18 Repos
Tools for centralizing, securing, and rotating third-party service credentials.
Distinguishing note: None of the provided candidates were relevant; this focuses on centralized credential lifecycle management.
Explore 18 awesome GitHub repositories matching security & cryptography · API Credential Managers. Refine with filters or upvote what's useful.
One API is a centralized gateway and orchestration platform designed to consolidate multiple artificial intelligence model providers into a single, standardized interface. It functions as a reverse proxy that intercepts incoming API requests and routes them to various third-party services, abstracting the underlying provider credentials through a unified token management system. The platform provides comprehensive administrative tools for managing API keys, rotating credentials, and enforcing security policies across diverse service integrations. It includes a persistent database-backed syste
Managing and rotating multiple third-party service credentials in one secure location to reduce administrative overhead and improve system security.
Nuclei is a modular security scanning framework designed for automated vulnerability detection and infrastructure reconnaissance. It functions as a template-driven engine that executes security checks across diverse network protocols, allowing users to define custom detection logic to identify vulnerabilities, misconfigurations, and exposed assets. The platform distinguishes itself through its highly extensible architecture, which supports distributed scanning, headless browser automation for dynamic web content, and out-of-band interaction monitoring to detect blind vulnerabilities. It integ
Centralizes and secures authentication keys for cloud service API access.
Activepieces is an open-source, self-hosted workflow automation platform designed to connect third-party applications through modular triggers and actions. It provides a low-code integration framework that allows users to build, manage, and execute complex business logic sequences within isolated, sandboxed environments. The platform distinguishes itself through its focus on embeddability and enterprise-grade security. It features an embedded automation builder that can be integrated into external applications via iframes, supported by comprehensive identity and access management tools such a
Centralizes API keys and access tokens to make third-party services available across all projects and users.
SWE-agent is an autonomous software engineering platform designed to automate repository maintenance and issue resolution. By orchestrating language models to navigate codebases, diagnose software bugs, and apply fixes, the framework functions as an autonomous agent capable of executing shell commands, editing source code, and managing pull requests within isolated, containerized environments. The platform distinguishes itself through its focus on end-to-end task autonomy and observability. It features a robust trajectory logging system that records every thought, action, and environment obse
Distributes requests across multiple authentication keys to bypass rate limits during automated sessions.
Nango is an open-source platform that connects applications to external APIs by managing authentication, data synchronization, and custom function execution. It provides a managed runtime for TypeScript integration functions, handling OAuth flows, credential storage, and token refresh for hundreds of external APIs while keeping secrets isolated from application code. The platform distinguishes itself by exposing integration functions as discoverable tools for AI agents through an MCP server or API, with per-user credential isolation that keeps provider secrets out of the agent loop. It offers
Fetches stored credentials on demand for calling external APIs without handling secrets.
RestSharp is a .NET HTTP client library designed for interacting with RESTful web services. It provides a high-level request wrapper and a dedicated REST API client to manage endpoints, headers, and query parameters. The library includes a serialization mechanism that automatically converts objects to and from JSON or XML formats for API payloads. It also features a system for managing API credentials and security tokens to ensure authorized access to protected remote resources. The toolkit covers broad capabilities for external web service integration, including generic type-based deseriali
Handles the management and application of security tokens and identity credentials for protected remote resources.
Valuecell is an artificial intelligence financial trading platform and market analysis engine. It functions as a multi-exchange trading bot and financial data orchestrator, designed to analyze market data and execute automated trades across global financial exchanges. The system utilizes a modular agent plugin framework that allows for the integration of third-party tools and agents through a shared community registry. It incorporates a retrieval-augmented generation approach to analyze fundamental financial documents and historical patterns, grounding AI responses in factual data. The platf
Includes a security utility for the centralized storage and rotation of third-party API keys and OAuth tokens.
Higress is an AI API gateway and cloud-native traffic manager that functions as a Kubernetes ingress controller. It provides a centralized system for routing, securing, and optimizing traffic directed toward large language models, AI agents, and microservice architectures. The project distinguishes itself through deep AI orchestration, including the ability to host and manage Model Context Protocol servers that transform REST APIs into tools for AI agents. It features specialized AI infrastructure for model request proxying, protocol translation across multiple providers, and semantic-based c
Generates and manages unique API keys and secrets for different environments to maintain multiple credential sets.
Faraday is a vulnerability management platform and security tool aggregator designed to centralize security findings from multiple scanners into a single dashboard. It utilizes a relational security database to catalog hosts, services, and security flaws, enabling users to track remediation and analyze organizational risk. The platform distinguishes itself through a plugin-based system that normalizes diverse security tool outputs into a unified data model. It supports deep integration with a wide array of scanners and CLI tools, intercepting shell command output or parsing report files to ag
Offers an API for storing and updating authentication credentials associated with specific network assets.
TelegramSwift is a native macOS client for the Telegram messaging platform, built entirely in Swift. It provides a complete implementation of the Telegram protocol, enabling users to send text messages, make voice calls, share media files, and participate in group chats and channels directly from their Mac. The application supports core messaging features including end-to-end encryption, emoji reactions, message pinning, and threaded comments, along with content types like stickers, GIFs, polls, and stories. The client extends beyond basic messaging with capabilities for bot interaction, paym
Guides users through obtaining apiid and apihash credentials from the Telegram portal.
Dieses Projekt ist eine umfassende Sammlung von Leitfäden und Frameworks zur Absicherung von SaaS-Infrastrukturen und Unternehmensabläufen. Es bietet eine Zusammenstellung technischer Checklisten, Architekturmuster und Best Practices zur Härtung von Cloud-Anwendungen gegen Cyberangriffe. Das Projekt zeichnet sich durch spezialisierte Handbücher für Risikomanagement und Compliance-Bereitschaft aus. Es bietet strukturierte Ansätze für Threat Modeling, Incident-Response-Planung und die Vorbereitung von Audit-Nachweisen, die zur Erfüllung von Branchen-Sicherheitszertifizierungen und Anforderungen von Unternehmenskunden erforderlich sind. Das Framework deckt breite Fähigkeitsbereiche ab, einschließlich der Härtung von Cloud-Infrastrukturen, Identitäts- und Zugriffsmanagement sowie Sicherheitsrisikomanagement. Es adressiert technische Kontrollen wie Umgebungsisolierung und Netzwerkverschlüsselung sowie operative Prozesse wie das Offboarding von Mitarbeitern und die Überprüfung von Anbietern.
Manages the lifecycle of API credentials, including the assignment of unique keys and token revocation processes.
Scanopy is a self-hosted infrastructure inventory and network discovery tool. It identifies hosts, services, and workloads across subnets to build a live model of network infrastructure, maintaining a searchable catalog of assets. The system features an interactive network topology visualizer that generates physical, logical, and application dependency diagrams. It maps the nesting chain from physical hardware and hypervisors down to virtual machines and containers, utilizing SNMP for hardware metadata and container APIs for workload discovery. The platform supports distributed network scann
Stores credentials for APIs to enable deep discovery of device and container dependencies.
apollo-ios is a GraphQL client library for iOS and Apple platforms that enables type-safe network communication. It transforms GraphQL operations into generated Swift models, ensuring that network responses are validated at compile time to eliminate manual mapping. The library features a normalized cache manager that stores entities in a flat structure to maintain data consistency across different application views. It also optimizes network performance using hash-based persisted queries to reduce payload sizes and supports real-time data streaming via WebSockets or HTTP subscriptions. The p
Provides a centralized system for the creation, rotation, and deletion of API credentials.
This project is an AI API gateway and proxy that translates and normalizes requests between different AI model formats to ensure compatibility across client applications. It functions as a middleware service that can transform local command-line binaries into web services, allowing them to be triggered via HTTP requests. The system is distinguished by its ability to route multimodal text and image inputs and extract internal reasoning chains from model outputs to separate the chain of thought from the final answer. It includes an authentication manager that automatically cycles through multip
Centralizes the storage and lifecycle management of authentication tokens required for external AI services.
Quotio is a local LLM API proxy gateway and credential manager that intercepts and routes requests from command-line tools and integrated development environments to various AI model providers. It serves as a centralized authentication hub, managing API keys and service accounts to provide a unified interface for external AI agents. The project distinguishes itself through a routing engine that implements priority-chain and round-robin load balancing to distribute workloads across multiple accounts. It features automated API key failover, which redirects requests to backup authentication keys
Provides a centralized, secure store for managing API keys and service accounts across multiple AI providers.
acme-dns is a DNS server and protocol manager designed to proxy TXT records for ACME DNS-01 challenges. It enables the validation of domain ownership for automated certificate issuance without exposing primary DNS zone files or credentials to external clients. The project utilizes CNAME-based delegation to offload verification from a primary zone to a specialized server. It provides a REST API for programmatically updating short-lived validation tokens, which is secured through CIDR-based network restrictions and automated TLS provisioning for the API interface. The system supports stateless
Provides an API to issue and manage unique subdomains and credentials for certificate authority validation tokens.
Fleetbase ist ein modulares, containerisiertes Logistik-Betriebssystem für die Verwaltung von End-to-End-Lieferkettenoperationen, einschließlich Flottendisposition, Bestandssteuerung und Auftragsabwicklung. Es fungiert als Headless-E-Commerce- und Logistikplattform, die die Infrastruktur für den Aufbau von Multi-Vendor-Marktplätzen und verbraucherorientierten Bestellanwendungen bietet. Durch die Nutzung eines zentralen Identitätssystems und ereignisgesteuerter Workflows automatisiert die Plattform komplexe Lieferlebenszyklen und Finanzbuchhaltungsprozesse. Die Plattform basiert auf einer modularen Architektur, die es Entwicklern ermöglicht, Kernfunktionen durch installierbare Pakete zu erweitern, ohne den zugrunde liegenden Quellcode zu modifizieren. Sie verfügt über ein robustes API-Framework, das versionierte Endpoints, sicheres Anmeldedatenmanagement und Echtzeit-Event-Streams für die Integration mit Hardware und Software Dritter unterstützt. Benutzer können das System weiter anpassen, indem sie Metadaten an Kernentitäten anhängen, was die Speicherung einzigartiger Geschäftsinformationen innerhalb des bestehenden Datenmodells ermöglicht. Das System bietet eine umfassende Suite von Tools für selbstgehostete Umgebungen, einschließlich automatisierter Datenbank-Backups, Container-Orchestrierung und Netzwerksicherheitskonfigurationen. Es enthält ein dediziertes Kommandozeilen-Interface zur Verwaltung des gesamten Anwendungslebenszyklus, von der lokalen Entwicklung und Erweiterungs-Scaffolding bis hin zu Deployment und System-Updates. Administrative Einstellungen und entwicklerfokussierte Monitoring-Tools stellen sicher, dass Plattformintegrität und Integrationsgesundheit über alle operativen Module hinweg gewahrt bleiben.
Generates and rotates authentication tokens for secure access to platform services, supporting both live and sandbox environments.
This project is an artificial intelligence API gateway that centralizes connections to multiple model providers into a single, standardized interface. By acting as a proxy, it translates diverse provider protocols into a format compatible with existing clients, allowing developers to integrate various language models without managing provider-specific software development kits. The gateway distinguishes itself through a robust traffic management layer that includes intelligent request routing, weighted load balancing, and automated failover mechanisms to ensure service availability. It incorp
Centralizes and secures third-party service credentials while isolating upstream provider keys from client-facing interfaces.