Security -
Awesome Go
Libraries that are used to help make your application more secure.
- acmetool - ACME (Let's Encrypt) client tool with automatic renewal.
- acra - Network encryption proxy to protect database-based applications from data leaks: strong selective encryption, SQL injections prevention, intrusion detection system.
- age - A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
- argon2-hashing - light wrapper around Go's argon2 package that closely mirrors with Go's standard library Bcrypt and simple-scrypt package.
- argon2pw - Argon2 password hash generation with constant-time password comparison.
- autocert - Auto provision Let's Encrypt certificates and start a TLS server.
- BadActor - In-memory, application-driven jailer built in the spirit of fail2ban.
- beelzebub - A secure low code honeypot framework, leveraging AI for System Virtualization.
- booster - Fast initramfs generator with full-disk encryption support.
- Cameradar - Tool and library to remotely hack RTSP streams from surveillance cameras.
- certificates - An opinionated tool for generating tls certificates.
- CertMagic - Mature, robust, and powerful ACME client integration for fully-managed TLS certificate issuance and renewal.
- Coraza - Enterprise-ready, modsecurity and OWASP CRS compatible WAF library.
- dongle - A simple, semantic and developer-friendly golang package for encoding&decoding and encryption&decryption.
- encid - Encode and decode encrypted integer IDs.
- firewalld-rest - A rest application to dynamically update firewalld rules on a linux server.
- go-generate-password - Password generator that can be used on the cli or as a library.
- go-htpasswd - Apache htpasswd Parser for Go.
- go-password-validator - Password validator based on raw cryptographic entropy values.
- go-peer - A software library for creating secure and anonymous decentralized systems.
- go-yara - Go Bindings for YARA, the "pattern matching swiss knife for malware researchers (and everyone else)".
- goArgonPass - Argon2 password hash and verification designed to be compatible with existing Python and PHP implementations.
- goSecretBoxPassword - A probably paranoid package for securely hashing and encrypting passwords.
- Interpol - Rule-based data generator for fuzzing and penetration testing.
- lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt).
- memguard - A pure Go library for handling sensitive values in memory.
- nacl - Go implementation of the NaCL set of API's.
- optimus-go - ID hashing and Obfuscation using Knuth's Algorithm.
- passlib - Futureproof password hashing library.
- passwap - Provides a unified implementation between different password hashing algorithms
- secret - Prevent your secrets from leaking into logs, std* etc.
- secure - HTTP middleware for Go that facilitates some quick security wins.
- secureio - An keyexchanging+authenticating+encrypting wrapper and multiplexer for io.ReadWriteCloser based on XChaCha20-poly1305, ECDH and ED25519.
- simple-scrypt - Scrypt package with a simple, obvious API and automatic cost calibration built-in.
- ssh-vault - encrypt/decrypt using ssh keys.
- sslmgr - SSL certificates made easy with a high level wrapper around acme/autocert.
- teler-waf - teler-waf is a Go HTTP middleware that provide teler IDS functionality to protect against web-based attacks and improve the security of Go-based web applications. It is highly configurable and easy to integrate into existing Go applications.
- themis - high-level cryptographic library for solving typical data security tasks (secure data storage, secure messaging, zero-knowledge proof authentication), available for 14 languages, best fit for multi-platform apps.
