An open API service indexing awesome lists of open source software.

Projects in Awesome Lists tagged with mtls

A curated list of projects in awesome lists tagged with mtls .

https://github.com/johanbrandhorst/certify

Automatic client and server certificate distribution and maintenance

acmpca aws certificate cfssl go golang mtls tls vault

Last synced: 12 Apr 2025

https://github.com/otterize/intents-operator

Manage network policies, AWS, GCP & Azure IAM policies, Istio Authorization Policies, and Kafka ACLs in a Kubernetes cluster with ease.

acl auth authentication authorization controller go golang hacktoberfest ibac intents kafka kubernetes mtls networkpolicies operator otterize zero-trust

Last synced: 11 May 2025

https://github.com/damienbod/aspnetcorecertificates

Certificate Manager in .NET Core for creating and using X509 certificates

aspnet-core certificate dotnet mtls pki ssl tls x509

Last synced: 15 May 2025

https://github.com/damienbod/AspNetCoreCertificates

Certificate Manager in .NET Core for creating and using X509 certificates

aspnet-core certificate dotnet mtls pki ssl tls x509

Last synced: 09 Apr 2025

https://github.com/fuomag9/caddy-proxy-manager

The modern web interface for Caddy Server. WAF protection, automatic HTTPS, mTLS, forward auth, geo blocking, L4 TCP/UDP proxying, traffic analytics, a full REST API, and a complete audit trail. All in one place.

caddy geoblock http mtls proxy quic reverse-proxy tcp waf web

Last synced: 01 Jul 2026

https://github.com/julie-ng/nodejs-certificate-auth

Demo for Client Certificate Authentication with Node.js Tutorial

authentication client-cert-authentication demo mtls mutual-tls openssl tutorial

Last synced: 16 Jun 2025

https://github.com/przemek-nowicki/node-express-template.ts

NET.ts - node express template built on TypeScript that follows the top-ranked practices from the https://github.com/goldbergyoni/nodebestpractices :zap:

boilerplate-template express express-template express-typescript mongo mongo-database mongo-db mongodb mtls mutual-tls node node-express-boilerplate node-express-typescript node-template node-typescript node-typescript-boilerplate nodejs typescript

Last synced: 28 Jul 2025

https://github.com/johanbrandhorst/grpc-auth-example

Examples of client authentication with gRPC

authentication authorization client grpc jwt mtls

Last synced: 30 Apr 2025

https://github.com/c2fmzq/tlsproxy

TLSPROXY is a TLS termination proxy that provides automatic TLS encryption for various network services. It supports SSO, client authentication, and can act as a web server or reverse proxy.

ech golang http3 lets-encrypt mtls oidc passkey passkeys pki quic reverse-proxy security self-hosted sso tls-proxy tlspassthrough tpm

Last synced: 11 Feb 2026

https://github.com/smallstep/hello-mtls

:wave: Docs demonstrating mutual TLS configurations in various technologies

certificate documentation golang mtls ngnix node-js postgres

Last synced: 17 Mar 2025

https://github.com/picatz/terraform-google-nomad

๐Ÿ“— Terraform Module for Nomad clusters with Consul on GCP

acls consul consul-connect gcp mtls nomad packer ssh terraform

Last synced: 22 Apr 2025

https://github.com/quicsec/quicsec

HTTP/3-enable existing HTTP apps. Leverage HTTP3 native features and auto-enable workload identity (SPIFFE), AuthN (mTLS/x509, OIDC/Auth0-Okta), AuthZ (OPA), defense-in-depth (WAAP/WAF), and observability (metrics, logs, alerting, dashboard).

auth0 authentication cert-manager cloud-native grafana http http3 kubernetes loki metrics mtls oidc okta open-policy-agent prometheus quic security spiffe waf zero-trust

Last synced: 12 Apr 2025

https://github.com/aurae-runtime/auraed

Secure mTLS and gRPC backed runtime daemon. Alternative to systemd. Written in Rust.

daemon grpc mtls rust

Last synced: 17 Jul 2025

https://github.com/acuvity/minibridge

Make your MCP servers secure and production ready

acuvity mcp mcp-server modelcontextprotocol mtls security

Last synced: 21 Jan 2026

https://github.com/nothinux/octo-proxy

๐Ÿ™ Simple TCP/TLS Proxy support mutual authentication and traffic mirroring

golang monitoring mtls proxy reverse-proxy tcp tcp-proxy tls traffic-mirroring

Last synced: 14 Jan 2026

https://github.com/nothinux/certify

:lock: Create private CA and Issue Certificates without hassle

certificate certificate-authority go golang mtls tls

Last synced: 28 Jan 2026

https://github.com/islishude/grpc-mtls-example

grpc mTLS example

grpc grpc-go mtls tls

Last synced: 14 Jan 2026

https://github.com/maxlambrecht/rust-spiffe

A collection of crates for SPIFFE workload identity, Workload API clients, SPIRE-specific APIs, and TLS integration.

authentication mtls rust security spiffe spire tls workload-identity

Last synced: 11 May 2026

https://github.com/gamussa/kuma4devs

Service Mesh for the Developer (with examples using Kuma Mesh kuma.io)

java kotlin mtls observability service-mesh zero-trust

Last synced: 25 Jun 2025

https://github.com/icedevml/tinypki

Live index of all X.509 Certificates in Step CA queryable via GUI and API, easy human onboarding with in-browser CSR generation.

certificate-authority mtls x509

Last synced: 14 May 2026

https://github.com/crabtree/mtls-transmitter

Reverse proxy injecting client certificate for mTLS communication

certificate golang hacktoberfest mtls mutual-tls proxy reverse-proxy ssl tls tls-proxy

Last synced: 30 Oct 2025

https://github.com/aurae-runtime/environment

Distributed Systems Runtime. Core workspace and top level environment.

containers distributed-systems kernel microvms mtls networking runtime rust security

Last synced: 17 Jul 2025

https://github.com/cloudflare/access-crl-worker-template

A worker that can be used for doing basic CRL checks. It assumes that the request has gone through Access MTLS.

cloudflare-access cloudflare-workers mtls

Last synced: 20 Oct 2025

https://github.com/mehrdadrad/gping

ping from remote host through gRPC

golang grpc mtls ping

Last synced: 09 Mar 2026

https://fortunen.github.io/kete/

Keycloak Events To Everywhere is a flexible, high-performance Keycloak extension that streams matched events to various destinations, in various formats.

amqp audit event-streaming events extension http kafka keycloak listener mqtt mtls observability spi tls

Last synced: 08 Mar 2026

https://github.com/andifalk/client-certificate-demo

Demo for client/server certificate authentication using TLS (Mutual TLS)

java mtls mutual-tls spring-boot spring-security ssl tls x509-auth

Last synced: 12 Apr 2025

https://github.com/x-mod/tlsconfig

more convenient package to create tls.Config

mtls tls-certificate

Last synced: 12 Jan 2026

https://github.com/mohammed90/caddy-zero-trust-tls-everywhere

Example of zero-trust architecture with Caddy Server

caddy caddyserver devsecops infrastructure mtls tls zero-trust

Last synced: 23 Jan 2026

https://github.com/wuxxin/infra-shared

Software Defined Git Operated Infrastructure

butane coreos fcos gitops iaas mtls pulumi python

Last synced: 20 Mar 2025

https://github.com/getvictor/mtls

Examples for using and implementing mutual TLS (mTLS).

certificates cybersecurity golang hello-world keychain keystore macos mtls tsl windows

Last synced: 26 Jul 2025

https://github.com/denismurphy/secure-https-client-mtls

HTTPS client implementation in C using mutual TLS (mTLS) authentication.

c client-certificate-authentication cmake https mbedtls mtls

Last synced: 07 Mar 2026

https://github.com/scitrera/aether

AI Agent Rapid Development Fabric

acl agentic-ai ai durable-execution grpc mtls

Last synced: 28 May 2026

https://github.com/arthurtsang/rsocket-mtls-demo

a demo using rsocket to communicate between two spring boot services with mutual TLS & CRL, JWT for authentication, protobuf for serializion, cloudevents for routing and rabbitmq for event queue

cloudevents crl jws jwt jwt-authentication mtls mtls-authentication protobuf rabbitmq rsocket springboot

Last synced: 15 Apr 2026

https://github.com/moresec-io/conduit

A transparent proxy mesh. ไธ€ไธช้€ๆ˜Žไปฃ็†็ฝ‘ๆ ผ๏ผŒไธบไฝ ้›†็พค้—ดๅฎ‰ๅ…จไฟ้ฉพๆŠค่ˆช๏ผ

iptables mesh-networks mtls security tls tob transparent-proxy

Last synced: 12 Jan 2026

https://github.com/bancodobrasil/api-mtls-ambassador-gateway

Ambassador Docker container used to authenticate using mTLS communication as client (request) between microservices

ambassador ambassador-gateway docker mtls mtls-authentication mtls-request

Last synced: 28 Feb 2026

https://github.com/atorrescogollo/mtlsocks5

Transparent SOCKS5 proxy implementation over mTLS

forward-proxy go golang mtls proxy proxy-server socks5 socks5-proxy

Last synced: 18 Jan 2026

https://github.com/ghdwlsgur/mutual-tls-in-go

๐Ÿ’ป ์ฝ”๋“œ๋กœ ํ™•์ธํ•˜๋Š” mTLS

mtls

Last synced: 03 Nov 2025

https://github.com/kevinpollet/k8s-tunnel

Example of a secured mTLS tunnel between two Kubernetes clusters.

clusters k8s mtls tunnel

Last synced: 19 May 2026

https://github.com/sap-samples/cf-autoscaler-custom-metrics-mtls

Sample Golang app that demonstrates the use of the custom metrics feature in Application Autoscaler using mTLS authentication.

application-autoscaler cloud-foundry custom-metrics golang mtls sample sample-code sap-btp

Last synced: 29 Aug 2025

https://github.com/crcsmnky/service-mush

Service Mush: Debugging Istio Deployments

istio kubernetes microservices mtls security telemetry traffic

Last synced: 26 Mar 2025

https://github.com/achetronic/tunnel

Expose private Kubernetes services to the internet in a simple, fast, secure and reliable way.

envoy kubernetes load-balancer mtls private-tunnel tcp tls tunnel udp wireguard

Last synced: 26 Jun 2026

https://github.com/robgrame/intune-device-actions

Serverless self-service Intune device action API (wipe, autopilot-register, bitlocker). Azure Functions (.NET 10, capability-plugin architecture) + Service Bus + mTLS client cert + Microsoft Graph. Includes Bicep IaC and PowerShell 5.1 client.

azure azure-functions bicep device-management dotnet dotnet10 entra-id infrastructure-as-code intune managed-identity mdm microsoft-graph microsoft-intune mtls powershell security serverless storage-queue

Last synced: 07 Jun 2026

https://github.com/Aganium/agenium

AGENIUM โ€” DNS of the Agent Web. Identity, trust & discovery for AI agents. MCP-compatible. agent:// protocol with mTLS, trust scores & capability search.

a2a agent-discovery agent-protocol agent-registry ai-agents dns mcp mtls python typescript

Last synced: 03 Jun 2026

https://github.com/abliqo/mtls-echo

Mutual TLS Echo Server

mtls x509

Last synced: 14 Apr 2025

https://github.com/laugiov/security-by-design

Security by Design reference: JWT/mTLS auth, RBAC, DevSecOps pipeline (SAST/DAST/SBOM/Cosign), Kubernetes hardening. Production-grade patterns.

api-security cosign devsecops fastapi gitlab-ci helm jwt-authentication kubernetes microservices mtls owasp platform-security python rbac sast-dast sbom security-by-design slsa supply-chain-security threat-modeling

Last synced: 01 May 2026

https://github.com/tfkfan/mtls_jwt_demo

spring-boot mtls+stateless JWT authentication demo

jwt mtls spring-boot

Last synced: 02 May 2026

https://github.com/wendlerqueiroz/enliven-ai-agent

Build an enterprise-level AI agent operating system enabling cross-departmental and cross-system intelligent collaboration.

ai autonomous-agents enterprise-ai erp-integration iec-62443 industrial-ai iso-27001 modbus mtls multi-agent-system nist-compliance opc-ua sap-s4hana zero-trust

Last synced: 06 Apr 2025

https://github.com/jeamon/demo-mtls

This is a cross-platform go tool to demonstrate the implementation of mTLS (Mutual TLS) and how useful it can be to setup authorization on top of TLS certificate - known as Certificate Bound Token. This program could be run into client or server mode. All certificates (for root & clients CAs, server and clients) are auto generated.

go golang https-client https-server mtls mtls-authentication tls-certificate

Last synced: 11 Mar 2025

https://github.com/opencpo/opencpo-core

โšก OCPP 1.6 + 2.0.1 Central System with zero trust networking, built-in PKI, and profile-driven charger compatibility

cpo ev-charging fastapi mtls ocpp ocpp16 ocpp201 pki websocket zero-trust

Last synced: 03 Jun 2026

https://github.com/adarsh-kmt/distributionserver

DistributionServer is used to route messages and other information between users connected to different end servers that run on different containers.

go grpc mtls redis

Last synced: 04 Apr 2026

https://github.com/akornatskyy/auth-playground

Auth playground with openssl, nodejs, hydra and oathkeeper.

hydra jwk jwt mtls oathkeeper oauth2

Last synced: 21 Apr 2026

https://github.com/tpokki/mtls-proxy

Small utility that starts local http server, and forwards all requests to remote endpoint that requires mTLS authentication.

mtls mtls-authentication mtls-request proxy proxy-server

Last synced: 17 Jan 2026

https://github.com/augusto11cb/security-studies

Repository of notes and comments on Software Security and its fundamental concepts

asymmetric-cryptography authentication authorization csrf mtls multi-factor-authentication oauth2 openid tls

Last synced: 19 Mar 2026

https://github.com/rchiofalo/rustgate

Secure mTLS message router in Rust โ€” group-based routing, WebSocket, server federation, NATS scaling, certificate enrollment, CRL/FIPS support. Single binary, edge-ready.

certificate-enrollment crl cursor-on-target federation fips helm kubernetes message-router mtls nats rust websocket

Last synced: 05 Apr 2026

https://github.com/xxmrk888ytxx/portal-android

Portal is a secure, open-source smart key that turns your Android smartphone into a wireless authentication tool for your computer. It enables instant PC unlocking via Bluetooth (RFCOMM) or WiFi (WebSockets), featuring biometric protection, Wake-on-LAN support, and a privacy-focused, local-only communication model.

android bluetooth kotlin mtls security windows

Last synced: 31 May 2026

https://github.com/thomas-illiet/cerbai

CerbAI is a lightweight HTTP reverse proxy written in Go, built for corporate environments where access to LLM services is secured via JWT tokens obtained through an OAuth2 client_credentials flow over mutual TLS (mTLS).

jwt mtls oauth openai proxy

Last synced: 21 Jun 2026

https://github.com/strideynet/spiffe-pinger

Small utility for testing SPIFFE-powered gRPC and mTLS.

grpc mtls spiffe

Last synced: 08 Mar 2026

https://github.com/lira/go-mtls

Applying tutorial mTLS with Go https://venilnoronha.io/a-step-by-step-guide-to-mtls-in-go

golang mtls ssl

Last synced: 06 Apr 2025

https://github.com/oluizeduardo/mutual-tls-java-demo

Example project demonstrating digital certificate generation and mutual TLS authentication using Java and OpenSSL.

java mtls mtls-authentication openssl

Last synced: 26 Jun 2025

https://github.com/aslancarlos/machine-identity-explainer

Interactive explainer for Machine Identity: SPIFFE/SPIRE, X.509 SVIDs, mTLS, and zero-trust workload identity, with diagrams you can poke at

machine-identity mtls non-human-identity spiffe spire workload-identity x509 zero-trust

Last synced: 05 Jul 2026

https://github.com/hasithaishere/mtls-with-nodejs

Discover how to implement mTLS in Node.js for secure communication. Practical code examples and easy steps for enhanced application security.

api certificates mtls mtls-authentication nodejs security tls

Last synced: 19 Jun 2026

https://github.com/umahmood/mtls

Example showing mutually-authenticated TLS (mTLS)

go golang https mtls

Last synced: 24 May 2026

https://github.com/gkhays/mtls-java

Mutual TLS scenarios in Java

java mtls tls

Last synced: 19 May 2026

https://github.com/stackql/pgwire-lite-rs

Lightweight PostgreSQL wire protocol client library for Rust, providing direct, low-level access to the PostgreSQL protocol.

mtls pgwire pgwire-protocol postgres postgresql protocol-client rust rust-crate rust-lang rust-library ssl stackql wire-protocol

Last synced: 10 Mar 2026

https://github.com/amusarra/quarkus-mtls-poc-on-sde-slide

Questa presentazione illustra come l'autenticazione mTLS (Mutual TLS), implementata con Quarkus, contribuisca in modo significativo alla prevenzione della Sensitive Data Exposure (SDE). Attraverso una Proof of Concept, viene dimostrato come il SecurityIdentityAugmentor possa arricchire l'identitร  del client con informazioni aggiuntive.

java mtls quarkus rbac security x509

Last synced: 26 Jan 2026

https://github.com/alexsjones/istio-service-tester

A quick chart with some simple services to test your service mesh

golang istio kubernetes mesh mtls testing

Last synced: 29 Apr 2026

https://github.com/joemiller/certsponge

Utility for splitting Vault's PKI output into one or more files containing the private key, certificate, and CA data

mtls pki tls vault

Last synced: 11 Jun 2025

https://github.com/sebdeveloper6952/mtls-sandbox

Sandbox to test your mTLS integrations.

devtool mtls mtls-authentication mtls-request sandbox testing

Last synced: 08 Apr 2026

https://github.com/chmodshubham/security-prototype

A minimal, practical collection of network security protocol implementations.

golang ipsec mtls prototype quic security-protocols tls

Last synced: 09 Oct 2025

https://github.com/bend0us/ravenc2

RavenC2 is a cross-platform Command & Control (C2) tool written in Go. Built for educational and authorized security research only.

command-and-control file-upload keylogger loader mtls pentesting ravenc2 redteam reverse-shell socks5-proxy ssh-log

Last synced: 18 Jun 2025

https://github.com/bryanaustin/mtlsproxy

A proxy for receiving or making mtls connections

mtls proxy service

Last synced: 13 Mar 2026

https://github.com/miroslav-matejovsky/go-mtls-demo

Puro go demonstartion of TLS and mTLS

certstore golang mtls tpm2 windows

Last synced: 16 May 2026

https://github.com/cyb3rko/gotify-mtls-setup

Guide and script for setting up Gotify mTLS certificates

caddy certificates gotify mtls tls

Last synced: 05 May 2025

https://github.com/butzee/quarkus_mtls_test

This project demonstrates a proof-of-concept (POC) microservice architecture using Kafka for secure communication and computation within a Kubernetes cluster. The architecture simulates a cloud environment and secure computing on sensitive data, specifically for calculating the premium value of car insurance.

certificates cpp kafka microsoft-seal mtls quarkus

Last synced: 30 Jan 2026

https://github.com/tomdewildt/kvk-data-service-experiment

Experiment with the KVK Data Service SOAP API

actions httpx kvk mtls python soap

Last synced: 02 Jun 2026

https://github.com/opencpo/opencpo-bastion

๐Ÿฅง Flashable Raspberry Pi site controller โ€” zero-trust bridge, mTLS, sensors, cameras, 4G failover

edge-computing iot mtls raspberry-pi site-controller wireguard zero-trust

Last synced: 03 Jun 2026

https://github.com/charlesbulabula/zero-trust-framework

Zero Trust network security framework with policy enforcement

kubernetes mtls opa policy-engine security spiffe zero-trust

Last synced: 03 Jun 2026

https://github.com/laoluadewoye/ruby-hdfs

A small recreation of Hadoop Distributed File System in Ruby and Kubernetes

certificates grpc hadoop hdfs kubernetes mtls protocol-buffers rpc ruby tls toml-config

Last synced: 16 May 2026

https://github.com/icd360s-e-v/mail

Secure, end-to-end encrypted email client for desktop and mobile โ€” Flutter, OpenPGP, mTLS, ClamAV, zero local storage

clamav cross-platform dart email-client end-to-end-encryption fluent-ui flutter imap mtls openpgp pgp-mime privacy security smtp zero-knowledge

Last synced: 16 May 2026

https://github.com/blark/sscte

Secure Super Cereal Tap ESP: A lightweight ESP32 firmware to bridge UART devices over TCP with TLS/mTLS support.

esp-idf esp32 mtls serial serial-bridge tls uart uart-bridge

Last synced: 25 Apr 2026

https://github.com/canonical/certificate-transfer-interface

Charm libraries for providers and requirers of the certificate-transfer integration.

juju mtls security tls trust-store x509

Last synced: 17 May 2026

https://github.com/cullis-security/cullis

Trust infrastructure for AI agents across organizations. Verified identity, explicit authorization, cryptographic audit trail.

ai-agents api-gateway cryptography dpop e2e-encryption fastapi federated-identity iam mcp mtls multi-agent-systems pki python self-hosted spiffe trust-broker workload-identity zero-trust

Last synced: 13 May 2026

https://github.com/devevghenicernev-png/apigw

The single-binary API gateway. nginx + Let's Encrypt + GitHub deploys + live dashboard + RBAC โ€” one static Go binary.

api-gateway cli dashboard deployment enterprise gitops golang high-availability jwt letsencrypt mtls nginx oauth2 opentelemetry rbac reverse-proxy self-hosted systemd tls webhook

Last synced: 07 Jun 2026

https://github.com/chmodshubham/proto-testbed

Traffic generation between two systems using different protocols (TLS, mTLS, DTLS, QUIC, SSH, IPSec) and with classical and post-quantum cryptography.

dtls ipsec mtls post-quantum-cryptography quic ssh tls traffic-generation

Last synced: 08 Jun 2026