13 Repos
Deployment solutions that automate the lifecycle of virtualized or containerized environments.
Distinguishing note: Focuses on orchestration for virtualized desktop environments.
Explore 13 awesome GitHub repositories matching devops & infrastructure · Infrastructure Orchestration. Refine with filters or upvote what's useful.
This project provides a containerized virtualization engine that runs full Windows operating system instances within isolated containers. By acting as a cross-platform virtualization runtime, it enables the deployment of desktop environments on any host that supports standard container runtimes, ensuring consistent execution across diverse infrastructure. The system distinguishes itself by utilizing kernel-level virtualization primitives and hardware emulation to execute guest operating systems. It leverages accelerated kernel execution to offload CPU instructions to the host processor for pe
Integrates with container management platforms to automate the lifecycle of virtualized desktop environments.
The Serverless Framework is a declarative infrastructure-as-code tool designed to automate the deployment, scaling, and lifecycle management of cloud-native applications. It provides a unified command-line interface that translates high-level configuration files into provider-specific resource templates, enabling developers to orchestrate complex architectures, event-driven functions, and cloud resources within a single project structure. What distinguishes this framework is its focus on developer experience and multi-environment parity. It supports local function invocation and event proxyin
Serverless Framework enables managing related services as a single unit to support parallel deployments, ordered execution, and data sharing between infrastructure components.
Awesome Compose is a collection of resources designed to demonstrate the orchestration of multi-container applications. It serves as a practical reference for using declarative configuration files to define, manage, and deploy complex software stacks, ensuring that services run consistently across development, testing, and production environments. The project highlights the capabilities of container lifecycle management by providing examples of how to bundle software with its dependencies into isolated, portable units. It emphasizes the use of multi-stage build pipelines to optimize image siz
Uses structured configuration files to define and manage the lifecycle of multi-container application stacks and their associated network dependencies.
This project is a full-stack web application scaffolder designed to initialize production-ready projects with pre-configured database, authentication, and deployment settings. It provides a standardized starting point for development by generating a complete application structure that includes integrated backend, frontend, and database components. The template distinguishes itself through a type-safe integration layer that automatically synchronizes backend API definitions with frontend client code, ensuring consistent data exchange. It also features a containerized development environment th
Orchestrates multi-service stacks to ensure consistent performance across environments.
This project serves as a technical educational resource and software implementation example focused on dependency injection architecture and containerized application packaging. It provides a centralized framework for managing the lifecycle and configuration of application components, allowing objects to receive their dependencies from a registry rather than creating them internally. The project distinguishes itself by offering a type-safe service resolution mechanism that uses language-level information to map abstract interfaces to concrete implementations. By utilizing an inversion of cont
Packages and orchestrates software components for consistent execution and scalability.
Backstage is an open-source framework for building internal developer portals. It provides a centralized, metadata-driven software catalog that tracks ownership, dependencies, and lifecycle status for all technical assets by harvesting configuration files directly from version control systems. The platform is built on a plugin-based modular architecture, allowing teams to extend core functionality through isolated, independently deployable modules that integrate into a unified frontend and backend ecosystem. The project distinguishes itself through its focus on developer productivity and stan
Connects disparate cloud and development tools into a single interface to streamline operational tasks.
Nginx Proxy Manager is a containerized gateway controller that provides a graphical interface for managing web server routing, security certificates, and access control lists. It functions as a centralized dashboard for directing incoming web traffic to internal services, allowing users to map domain names to specific network ports without manual configuration file edits. The project distinguishes itself by automating the lifecycle of SSL certificates through integrated certificate authority clients and ACME challenges. It utilizes a dynamic routing engine based on high-performance web server
Automates the orchestration of network traffic routing between internet requests and internal containers.
Hiddify is a cross-platform proxy client designed to manage secure network connections and traffic routing across desktop and mobile operating systems. It functions as a unified proxy manager, providing a centralized interface to configure and control various network proxy protocols for encrypted and private internet access. The application distinguishes itself by integrating local loopback interception, which configures the operating system network stack to route traffic through a local port for granular filtering. It also serves as a self-hosted infrastructure tool, enabling users to automa
Automates the deployment and configuration of network services on remote infrastructure.
This project is an AI agent orchestration platform that provides a visual environment for building, testing, and deploying complex automation workflows. It functions as a low-code development interface where users can chain discrete functional blocks into dependency-aware pipelines to integrate artificial intelligence with external data and services. The platform supports the creation of intelligent conversational agents, automated business processes, and multi-service API orchestrations within a unified workspace. The platform distinguishes itself through its event-driven integration engine,
Manages and inspects infrastructure stacks and resources by executing diagnostic and validation commands.
Kestra is a declarative workflow orchestrator designed to manage complex task dependencies and automated processes through versioned configuration files. It functions as a distributed platform that decouples task scheduling from execution by offloading computational workloads to a fleet of worker nodes. The system uses a reactive, event-driven engine to initiate workflows automatically in response to external signals, webhooks, schedules, or file system changes. The platform distinguishes itself through a modular plugin architecture that allows for the integration of custom tasks and external
Coordinates microservices and infrastructure operations through versioned, declarative configuration files.
This project provides a framework for managing multi-agent systems, designed to automate complex software development, infrastructure, and business workflows. It functions as a multi-agent workflow orchestrator that routes tasks to domain-specific workers while maintaining state persistence and infrastructure automation. By leveraging large language models, the system decomposes high-level objectives into actionable plans, ensuring that complex operations are executed with consistency and reliability. The framework distinguishes itself through its hierarchical agent registry and policy-driven
Automates the lifecycle of scalable infrastructure units through modular patterns and state management.
zrok ist ein Zero-Trust-Networking-Dienst, der ein sicheres Overlay-Mesh bereitstellt, um lokale Dienste und Dateien durch Firewalls und NAT hindurch verfügbar zu machen, ohne dass manuelles Port-Forwarding erforderlich ist. Es fungiert als Zero-Trust-Netzwerkmanager, der Identitäten, Richtlinien und Router orchestriert, um eine sichere Konnektivität zwischen Anwendungen und Benutzern herzustellen. Das Projekt zeichnet sich durch identitätsbasiertes Routing und gehärtete HTTP-Frontends aus, die sich in externe Identitätsanbieter integrieren lassen. Diese Funktionen ermöglichen die Erstellung von identitätsbewussten Proxys und sicheren Reverse-Proxys, die Benutzer authentifizieren, bevor sie Zugriff auf interne Webanwendungen erhalten. Zu den weiteren Funktionen der Plattform gehören Peer-to-Peer-Ressourcenfreigabe für TCP- und UDP-Dienste, die Freigabe von Netzlaufwerken sowie identitätsbewusste Mikrosegmentierung für IT- und OT-Netzwerke. Über ein sicheres Sharing-SDK wird zudem eine programmatische Schnittstelle bereitgestellt, um diese Tunneling-Funktionen direkt in externe Anwendungen einzubetten. Die Infrastruktur kann als selbstgehosteter Controller und privates Netzwerk-Stack in Linux-, Docker- oder Kubernetes-Umgebungen bereitgestellt werden.
Provides a centralized platform for orchestrating identities, policies, and routers across the network.
Attack Range is a cybersecurity breach simulation framework designed to orchestrate the lifecycle of security labs and execute controlled attack scenarios. It functions as a security simulation infrastructure orchestrator, enabling the deployment of instrumented cloud and local environments to validate defensive capabilities and generate security telemetry. The platform distinguishes itself through configuration-driven automation and infrastructure-as-code orchestration, which allow for the repeatable provisioning of vulnerable environments. It manages the entire simulation lifecycle, from th
Orchestrates the creation and destruction of cloud-based lab environments using templates to generate security telemetry for analysis.