer written in Go

• bitwarden-go 246

  

  | updated over 5 years ago | MIT License

  A Bitwarden-compatible server written in Golang

• booster 493

  

  | updated 4 months ago | MIT License

  Fast and secure initramfs generator

• cameradar 3,998

  

  | updated 5 months ago | MIT License

  Cameradar hacks its way into RTSP videosurveillance cameras

• certificates 38

  

  | updated almost 2 years ago | MIT License

  An opinionated helper for generating tls certificates

• certmagic 4,967

  

  | updated 3 months ago | Apache License 2.0

  Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal

• client_golang 5,367

  

  | updated about 2 months ago | Apache License 2.0

  Prometheus instrumentation library for Go applications

• common 261

  

  | updated 3 months ago | Apache License 2.0

  Go libraries shared across Prometheus components and libraries.

• coraza 986

  

  | updated over 1 year ago | Apache License 2.0

  OWASP Coraza WAF is a golang modsecurity compatible web application firewall library

• crypto 2,982

  

  | updated 4 months ago | BSD 3-Clause "New...

  [mirror] Go supplementary cryptography libraries

• csrf 1,024

  

  | updated 9 months ago | BSD 3-Clause "New...

  Package gorilla/csrf provides Cross Site Request Forgery (CSRF) prevention middleware for Go web applications & services 🔒

• dongle 871

  

  | updated 10 months ago | MIT License

  A simple, semantic and developer-friendly golang package for encoding&decoding and encryption&decryption

• firewalld-rest 338

  

  | updated 10 months ago | MIT License

  A rest application to update firewalld rules on a linux server

• fosite 2,300

  

  | updated 4 months ago | Apache License 2.0

  Extensible security first OAuth 2.0 and OpenID Connect SDK for Go.

• go-acl 16

  

  | updated over 4 years ago | Apache License 2.0

  Go support for Access Control Lists

• goArgonPass 16

  

  | updated about 2 years ago | MIT License

  goArgonPass is a Argon2 Password utility package for Go using the crypto library package Argon2 designed to be compatible with Passlib for Python and Argon2 PHP. Argon2 was the winner of the most recent Password Hashing Competition. This is designed for use anywhere password hashing and verification might be needed and is intended to replace implementations using bcrypt or Scrypt.

• go-cmp 4,127

  

  | updated 11 months ago | BSD 3-Clause "New...

  Package for comparing Go values in tests

• go-generate-password 54

  

  | updated over 2 years ago | MIT License

  Password generator written in Golang, usable as a CLI or Go library. Provides options for human readable and accessibility friendly passwords.

• go-htpasswd 37

  

  | updated 11 months ago | MIT License

  Apache htpasswd Parser for Go.

• go-password-validator 470

  

  | updated about 2 years ago | MIT License

  Validate the Strength of a Password in Go

• go-proxyproto 488

  

  | updated about 2 months ago | Apache License 2.0

  A Go library implementation of the PROXY protocol, versions 1 and 2.

• goSecretBoxPassword 55

  

  | updated almost 2 years ago | MIT License

  A probably paranoid Golang utility library for securely hashing and encrypting passwords based on the Dropbox method. This implementation uses Blake2b, Scrypt and XSalsa20-Poly1305 (via NaCl SecretBox) to create secure password hashes that are also encrypted using a master passphrase.

• go-yara 355

  

  | updated 4 months ago | BSD 2-Clause "Sim...

  Go bindings for YARA

• ladon 2,280

  

  | updated over 1 year ago | Apache License 2.0

  A SDK for access control policies: authorization for the microservice and IoT age. Inspired by AWS IAM policies. Written for Go.

• lego 6,517

  

  | updated about 1 year ago | MIT License

  Let's Encrypt/ACME client and library written in Go

• memguard 2,364

  

  | updated over 1 year ago | Apache License 2.0

  Secure software enclave for storage of sensitive information in memory.

• nacl 540

  

  | updated over 2 years ago | BSD 3-Clause "New...

  Pure Go implementation of the NaCL set of API's

• net 2,846

  

  | updated 4 months ago | BSD 3-Clause "New...

  [mirror] Go supplementary network libraries

• oauth2 5,270

  

  | updated 4 months ago | BSD 3-Clause "New...

  Go OAuth2

• optimus-go 349

  

  | updated over 4 years ago | MIT License

  ID hashing and Obfuscation using Knuth's Algorithm

• oxy 2,013

  

  | updated 5 months ago | Apache License 2.0

  Go middlewares for HTTP servers & proxies

• passlib 287

  

  | updated over 3 years ago | Other

  🔑 Idiotproof golang password validation library inspired by Python's passlib

• randomstring 1

  

  | updated about 6 years ago | MIT License

  Flexible and customizable random string generator

• secret 28

  

  | updated 3 months ago | MIT License

  Prevent your secrets from leaking into logs, std* etc.

• secure 2,261

  

  | updated about 2 months ago | MIT License

  HTTP middleware for Go that facilitates some quick security wins.

• securecookie 682

  

  | updated about 1 year ago | BSD 3-Clause "New...

  Package gorilla/securecookie encodes and decodes authenticated and optionally encrypted cookie values for Go web applications.

• secureio 33

  

  | updated over 4 years ago | GNU Lesser Genera...

  An easy-to-use XChaCha20-encryption wrapper for io.ReadWriteCloser (even lossy UDP) using ECDH key exchange algorithm, ED25519 signatures and Blake3+Poly1305 checksums/message-authentication for Go (golang). Also a multiplexer.

• simple-scrypt 195

  

  | updated over 3 years ago | MIT License

  A convenience library for generating, comparing and inspecting password hashes using the scrypt KDF in Go 🔑

• slim 19,166

  

  | updated 3 months ago | Apache License 2.0

  Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

• ssh-vault 436

  

  | updated 5 months ago | BSD 3-Clause "New...

  🌰 encrypt/decrypt using ssh keys

• sslmgr 26

  

  | updated 4 months ago | MIT License

  A layer of abstraction the around acme/autocert certificate manager (Golang)

• teler-waf 295

  

  | updated 7 months ago | Apache License 2.0

  teler-waf is a Go HTTP middleware that provides teler IDS functionality.

• themis 1,854

  

  | updated 2 months ago | Apache License 2.0

  Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.

• ToRat 973

  

  | updated over 1 year ago | The Unlicense

  ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication