awesome-repositories.com
Blog
awesome-repositories.com

Découvrez les meilleurs dépôts open-source grâce à notre recherche par IA.

ExplorerRecherches sélectionnéesAlternatives open sourceLogiciels auto-hébergésBlogPlan du site
ProjetÀ proposNotre méthodologiePresseServeur MCP
Mentions légalesConfidentialitéConditions d'utilisation
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

60 dépôts

Awesome GitHub RepositoriesSecure SSH Access

Authentication and authorization for SSH connections using identity-based credentials.

Distinguishing note: Focuses on SSH-specific identity integration.

Explore 60 awesome GitHub repositories matching security & cryptography · Secure SSH Access. Refine with filters or upvote what's useful.

Awesome Secure SSH Access GitHub Repositories

Trouvez les meilleurs dépôts grâce à l'IA.Nous recherchons les dépôts les plus pertinents grâce à l'IA.
  • awesome-selfhosted/awesome-selfhostedAvatar de awesome-selfhosted

    awesome-selfhosted/awesome-selfhosted

    299,516Voir sur GitHub↗

    Ce projet est un répertoire de logiciels open source organisé par la communauté, conçu pour être déployé dans des environnements de serveurs privés et des laboratoires domestiques. Il sert de ressource complète pour découvrir des alternatives indépendantes et auto-hébergées aux services cloud grand public, permettant aux utilisateurs de conserver la pleine propriété des données et le contrôle de leur infrastructure numérique. Le répertoire est structuré par une taxonomie hiérarchique qui organise une vaste collection d'applications en catégories logiques, allant de la gestion multimédia et de l'analyse de données à la communication privée et aux outils de productivité d'équipe. Il se distingue par un processus de revue par les pairs collaboratif, où les membres de la communauté valident la qualité et la pertinence de chaque soumission pour garantir que le répertoire reste précis et fiable. Le projet couvre une large surface de capacités, notamment l'automatisation de l'infrastructure, le déploiement de services basés sur des conteneurs et la gestion de configuration déclarative. Ces outils aident les utilisateurs à maintenir des environnements de serveur reproductibles et à gérer des dépendances de services complexes sur du matériel privé. Le répertoire est maintenu en tant que dépôt contrôlé par version, garantissant que toutes les mises à jour et les changements pilotés par la communauté sont suivis et transparents.

    Provides a bastion server to manage SSH access with session recording and hardware-backed key protection.

    awesomeawesome-listcloud
    Voir sur GitHub↗299,516
  • daytonaio/daytonaAvatar de daytonaio

    daytonaio/daytona

    72,416Voir sur GitHub↗

    Daytona is a cloud-native development environment platform designed to orchestrate ephemeral, containerized workspaces. It provides a centralized system for managing reproducible coding environments as code, ensuring consistency across distributed teams by abstracting the underlying infrastructure. By utilizing declarative configuration, the platform automates the entire lifecycle of development sandboxes, from initial provisioning to resource governance. The platform distinguishes itself through its infrastructure-agnostic runner layer, which allows development environments to be deployed ac

    Provides secure, token-authenticated SSH access to isolated development sandboxes.

    TypeScriptagentic-workflowaiai-agents
    Voir sur GitHub↗72,416
  • tailscale/tailscaleAvatar de tailscale

    tailscale/tailscale

    32,596Voir sur GitHub↗

    Tailscale is a zero-trust networking overlay that connects distributed devices and services into a private, encrypted mesh network. By utilizing a high-performance, user-space implementation of the WireGuard protocol, it establishes secure peer-to-peer tunnels across diverse network topologies without requiring complex firewall configuration. The platform operates on a centralized control plane that manages global network state, authentication, and policy distribution, ensuring that connectivity is governed by identity rather than traditional IP-based rules. What distinguishes Tailscale is it

    Authenticates and authorizes secure shell connections using existing identity credentials.

    Go2faoauthsso
    Voir sur GitHub↗32,596
  • jumpserver/jumpserverAvatar de jumpserver

    jumpserver/jumpserver

    30,595Voir sur GitHub↗

    JumpServer is a privileged access management platform designed to manage and audit secure access to SSH, RDP, Kubernetes, and database endpoints. It functions as a centralized gateway that brokers remote terminal and graphical sessions to isolate users from critical infrastructure. The system utilizes a web-based protocol gateway to translate remote connections into browser-compatible streams and a protocol-based proxy layer to isolate end-user devices from target assets. It incorporates security watermarking to deter unauthorized screen captures and provides a Kubernetes access gateway for c

    Implements a secure gateway that brokers SSH and RDP sessions to isolate users from critical infrastructure.

    Pythonbastion-hostcyberarkdjango
    Voir sur GitHub↗30,595
  • hashicorp/vagrantAvatar de hashicorp

    hashicorp/vagrant

    27,154Voir sur GitHub↗

    Vagrant is a virtual machine environment manager and infrastructure as code tool used to create and configure consistent development environments. It acts as a virtual machine provisioner and hypervisor abstraction layer, allowing users to define machine specifications and automate software installation on guest systems via declarative configuration files. The project enables cross-hypervisor orchestration by decoupling the command interface from specific virtualization backends. It ensures environment consistency through the distribution of pre-configured machine images and the orchestration

    Establishes secure shell access between host and guest machines using public and private keypairs.

    Rubyautomationrubyvagrant
    Voir sur GitHub↗27,154
  • netbirdio/netbirdAvatar de netbirdio

    netbirdio/netbird

    26,188Voir sur GitHub↗

    NetBird is a zero-trust networking platform that builds secure, encrypted peer-to-peer overlay networks using the WireGuard protocol. It functions as a software-defined perimeter, connecting distributed infrastructure across cloud environments and physical locations while hiding network resources from the public internet. By integrating with external identity providers, the platform enforces granular access control and identity-based segmentation for every user and device. The platform distinguishes itself through extensive automation and programmatic management capabilities. It provides a ce

    Automates the generation of SSH configuration files to facilitate secure, identity-based host access.

    Gogolangmeshmesh-networks
    Voir sur GitHub↗26,188
  • manaflow-ai/cmuxAvatar de manaflow-ai

    manaflow-ai/cmux

    22,717Voir sur GitHub↗

    cmux is a GPU-accelerated terminal emulator and workspace manager designed for coordinating multiple concurrent AI coding agents. It functions as an orchestration terminal that uses scriptable workspaces and split panes to manage parallel AI agent workflows, while also serving as a headless browser automation tool and a remote development relay. The project differentiates itself through a programmatic control plane using a Unix domain socket and CLI, allowing for the automated management of terminal layouts and input delivery. It features an integrated web engine for programmatic DOM manipula

    Transmits terminal data and commands over SSH using a background daemon to maintain connectivity.

    Swiftampclaude-codecodex
    Voir sur GitHub↗22,717
  • fosrl/pangolinAvatar de fosrl

    fosrl/pangolin

    21,255Voir sur GitHub↗

    Pangolin is a zero-trust remote access platform designed to provide secure, identity-aware connectivity to private network resources. It functions as a cloud-native network controller that orchestrates encrypted tunnels, traffic routing, and access policies across distributed environments. By leveraging WireGuard for secure data transport, the platform enables authenticated access to internal web applications, terminal sessions, and remote desktops without exposing services to the public internet. The platform distinguishes itself through a declarative infrastructure model that synchronizes n

    Connects users to remote hosts via terminal over a private tunnel using friendly aliases.

    TypeScriptcrowdsecdockerhome-lab
    Voir sur GitHub↗21,255
  • ish-app/ishAvatar de ish-app

    ish-app/ish

    19,325Voir sur GitHub↗

    This project provides a complete Linux environment for mobile devices by emulating an x86 architecture and translating system calls into native mobile operations. It functions as a terminal emulator that allows users to run standard command-line utilities, manage software packages, and execute unmodified Linux binaries directly on their mobile hardware. The environment distinguishes itself through its ability to maintain persistent background execution, preventing the mobile operating system from suspending shell tasks or active processes. It supports a containerized approach to the root file

    Enables remote access to the mobile Linux environment by running a secure shell daemon.

    Cemulatorhacktoberfestios
    Voir sur GitHub↗19,325
  • kubernetes/kopsAvatar de kubernetes

    kubernetes/kops

    16,631Voir sur GitHub↗

    kops is a Kubernetes cluster provisioner and lifecycle manager designed to automate the creation, maintenance, and destruction of production-grade clusters on cloud infrastructure. It functions as a declarative infrastructure manager, synchronizing the live state of a cluster with versioned manifests stored in remote object storage to ensure idempotent operations. The project distinguishes itself by offering comprehensive automation for the entire cluster lifecycle, including high-availability control plane deployment, incremental rolling updates, and automated version upgrades. It also serve

    Manages secure shell access to nodes by configuring public keys and restricting source IP addresses.

    Gocncfcontainersgo
    Voir sur GitHub↗16,631
  • getgrav/gravAvatar de getgrav

    getgrav/grav

    15,395Voir sur GitHub↗

    Grav is a flat-file content management system that eliminates the need for a traditional database by storing site content and configuration in human-readable Markdown and YAML files. Built as a modular PHP web framework, it uses a hierarchical page routing system where the physical directory structure directly determines the site's URL paths. The platform is distinguished by its event-driven plugin architecture and a command-line interface that prioritizes system administration, deployment, and maintenance tasks. It utilizes a blueprint-driven system to generate administrative forms from stru

    Facilitates secure remote server management via SSH public key authentication.

    PHPcmscontentcontent-management
    Voir sur GitHub↗15,395
  • fabric/fabricAvatar de fabric

    fabric/fabric

    15,397Voir sur GitHub↗

    Fabric is a command-line interface and framework designed to integrate artificial intelligence reasoning into shell-based workflows. It functions as an orchestration tool that connects local data pipelines to remote artificial intelligence services, allowing users to automate content analysis and complex reasoning tasks directly from the terminal. The project distinguishes itself through a modular architecture that treats prompt patterns as version-controlled, reusable logic stored on the local filesystem. By utilizing standard input and output streams, it enables users to chain these analyti

    Authenticates remote sessions using SSH keys or agents to establish secure administrative access.

    Python
    Voir sur GitHub↗15,397
  • coder/coderAvatar de coder

    coder/coder

    12,272Voir sur GitHub↗

    Coder is a self-hosted platform for provisioning and managing isolated, containerized development environments. It provides a centralized infrastructure for teams to deploy ephemeral workspaces on private cloud or on-premises hardware, ensuring consistent toolchains and dependencies across distributed development environments. The platform distinguishes itself through its focus on secure, infrastructure-as-code governance and autonomous agent integration. It allows organizations to define reusable, versioned environment templates that integrate with existing identity providers and role-based

    Configures local SSH clients to securely access remote workspaces using generated key pairs and optimized network paths.

    Goagentsdev-toolsdevelopment-environment
    Voir sur GitHub↗12,272
  • openspug/spugAvatar de openspug

    openspug/spug

    11,016Voir sur GitHub↗

    Spug is a web-based agentless SSH management platform used for executing remote commands and managing servers without requiring the installation of agent software on target machines. It serves as a centralized operations suite that integrates remote command execution, task scheduling, configuration management, health monitoring, and application deployment. The platform differentiates itself through a browser-based SSH terminal and jump box, providing direct interactive shell access to remote hosts without a local client. It also features a remote file manager for bidirectional file transfers

    Enables remote server terminal access directly through a web browser without needing a local SSH client.

    JavaScriptalertcicicd
    Voir sur GitHub↗11,016
  • takezoe/gitbucketAvatar de takezoe

    takezoe/gitbucket

    9,371Voir sur GitHub↗

    GitBucket is a self-hosted Git hosting platform and forge designed for managing private repositories. Built with the Scala language, it provides a web interface for version control and is implemented as a server compatible with the GitHub API to ensure integration with existing third-party tools. The platform allows for customization of the version control environment through a plugin-based extension model, enabling the installation of third-party plugins to add specialized features. Its capability surface covers software project management via integrated issue trackers, pull requests, and w

    Provides secure SSH access for encrypted pushing and pulling of repository code.

    Scala
    Voir sur GitHub↗9,371
  • phusion/baseimage-dockerAvatar de phusion

    phusion/baseimage-docker

    9,098Voir sur GitHub↗

    Phusion/baseimage-docker is a minimal Ubuntu-based Docker base image that includes a proper init system for managing multiple services and processes inside a single container. It provides a lightweight init process that reaps zombie processes, forwards stop signals for graceful shutdown, and supervises daemons through runit, restarting them automatically if they crash. The image includes a preconfigured OpenSSH server restricted to public-key authentication for secure shell access to running containers, along with a cron daemon for scheduling recurring tasks. It supports ordered startup scrip

    Provides a preconfigured OpenSSH server restricted to public-key authentication for secure container shell access.

    Shell
    Voir sur GitHub↗9,098
  • orbstack/orbstackAvatar de orbstack

    orbstack/orbstack

    8,903Voir sur GitHub↗

    OrbStack is a native macOS application that replaces Docker Desktop, providing an all-in-one environment for running Docker containers, full Linux virtual machines, and local Kubernetes clusters. It runs Linux VMs directly on the macOS hypervisor framework for near-native performance, uses VirtioFS for fast bidirectional file sharing between macOS and Linux, and leverages Rosetta for near-native x86 emulation on Apple Silicon. The system assigns predictable local domain names to containers and VMs with automatic HTTPS certificate generation, forwards ports via event-driven updates, and stores

    Connects to a running Linux machine over SSH using a simple alias, with agent forwarding enabled.

    Shellcolimadockerdocker-desktop
    Voir sur GitHub↗8,903
  • sitaramc/gitoliteAvatar de sitaramc

    sitaramc/gitolite

    8,582Voir sur GitHub↗

    Gitolite est une couche de gestion côté serveur pour les dépôts Git auto-hébergés qui orchestre les paramètres des dépôts et l'accès des utilisateurs via des clés publiques SSH. Il fonctionne comme un orchestrateur de configuration Git, appliquant des règles de dépôt et des rôles d'utilisateur sur un serveur Linux central pour gérer le cycle de vie des données de contrôle de version hébergées. Le système se distingue par son modèle d'administration basé sur Git, où tous les utilisateurs et les règles d'accès sont stockés dans un dépôt Git dédié qui sert de source unique de vérité. Cela permet aux administrateurs serveur de gérer l'environnement d'hébergement en poussant les changements de configuration vers ce dépôt administratif. Le projet fournit un contrôle d'accès granulaire, utilisant la correspondance par motifs pour restreindre ou accorder des permissions sur des branches et des tags spécifiques. Il inclut des fonctionnalités pour organiser les utilisateurs et les dépôts en groupes et offre une interface restreinte pour exécuter des tâches administratives et interroger l'état du serveur via SSH sans nécessiter un accès shell complet.

    Executes remote administrative commands and queries server status over SSH without a full shell session.

    Perl
    Voir sur GitHub↗8,582
  • missing-semester-cn/missing-semester-cn.github.ioAvatar de missing-semester-cn

    missing-semester-cn/missing-semester-cn.github.io

    7,311Voir sur GitHub↗

    This is an open-source educational website that translates and localizes MIT's Missing Semester course, teaching practical computing skills for computer science students. The curriculum covers developer tooling, shell scripting, version control, security fundamentals, and open-source collaboration, with a focus on core computing skills including data processing pipelines, workflow automation, secure remote access, shell productivity, Vim editing, and Git version control. The project distinguishes itself by teaching command-line mastery, shell scripting, and automation to boost daily developer

    Teaches logging into remote servers via SSH for command execution and file transfers.

    Markdown
    Voir sur GitHub↗7,311
  • openmediavault/openmediavaultAvatar de openmediavault

    openmediavault/openmediavault

    6,802Voir sur GitHub↗

    OpenMediaVault is a Debian-based network attached storage (NAS) operating system that turns a computer into a dedicated storage appliance, managed entirely through a browser-based control panel. It provides a unified configuration interface for managing file sharing protocols, RAID arrays, user permissions, and network services, with extensibility through a modular plugin system that adds new capabilities without modifying the core installation. The platform supports setup and management of multiple RAID levels for data redundancy or performance, and exposes file storage over protocols includ

    Provides secure remote terminal access and file transfer over the SSH protocol.

    PHPdebiannas
    Voir sur GitHub↗6,802
Préc.123Suivant
  1. Home
  2. Security & Cryptography
  3. Secure SSH Access

Explorer les sous-tags

  • Access TogglesControls for enabling or disabling SSH access via web settings or boot-partition files. **Distinct from Secure SSH Access:** Distinct from Secure SSH Access: focuses on the enable/disable toggle mechanism rather than authentication or identity integration.
  • Bastion ServersSecure jump hosts for managing SSH access with session recording. **Distinct from Secure SSH Access:** Distinct from Secure SSH Access: focuses on the bastion server architecture rather than general identity-based access.
  • Cloud Instance Connection WorkflowsAutomated processes for establishing shell access to cloud instances including IP resolution and jump host routing. **Distinct from Secure SSH Access:** Focuses on the orchestration of the connection workflow (IP resolution, jump hosts) rather than just the identity-based authentication mechanism.
  • Credential MappingSystems that map a user's authenticated identity to specific upstream credentials for a target resource. **Distinct from Secure SSH Access:** Distinct from Secure SSH Access: focuses on the translation/mapping of identity to a specific target credential rather than the auth process.
  • Jailed Shell EnvironmentsRestricts user shell access to a specific home directory subtree. **Distinct from Secure SSH Access:** Distinct from general SSH access: specifically implements filesystem isolation via jailed shells.
  • Protocol Proxies1 sous-tagGateways that broker and isolate remote terminal and graphical sessions using specific network protocols. **Distinct from Secure SSH Access:** Distinct from Secure SSH Access: covers a broader range of protocols including RDP and database traffic, not just SSH identity.
  • Remote Command Execution and File Transfers1 sous-tagRunning commands non-interactively and transferring files over SSH using key pair authentication. **Distinct from Secure SSH Access:** Distinct from Secure SSH Access: covers the operational use of SSH for command execution and file transfer, not just authentication and authorization.
  • Remote System CustomizationModifying system software and device behavior through secure remote access protocols. **Distinct from Secure SSH Access:** Focuses on the act of customizing system behavior via SSH, rather than just the authentication mechanism.
  • SSH Dashboard Servers2 sous-tagsSSH servers that serve a terminal-based application UI to remote clients. **Distinct from Secure SSH Access:** Distinct from Secure SSH Access: focuses on serving an interactive dashboard UI over SSH, not just authentication or access control.
  • SSH Server Hosting2 sous-tagsImplementation of SSH servers to provide remote access to specific hardware or host environments. **Distinct from Secure SSH Access:** Distinct from Secure SSH Access: focuses on the hosting and running of the SSH server itself rather than just the authentication layer.
  • SSH Session BrokersOpens secure shell sessions to Linux or Unix servers through a bastion host for command-line remote access. **Distinct from Secure SSH Access:** Distinct from Secure SSH Access: focuses on brokering SSH sessions through a gateway rather than just authentication.
  • SSH Transport Integrations1 sous-tagConfigures SSH as a secure transport layer for file synchronization and transfer tools. **Distinct from Secure SSH Access:** Distinct from Secure SSH Access: focuses on using SSH as a transport mechanism for other tools, not on SSH authentication or access control itself.