18 repositorios
Forces all web traffic to use encrypted HTTPS connections, blocking unencrypted HTTP requests.
Distinct from Security & HTTPS: Distinct from Security & HTTPS: focuses on enforcing HTTPS at the browser level rather than certificate management or deployment workflows.
Explore 18 awesome GitHub repositories matching security & cryptography · HTTPS Enforcements. Refine with filters or upvote what's useful.
Javalin is a lightweight web framework for Java and Kotlin designed for building REST APIs and web applications. It functions as an embedded Jetty web server, allowing applications to run as standalone processes without the need for an external servlet container. The project provides specialized frameworks for diverse communication patterns, including a REST API framework with automatic OpenAPI schema generation, a GraphQL API framework with query and mutation resolvers, and a WebSocket server for bidirectional real-time communication. It also includes a dedicated framework for pushing real-t
Automatically forwards insecure HTTP requests to the secure HTTPS connector.
This PHP routing library is an HTTP request router and matcher designed to map incoming URL paths to specific controller actions using defined patterns and configuration. It serves as a programmatic interface for defining, loading, and resolving URL patterns, while providing a URL generator to produce absolute or relative URIs from route names and parameters. The system supports diverse route loading through YAML, XML, PHP arrays, and class attributes, utilizing compiled route matching to optimize performance. It enables sophisticated request handling through regex-based path matching, sub-do
Ensures that generated URLs use HTTPS and automatically redirects insecure HTTP requests to their secure counterparts.
This project is a censorship circumvention guide and internet freedom wiki. It serves as a knowledge base and network unblocking resource that provides technical methods and tools to bypass internet filtering and network restrictions. The platform focuses on internet censorship circumvention and network access recovery. It provides instructions for the implementation of privacy tools and the use of technical guides to access blocked content. The site is built using a static-site generation model with markdown-driven document structures and git-based content management. It employs client-side
Enforces HTTPS-only delivery to protect user privacy and prevent interference from network middle-boxes.
Cromite is a privacy-focused browser built as a fork of Chromium that embeds a network-level content blocking engine to intercept advertisements, pop-ups, and tracking scripts before they reach the page. It applies community-maintained public filter lists directly within the browser, eliminating the need for external extensions, and uses a curated patch system applied to the Chromium source tree at build time to add or modify features without maintaining a separate codebase. The browser is hardened against tracking and data leakage through a comprehensive set of privacy and security measures.
Blocks all non-HTTPS connections to ensure encrypted communication with every website.
Bromite is a privacy-focused fork of the Chromium browser for Android that blocks advertisements and tracking scripts by default, enforces encrypted HTTPS connections, and prevents browser fingerprinting without requiring any extensions or manual configuration. It applies a patch-based build system to layer privacy and security modifications directly onto the upstream Chromium codebase during compilation, integrating a filter list engine for network-level ad blocking and adding noise to browser APIs to mask device identity. The browser distinguishes itself through comprehensive privacy harden
Forces all web traffic to use encrypted HTTPS connections, blocking unencrypted HTTP requests at the network level.
Redirects all HTTP requests to HTTPS to encrypt data in transit and prevent man-in-the-middle attacks.
CodeIgniter is a PHP web framework built on the Model-View-Controller pattern, designed for building full-stack web applications. It provides a lightweight toolkit with minimal configuration, organizing application logic into controllers, models, and views for clean separation of concerns. The framework includes a fluent query builder for constructing SQL statements programmatically, PSR-4 autoloading with namespace mapping, and a service-based dependency injection container for managing shared class instances. The framework distinguishes itself through its comprehensive set of built-in tools
CodeIgniter redirects HTTP requests to HTTPS and sets the HSTS header to secure future requests.
Weblate is an open-source web-based translation management system that provides a collaborative platform for teams to review, suggest, and approve translations in real time. It functions as a continuous localization platform, automatically synchronizing translations with source code changes in version control repositories, and can be deployed either as a self-hosted server or through a managed cloud hosting service. The system integrates directly with Git hosting platforms like GitHub, GitLab, and Bitbucket, storing all translations in version control with individual translator attribution re
Forces encrypted HTTPS protocol for all traffic and sets HSTS headers for browser security.
Certmagic es una librería de Go para automatizar la emisión y renovación de certificados TLS. Funciona como un aprovisionador automático de HTTPS y cliente ACME que maneja el ciclo de vida completo de los certificados para asegurar la conectividad sin intervención manual. La librería se distingue por su soporte para el aprovisionamiento de TLS bajo demanda, que genera certificados dinámicamente durante el apretón de manos (handshake) TLS basado en el nombre del servidor. También proporciona automatización para certificados comodín (wildcard) a través de la verificación de desafío DNS y se integra con la API de ZeroSSL para la adquisición de certificados. El proyecto cubre una amplia gama de capacidades, incluyendo resolución de desafíos ACME, programación de renovación automatizada y revocación de certificados. Gestiona la persistencia de datos a través de backends de almacenamiento conectables e implementa bloqueo y sincronización distribuidos para coordinar la gestión de certificados a través de clústeres de servidores. La funcionalidad adicional incluye grapado OCSP, caché en memoria y la generación de configuraciones TLS para servidores personalizados.
Automatically redirects incoming unencrypted HTTP traffic to secure HTTPS connections.
Zoraxy es una herramienta de administración de red centrada en la gestión de proxies inversos HTTP. Proporciona una interfaz gráfica centralizada para enrutar el tráfico web desde dominios públicos a servicios backend internos, utilizando un proxy basado en Go para interceptar y reenviar solicitudes. El proyecto va más allá del enrutamiento web estándar al ofrecer una interfaz SSH basada en navegador para la administración remota de servidores y la ejecución de comandos. También soporta reenvío de TCP de capa de transporte y WebSocket para gestionar tráfico no HTTP entre clientes externos y puertos internos. Sus capacidades incluyen la gestión automatizada del ciclo de vida de certificados TLS mediante ACME, control de acceso a la red mediante filtrado basado en CIDR e integración de autenticación de usuarios. El sistema incorpora además herramientas de infraestructura de red para escaneo de IP y puertos, monitoreo de disponibilidad de servicios y análisis de estadísticas de tráfico.
Automatically redirects incoming unencrypted HTTP requests on port 80 to secure HTTPS connections.
Empire is a post-exploitation command-and-control (C2) framework designed for red team operations. It deploys and manages agents written in PowerShell, Python, C#, Go, and C across Windows, Linux, and macOS, using encrypted communication channels over HTTP, HTTPS, and SMB. The framework executes over 400 built-in modules for reconnaissance, privilege escalation, credential theft, and lateral movement, and provides a modular engine for authoring custom attack modules. What sets Empire apart is its multi-language agent deployment system, which allows operators to choose implants that suit each
Empire relays data between agents and the server using HTTP and HTTPS GET/POST requests on configurable ports.
BaoTa es un panel de control de servidores Linux basado en web y dashboard de administración de sistemas diseñado para gestionar entornos de alojamiento y recursos del sistema. Proporciona una interfaz gráfica para traducir acciones administrativas en configuraciones a nivel de sistema, permitiendo a los usuarios gestionar servidores Linux y stacks de alojamiento web sin depender únicamente de la línea de comandos. La plataforma se distingue por operaciones de servidor impulsadas por IA, utilizando inteligencia artificial para el análisis de rendimiento y la ejecución de tareas de mantenimiento mediante comandos en lenguaje natural. Admite orquestación multi-nodo, permitiendo la coordinación de múltiples instancias de servidor para balanceo de carga, replicación de datos y migraciones de máquinas desde una única interfaz. El software cubre una amplia gama de capacidades administrativas, incluyendo orquestación de contenedores Docker, gestión del ciclo de vida de bases de datos y emisión automatizada de certificados SSL. Proporciona herramientas integrales de endurecimiento de seguridad como firewalls de sistema, prevención de ataques de fuerza bruta y autenticación de múltiples factores, junto con herramientas de monitoreo para el seguimiento del rendimiento en tiempo real e informes de salud automatizados. La instalación y el despliegue del panel se gestionan mediante un script de línea de comandos en sistemas Linux limpios.
Forces all incoming HTTP traffic to use encrypted HTTPS connections.
Poem es un toolkit integral para construir aplicaciones web, APIs y servidores con seguridad de tipos utilizando el lenguaje de programación Rust. Proporciona una base para desarrollar servidores web que manejan solicitudes HTTP con una fuerte seguridad de tipos. El framework se distingue por admitir múltiples protocolos de comunicación a través de un mapeo de manejadores agnóstico al protocolo. Esto permite que una única lógica interna se exponga a través de HTTP, servicios gRPC utilizando definiciones protobuf y el Protocolo de Contexto de Modelo (MCP) para la integración de modelos de IA. Además, incluye herramientas integradas para generar especificaciones OpenAPI v3 y documentación interactiva. El proyecto cubre una amplia gama de capacidades, incluyendo enrutamiento de solicitudes, pipelines de middleware basados en traits y gestión de sesiones. Proporciona características de seguridad como la renovación automática de certificados TLS basada en ACME, protección CSRF y configuración CORS. Otras capacidades integradas incluyen streaming de datos en tiempo real a través de WebSockets y Server-Sent Events, servicio de activos estáticos e integración de OpenTelemetry para el rastreo distribuido de solicitudes. El framework está diseñado para admitir diversos objetivos de despliegue, incluyendo la capacidad de ejecutar aplicaciones web como funciones serverless basadas en eventos dentro de runtimes en la nube.
Forces all web traffic to use encrypted HTTPS connections by redirecting insecure HTTP requests.
Salvo es un framework web integral en Rust para construir servidores HTTP asíncronos y aplicaciones web. Cuenta con un enrutador web jerárquico que utiliza una estructura basada en árbol para mapear solicitudes a manejadores y un pipeline de middleware asíncrono basado en el modelo de cebolla para el pre y post-procesamiento de solicitudes y respuestas. El framework se distingue por su soporte nativo para protocolos de red modernos, incluyendo una implementación de HTTP/3 basada en QUIC junto con HTTP/1 y HTTP/2. Incluye un generador de documentación OpenAPI integrado que extrae esquemas directamente de las firmas de los manejadores para producir especificaciones de API estandarizadas e interfaces interactivas. Además, proporciona gestión automatizada de TLS mediante la integración de ACME para obtener y renovar certificados de seguridad. El proyecto cubre una amplia gama de capacidades, incluyendo comunicación en tiempo real mediante WebSockets y WebTransport, así como funcionalidad de pasarela de API con proxy de solicitudes y reescritura de rutas. Incluye soporte integrado para gestión de sesiones, extracción de parámetros con seguridad de tipos y observabilidad mediante la integración de OpenTelemetry. La entrega de contenido se maneja mediante el servicio de archivos estáticos y plantillas HTML dinámicas. Se proporciona una herramienta de línea de comandos para arrancar nuevas estructuras de proyectos.
Route incoming HTTP requests to the HTTPS protocol at the service or router level.
WordPress-iOS is a mobile CMS client and content management tool designed for managing WordPress websites from an iOS device. It serves as a remote editor and site administrator, allowing users to draft articles, organize media libraries, and moderate comments. The application provides capabilities for remote site administration, including the installation and management of plugins and themes. It enables on-the-go website customization through the adjustment of visual layouts, styles, and general site settings. The project covers a broad range of publishing and maintenance operations, includ
Ensures data between the mobile client and server is protected using HTTPS encryption.
AzuraCast is a self-hosted web radio management suite and dashboard designed for internet radio broadcasting. It functions as an automated playback manager and broadcasting system, integrating an audio orchestrator for transcoding and cross-fading with a streaming server to distribute audio via mount points. The platform enables multi-tenant station management, allowing a single installation to host multiple independent radio entities. It distinguishes itself by combining an Auto-DJ broadcast system with the ability to manage live DJ accounts and coordinate real-time broadcasts. The system c
Redirects all insecure HTTP traffic to HTTPS to prevent unencrypted communication.
Pico is a lightweight PHP content manager and Markdown website generator that functions as a flat-file CMS. It transforms Markdown files into a structured website by using the server file system for URL routing and avoids the use of a relational database for storing content and metadata. The system is distinguished by its support for multilingual website deployment and a static site cache that saves rendered pages as HTML to reduce server load. It employs a Git-based content workflow to synchronize and deploy updates across different environments. The platform covers a broad range of capabil
Forces all incoming web traffic to use the secure HTTPS protocol through automatic redirection.
This project is a Docker-based web gateway and Nginx reverse proxy manager. It functions as a containerized network edge designed to route incoming HTTP and HTTPS traffic to backend services using subdomains and subfolders. The system automates the procurement and renewal of Let's Encrypt SSL certificates via the ACME protocol and various DNS plugins. It includes a mechanism to export and share these certificates through persistent volumes so other containers can utilize the same encryption keys. Security is handled through a combination of server intrusion prevention, using Fail2Ban to moni
Automatically redirects incoming HTTP traffic from port 80 to secure HTTPS on port 443.