Mozilla's CA certificate bundle for TLS/SSL validation in command-line tools and libraries.
Category: security Β· clear
Shared library implementing POSIX 1003.1e capabilities for fine-grained privilege control on Linux.
Python library providing Mozilla's curated SSL certificate bundle for TLS host verification.
GNU implementation of OpenPGP encryption, signing, and key management.
Linux sandboxing tool using user namespaces to let unprivileged users isolate processes without root.
MIT Kerberos: network authentication protocol library and utilities for secure ticket-based authentication.
Cryptographic library for TLS, certificate validation, and digital signatures used by Firefox and other applications.
Cryptographic library providing symmetric, asymmetric, and hash algorithms for C/C++ applications.
C library implementing modern and legacy password hashing algorithms (bcrypt, scrypt, SHA-crypt, yescrypt, and others).
Portable C library for network communication and cryptography with a modern, audited API.
Passphrase entry dialog for GnuPG using the Assuan protocol.
Go client for Cloudflare Tunnel, exposing local services to the internet through Cloudflare's edge network without opening firewall ports.
Cryptography and SSL/TLS toolkit library (version 4.0.0+), OpenSSL's latest major release with modernized APIs.
Shared library implementing SASL (Simple Authentication and Security Layer) authentication mechanisms for C/C++ applications.
Linux kernel keyring utilities for managing cryptographic keys and security credentials.
Multi-architecture disassembly framework and shared library for binary analysis.
Go tool to generate locally-trusted TLS certificates for development without manual CA management.
Port scanning and network discovery utility written in C, identifies open services and OS fingerprinting on IP networks.
Vulnerability scanner for container images, filesystems, Git repos, and Kubernetes in Go.
Go CLI tool that scans Git repositories for accidentally committed secrets and sensitive credentials.
Command-line tool for editing encrypted files in JSON, YAML, and binary formats with AWS KMS, GCP, and age support.
C library implementing FIDO2 and U2F hardware authentication protocols, with USB device support.
OpenSSL 3.5 β cryptography library and command-line toolkit for SSL/TLS, encryption, and digital signatures.
GNOME shared library for securely storing and retrieving passwords and secrets via system keyrings.
C++ regular expression library with linear-time matching guarantees and memory safety, designed for untrusted input.
Static analysis tool written in OCaml that detects bugs and security issues via pattern matching rules.
AWS-backed C library implementation of TLS/SSL protocols with cryptographic agility and formal verification.
Transparent encryption/decryption of files in a git repository using GPG or symmetric keys.
Go suite of native credential helpers for Docker to store authentication tokens securely in platform keystores.
Find security issues and misconfigurations in GitHub Actions workflows.
Go command-line tool for signing and verifying OCI container images using Sigstore's keyless infrastructure.
Python static analyzer for cloud infrastructure-as-code security misconfigurations.
Python CLI for scanning repositories with SAST, SCA, secrets detection, and IaC misconfiguration checks.
Go command-line tool that securely stores AWS credentials in your OS keychain and generates temporary session tokens for CLI/application access.
Scan files and git repos for leaked credentials, API keys, and secrets using pattern matching and verification.
Modern file encryption tool written in Go with small keys, post-quantum support, and UNIX composability.
Multi-platform software reverse engineering framework with disassembly, decompilation, and graphing tools for compiled code analysis.
Decompile Android APK/DEX files to Java source code via command-line or GUI.
Java tool for decompiling, analyzing, and repackaging Android APK files.
Anonymizing overlay network daemon that routes TCP traffic through encrypted relays for privacy.
Go CLI tool that generates Software Bill of Materials (SBOM) from container images and filesystems.
Python tool to automatically obtain and renew TLS certificates from Let's Encrypt and enable HTTPS.
Go command-line tool to encrypt Kubernetes Secrets into SealedSecrets that only a cluster controller can decrypt.
Go command-line vulnerability scanner for container images and filesystems with CVE detection.
Go command-line tool that scans project dependencies against the OpenSource Vulnerabilities (OSV) database for known security flaws.
macOS GUI passphrase dialog for GPG that integrates with the Assuan protocol via libassuan.
Reverse engineering framework and disassembler for analyzing binaries across architectures.
Static analyzer for C and C++ code that detects memory leaks, buffer overruns, and other defects.
C shared library providing a platform-independent interface to Linux kernel seccomp syscall filtering via BPF.
Go kubectl plugin for OpenID Connect authentication with automatic browser-based login flow.
Static analysis security scanner for Terraform code, written in Go.
Pluggable Authentication Modules (PAM) library for Linux user authentication and session management.
Python command-line tool for detecting and exploiting SQL injection vulnerabilities in web applications and databases.
Wi-Fi network auditing and WEP/WPA password cracking tool suite written in C.
Go-based vulnerability scanner using YAML templates for HTTP/DNS security testing.