Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/werbot/werbot
🔑 Team Access Sharing - a self-hosted solution with single sign-on for secure, easy shared access to servers, databases, and applications.
https://github.com/werbot/werbot
1password audit bastion certificate cluster database-access firewall firewalls go golang hacktoberfest kubernetes kubernetes-access pam postgresql rdp security self-hosted ssh zero-trust
Last synced: 3 months ago
JSON representation
🔑 Team Access Sharing - a self-hosted solution with single sign-on for secure, easy shared access to servers, databases, and applications.
- Host: GitHub
- URL: https://github.com/werbot/werbot
- Owner: werbot
- License: other
- Created: 2022-09-01T11:20:57.000Z (about 2 years ago)
- Default Branch: main
- Last Pushed: 2024-07-10T14:26:00.000Z (4 months ago)
- Last Synced: 2024-07-10T17:09:37.519Z (4 months ago)
- Topics: 1password, audit, bastion, certificate, cluster, database-access, firewall, firewalls, go, golang, hacktoberfest, kubernetes, kubernetes-access, pam, postgresql, rdp, security, self-hosted, ssh, zero-trust
- Language: Go
- Homepage: https://werbot.com
- Size: 18.5 MB
- Stars: 92
- Watchers: 3
- Forks: 6
- Open Issues: 2
-
Metadata Files:
- Readme: .github/README.md
- Contributing: .github/CONTRIBUTING.md
- License: LICENSE
Awesome Lists containing this project
README
---
## What is Werbot?
Werbot is an open-source solution allowing users to securely share access to servers, data bases, web applications, desktops, containers and clouds; providing full-fledged options for controlling and auditing of the work performed on them.
> ⚠️ Current major version is zero (`v0.x.x`) to accommodate rapid development and fast iteration while getting early feedback from users. Please keep in mind that Werbot is still under active development and therefore full backward compatibility is not guaranteed before reaching v1.0.0.
## 🏆 Features
- Werbot works with dedicated, VPS, and cloud servers
- Manages servers from different providers in one account
- Doesn’t require any additional agent to be installed on the server
- Records every server session and collects logs
- Provides a single sign-onWerbot is written in golang, runs in Docker containers, and works as microservices. It requires little processing power, scales easily, and can be implemented in the workflow of any company within 1 hour.
**Supported technology:**
- _Protocols_ - SSH, Telnet, RDP, VNC
- _Providers_ - all providers + fast import from AWS, Google, Amazon, Azure
- _Containers_ - Docker, Kubernetes
- _Databases_ - MySQL, Maria, PostgresQL, Redis, MongoDB, Elasticsearch, and other## 🔥 Why Werbot?
#### Problem
- Unsafely kept server access, passwords, and keys
- Difficult server access management
- Uncontrolled work on servers
- Unwanted connections on servers
- Expensive and limited in functionality server monitoring tools#### Solution
Werbot users connect to all accessible servers with a single sign-on using their login and private key. All work performed on servers connected to Werbot is logged and recorded as a screencast.
#### Competition
Identity and Access Management solutions existing today can have limited functionalities or work with only one server provider, and support few protocols.
There are also complex Enterprise solutions that are quite expensive solutions and not suitable for everyone.
## 🚀 Why did we build Werbot?
The prototype of Werbot was developed for internal use firstly. Over time, the prototype was refined and developed into a full-fledged platform available to everyone.
SaaS version is currently working on the site werbot.com. There we are offering a ready-made solution that is suitable for most companies and does not need to be configured by a specialist, so it can be used even without the involvement of cybersecurity specialists.
Werbot covers 3 of the most important cybersecurity challenges:
- Helps to manage server access
- Helps to control users’ activity on servers
- Gathers evidence to show security certification compliances**Recently we decided to rewrite the code of the SaaS version and make it open source. We are currently working on this.**
## 🧬 Project components
Here is a list of modules that are included within the `Werbot`.
| Component | Description |
| :------------------------------------------------ | :------------------------------------------------------------------------------------------------------------------------------------------------------------------ |
| [web](https://github.com/werbot/werbot.web) | 🖥 Werbot web dashboard |
| [ee](https://github.com/werbot/werbot.ee) | 🏭 Werbot Enterprise functions |
| [install](https://github.com/werbot/install.werbot.com) | 🚀 The script for installing Werbot |
| [agent.windows](https://github.com/werbot/agent.windows) | 👮♂️ Windows agent |
| [agent.unix](https://github.com/werbot/agent.unix) | 👮♂️ Unix agent |
| [pam](https://github.com/werbot/pam-nix) | 🔐 Pluggable Authentication Module for native two factor authentication agents for *nix platforms |
## 📚 Documentation
... coming soon ...
## 🏁 Installation
... coming soon ...
## 👑 Community
Join our growing community around the world, for help, ideas, and discussions regarding Werbot.
- Follow us on [Twitter](https://twitter.com/werbot_)
- Connect with us on [LinkedIn](https://www.linkedin.com/company/werbot)
- Visit us on [YouTube](https://www.youtube.com/channel/UCQk0_i0h-xB9s9sv4R7HX2g)
- Join our [Dev community](https://dev.to/werbot)
- Questions tagged #werbot on [Stack Overflow](https://stackoverflow.com/questions/tagged/werbot)## 👍 Contribute
We would for you to get involved with Werbot development! If you want to say **thank you** and/or support the active development of `Werbot`:
1. Add a [GitHub Star](https://github.com/werbot/werbot/stargazers) to the project.
2. Tweet about the project [on your Twitter](https://twitter.com/intent/tweet?text=Werbot%20is%20an%20%221Password%22%20for%20servers%20and%20teams%20-%20open%20source%20solution%20with%20single%20sign-on%20for%20easy%20and%20secure%20sharing%20of%20servers%2C%20databases%2C%20or%20app%20access.%20https%3A%2F%2Fgithub.com%2Fwerbot%2Fwerbot).
3. Write a review or tutorial on [Medium](https://medium.com/), [Dev.to](https://dev.to/) or personal blog.You can learn more about how you can contribute to this project in the [contribution guide](CONTRIBUTING.md).
## 🚨 Security
For security issues, view our [vulnerability policy](https://github.com/werbot/werbot/security/policy), view our [security policy](https://werbot.com/legal/security), and kindly email us at [[email protected]](mailto:[email protected]) instead of posting a public issue on GitHub.
## 📜 License
Source code for Werbot, located in [this repository](https://github.com/werbot/werbot), is released under the [Business Source License 1.1](/LICENSE).
All content that resides under the "**add-on/\*/**" directory of this repository, if that directory exists, is licensed under the license defined in "**add-on/\*/LICENSE**".
All content that resides under the "**web/**" directory of this repository, if that directory exists, is licensed under the license defined in "**web/LICENSE**".
All third party components incorporated into the Werbot Software are licensed under the original license provided by the owner of the applicable component.
## ❓ License FAQ
**What is the license?**
The Business Source [License](/LICENSE) is identical to Apache 2.0 with the only exception being that you can't use the code to create a cloud service or, in other words, resell the product to others.
BSL is adopted by MariaDB, Sentry, CockroachDB, Couchbase and many others. In most cases, it is a more permissive license than, for example, AGPL, because it allows you to make private changes to the code.
In three years, the code also becomes available under Apache 2.0 license. You can learn more about BSL [here](https://mariadb.com/bsl-faq-adopting/).
**Why BSL license**?
We picked the license to allow users to share access to their servers, databases, app, or application access features or access monitoring features using Werbot, but forbidding other companies to create a cloud service using the code.
We provide a [application access service](https://werbot.com/) ourselves in order to monetize our work and sustain development efforts.
**Are you open-source?**
Technically, the BSL license is classified as source-available, but we continue to use the term open-source on the basis that the source code is open.
Existing SEO practices don't leave us much choice and our competitors do more or less the same.