Security & Authentication

Ghidra

66K

A free, open-source software reverse engineering framework created by the NSA — disassemble, decompile, and analyze compiled code on any platform.

PocketBase

58K

Open-source backend in a single 12 MB binary — realtime database, auth, file storage, and admin dashboard. No Docker, no Postgres, just run it.

Vaultwarden

57K

Lightweight, self-hosted Bitwarden-compatible password manager written in Rust. Uses 10x less RAM than the official server and works with all Bitwarden clients.

Zen Browser

41K

Zen Browser is a privacy-focused, beautifully designed Firefox fork with a unique sidebar tab layout, split views, and built-in content blocking — no telemetry, no tracking.

Vault

35K

Manage secrets and protect sensitive data. Securely store and control access to tokens, passwords, certificates, and encryption keys.

KeyCloak

33K

Open source identity and access management. Add authentication to applications and secure services with minimum effort.

Web-Check

32K

All-in-one OSINT tool for analyzing any website. Discover security, performance, and technology insights.

Tailscale

30K

WireGuard mesh VPN that sets up in under 2 minutes — MagicDNS, exit nodes, subnet routers, and SSH all included, free for 100 devices.

Nuclei

28K

YAML-template-driven vulnerability scanner with 8,000+ community templates for CVEs, misconfigurations, and exposed panels — free for core scanning.

Better Auth

27K

TypeScript-first authentication framework with 50+ plugins covering passkeys, multi-tenancy, SSO, and MFA — configured in a single auth.ts file.

Authelia

27K

Open-source IAM platform and OpenID Certified OpenID Connect 1.0 provider. Modern, flexible authentication and authorization.

KeePassXC

26K

KeePassXC is a self-hosted password managers replacement for 1Password, Dashlane, and more.

Infisical Community Edition

25K

End-to-end encrypted platform for managing secrets, certificates, and SSH keys across development workflows.

Ente

25K

End-to-end encrypted photo storage audited by three independent firms — Google Photos privacy without Google's data practices.

SafeLine

21K

Self-hosted web application firewall and reverse proxy that protects web apps from attacks and exploits.

Authentik

21K

Authentik is a self-hosted authentication & SSO tool with support for Authentication, Identity Management, security.

Teleport

20K

Identity-aware infrastructure access platform for SSH, Kubernetes, databases, and web apps with audit logging.

Bitwarden

18K

Bitwarden is the most trusted password manager for passwords and passkeys at home or at work, on any browser or device. Start with a free trial

ORY

17K

Ory is a certified and battle-tested identity solution backed by a large open source community and trusted by Fortune 500 companies

Supertokens

15K

Open Source User Authentication. Build fast, maintain control, with reasonable pricing

Cryptomator

15K

Cryptomator is an open-source encryption tool for secure cloud storage. Protect your privacy for free on Dropbox, Google Drive, OneDrive, and more

OAuth2 Proxy

14K

Self-hosted authentication & SSO tool that provides reverse proxy and authentication middleware.

Bytebase

14K

Bytebase lets you run comprehensive platform for database schema migrations entirely on your own server.

Ory

14K

Ory handles certified and battle-tested identity solution backed by a large community and trusted by Fortune as a self-hosted solution.

Zitadel

13K

Zitadel handles provides a comprehensive identity management solution as a self-hosted solution.

Casdoor

13K

Casdoor handles UI-first identity access management as a self-hosted solution.

CrowdSec

13K

CrowdSec lets you run participative protection against malicious IPs entirely on your own server.

Helium

12K

A minimal, ad-blocking, telemetry-free Chromium fork with zero commercial entanglement. Honest review of a beta-stage browser for people who've had enough of Chrome, Edge, and Brave.

Aegis

12K

Aegis handles , secure, app for managing 2-step verification tokens as a self-hosted solution.

Portmaster

12K

Portmaster handles portmaster: app firewall for privacy as a self-hosted solution.

Logto

12K

Logto lets you run identity solution offering customizable login experiences entirely on your own server.

Zero

10K

For privacy & encryption, Zero is a self-hosted solution that provides email application.

BunkerWeb

10K

BunkerWeb gives you web Application Firewall (WAF) that will protect your web services on your own infrastructure.

Piped

9.8K

Piped is a self-hosted privacy & encryption tool that provides efficient, privacy-focused alternative to YouTube.

Hanko

8.9K

Hanko lets you run streamline user authentication entirely on your own server.

Firezone

8.5K

Released under Apache-2.0, Firezone provides replace your VPN on self-hosted infrastructure.

Tuta

7.4K

Tuta is a self-hosted privacy & encryption tool with support for privacy, security, email.

AnyType

7.3K

Self-hosted privacy & encryption tool that provides versatile, tool for organizing thoughts, notes, and data.

Pocket ID

7.2K

For authentication & SSO, Pocket ID is a self-hosted solution that provides simple OIDC authentication provider.

Tinyauth

7.1K

Tinyauth is a self-hosted authentication & SSO tool that provides simple authentication middleware for reverse proxies.

Stack Auth

6.7K

Stack Auth gives you provides secure authentication, authorization, and user management for developers in just 5 minutes on your own infrastructure.

Clamav

6.4K

Clamav handles antivirus engine for detecting malicious threats as a self-hosted solution.

Cloudquery

6.3K

For security & authentication, Cloudquery is a self-hosted solution that provides ELT platform that enables easy data integration from hundreds of cloud and...

LLDAP

6.1K

LLDAP gives you lightweight LDAP implementation on your own infrastructure.

LessPass

6K

LessPass is a self-hosted security & authentication tool that provides compute secure passwords offline, no sync needed.

Permify

5.8K

Permify is a self-hosted cybersecurity tools tool that provides authorization service for implementing fine-grained access controls. Centralized.

Cosmos

5.8K

Cosmos is a JavaScript-based application that provides complete self-hosting solution.

Passbolt

5.8K

Passbolt is a self-hosted authentication & SSO replacement for 1Password, Authy, and more.

OpenBao

5.6K

OpenBao is a Go-based application that provides sensitive data store for secrets, certificates, and keys.

pfSense

5.6K

For security & authentication, pfSense is a self-hosted solution that provides comprehensive network security solution for enterprises.

UnKey

5.2K

For authentication & SSO, UnKey is a self-hosted solution that provides streamline API authentication.

Kanidm

4.7K

For authentication & SSO, Kanidm is a self-hosted solution that provides modern and simple identity management platform.

BleachBit

4.5K

BleachBit lets you run frees disk space & protects privacy by deleting cache entirely on your own server.

Buttercup

4.4K

Buttercup is a self-hosted security & authentication tool that provides secure, simple, and password manager.

Opnsense

4.3K

Opnsense is a self-hosted deployment & paas replacement for Sophos Firewall and UniFi Security Gateway.

Cerbos

4.3K

Cerbos is a self-hosted authentication & SSO replacement for AWS Cognito, Auth0, and more.

2FAuth

3.8K

2FAuth handles manage your Two-Factor Authentication (2FA) accounts and generate their security codes as a self-hosted solution.

Tracecat

3.5K

Released under AGPL-3.0, Tracecat provides scalable, self-hostable platform for automating security workflows and playbooks without limits on self-hosted...

Octelium

3.5K

Octelium lets you run unified zero-trust secure access platform entirely on your own server.

Padloc

2.9K

Released under AGPL-3.0, Padloc provides password manager on self-hosted infrastructure.

Password Pusher

2.9K

Released under Apache-2.0, Password Pusher provides dead-simple application to communicate passwords (or text) over the web. Passwords automatically on...

GLAuth

2.8K

GLAuth is a Go-based application that provides LDAP authentication server for developers.

Defguard

2.7K

For authentication & SSO, Defguard is a self-hosted solution that provides enterprise-grade VPN solution combining WireGuard.

AuthPass

2.6K

Released under GPL-3.0, AuthPass provides password manager compatible with KeePass on self-hosted infrastructure.

Picocrypt

2.5K

Picocrypt handles small, simple, and secure encryption tool as a self-hosted solution.

mCaptcha

2.4K

MCaptcha lets you run privacy-focused proof-of-work CAPTCHA system entirely on your own server.

Peergos

2.4K

Released under AGPL-3.0, Peergos provides secure and private space online where you can store on self-hosted infrastructure.

Ballerine

2.4K

Self-hosted personal dashboards tool that provides reduce fraud and speed underwriting with AI-driven risk intelligence for PSPs, banks, and fintechs.

AliasVault

2.3K

AliasVault is a self-hosted email servers tool that provides end-to-end encrypted password manager with a built-in email alias generator and server.

Opengrep

2.3K

Opengrep offers advanced scanning engine, backward compatibility, extended language support as a self-hosted security & authentication.

ALTCHA

2.1K

ALTCHA is a self-hosted security & authentication replacement for Cloudflare Turnstile, hCaptcha, and more.

VoidAuth

1.9K

VoidAuth is a TypeScript-based application that provides simplified user management and SSO.

Plakar

1.7K

Plakar handles backup solution with CLI as a self-hosted solution.

Matano

1.7K

Matano offers unified security data lake, detect & respond faster, search experience as a self-hosted security & authentication.

c15t

1.6K

Released under GPL-3.0, c15t provides consent management framework for modern web apps. Framework-agnostic on self-hosted infrastructure.

Authgear

1.5K

Authgear gives you managed authentication platform on your own infrastructure.

Comp AI

1.4K

For cybersecurity tools, Comp AI offers a self-hosted way to get SOC 2, ISO 27001 or HIPAA compliant in 4 weeks. Transparent, automated, and cost-effective.

Tailcall

1.4K

Tailcall is a self-hosted cybersecurity tools tool with support for security, GRAPHQL, cloud native.

GrapheneOS

1.2K

GrapheneOS is a Java-based application that provides privacy and security-focused mobile OS with Android app compatibility.

Beaver Notes

1.2K

Beaver Notes is a self-hosted privacy & encryption replacement for Apple Notes, Notion, and more.

Tesseral

1.1K

Released under MIT, Tesseral provides complete B2B authentication solution on self-hosted infrastructure.

Rauthy

1K

Released under Apache-2.0, Rauthy provides lightweight and simple identity provider on self-hosted infrastructure.

Probo

1K

Probo is a self-hosted security & authentication tool with support for compliance, gdpr, iso27001.

OpenAM

867

OpenAM gives you provides robust authentication, authorization, and single sign-on solutions on your own infrastructure.

Phase

838

Phase handles platform for engineering teams to manage secrets and environment variables from development as a self-hosted solution.

LazyWarden is a Python-based application that provides automated Python backup tool for Bitwarden.

Keyshade

747

Keyshade is a TypeScript-based application that provides secure secret management platform.

Clipperz

744

Clipperz handles clipperz: encrypted online vault and password manager as a self-hosted solution.

Curiefense

734

Curiefense gives you curiefense: protection for cloud-native applications on your own infrastructure.

Fief

728

Self-hosted security & authentication tool that provides user authentication management.

GoAway

692

GoAway handles lightweight DNS sinkhole for blocking unwanted domains as a self-hosted solution.

Double Take

687

Released under MIT, Double Take provides unified UI and API for processing and training images for facial recognition on self-hosted infrastructure.

Melody Auth

593

Melody Auth gives you effortless authentication built for flexibility and control on your own infrastructure.

Self-hosted privacy & encryption tool that provides very simple (to deploy and to use) secret message service using Hashicorp Vault as a secrets storage.

Marble

487

Marble lets you run platform that enables fintech companies to monitor transactions and user activity entirely on your own server.

Titan

480

Titan is a Python-based application that provides streamline role-based access control.

Bitwarden Portal

449

Bitwarden Portal lets you run automatic backups between hosted and Bitwarden entirely on your own server.

PearPass

399

PearPass is a self-hosted security & authentication replacement for 1Password, Dashlane, and more.

Shelve

390

Shelve lets you run comprehensive project management tool designed to streamline workflows and enhance collaboration entirely on your own server.

Anonymous Overflow

362

Self-hosted privacy & encryption tool that provides privacy frontend for StackOverflow.