# DevOps & Infrastructure > Search results for `devops & infrastructure` on awesome-repositories.com. 114 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/devops-infrastructure **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/devops-infrastructure).** ## Results - [bregman-arie/devops-exercises](https://awesome-repositories.com/repository/bregman-arie-devops-exercises.md) (82,777 ⭐) — This project is a comprehensive educational curriculum designed to build proficiency across modern infrastructure, cloud-native technologies, and systems administration. It functions as a reference library and interview preparation resource, offering a structured collection of conceptual questions, practical coding challenges, and hands-on scenarios that cover the full spectrum of software delivery and operational workflows. The repository distinguishes itself through a modular, domain-specific structure that links instructional problem statements with verified implementation examples. By employing a standardized documentation schema, it provides a predictable learning path for mastering complex technical concepts, ranging from infrastructure-as-code patterns and container orchestration to cloud platform administration and security best practices. The content spans a wide array of technical domains, including automated configuration management, distributed system monitoring, database operations, and version control. It provides deep dives into specific tooling for cloud provisioning, container networking, and service deployment, ensuring that learners can validate their technical skills through isolated, practical exercises. All instructional materials are organized into a unified taxonomy of markdown-based documents, allowing users to navigate and study specific technical topics at their own pace. - [cube-js/cube](https://awesome-repositories.com/repository/cube-js-cube.md) (19,521 ⭐) — Cube is a semantic data layer that provides a unified framework for defining business metrics, dimensions, and relationships across diverse data sources. By acting as a headless business intelligence engine, it transforms raw data into a governed model that can be queried via SQL, REST, and GraphQL interfaces. This architecture ensures consistent data definitions and logic across all downstream analytical applications and reporting tools. The platform distinguishes itself through its integrated conversational AI capabilities, which allow users to explore data using natural language. It orchestrates these interactions by mapping questions to the underlying semantic model, ensuring that AI-generated insights remain accurate and context-aware. Furthermore, Cube is designed for multi-tenant environments, offering robust infrastructure isolation, row-level security, and dynamic context injection to ensure that data access is strictly governed and personalized for every user or tenant. Beyond its core modeling and AI features, the platform includes a comprehensive suite of tools for performance optimization, including automated pre-aggregation caching and asynchronous query queuing. It supports a wide range of data sources and deployment models, from self-hosted containers to managed cloud environments. The system also provides extensive programmatic control over report management, dashboard publishing, and user identity synchronization, making it suitable for embedding interactive analytics directly into custom software applications. - [aws/aws-cdk](https://awesome-repositories.com/repository/aws-aws-cdk.md) (12,657 ⭐) — The AWS Cloud Development Kit is an infrastructure-as-code framework that enables developers to define and provision cloud resources using familiar programming languages. By utilizing construct-based synthesis, it translates high-level, object-oriented code into declarative templates, allowing for the automated management of complex cloud environments through a centralized, code-driven control plane. The framework distinguishes itself through its ability to model infrastructure as a dependency-aware resource graph, ensuring that components are provisioned and updated in the correct order. It employs a language-agnostic intermediate representation to synthesize these definitions into platform-specific configurations, while supporting aspect-oriented policy injection to apply security and compliance rules across infrastructure definitions during the synthesis phase. Beyond core provisioning, the project provides a modular component registry for distributing and reusing pre-configured infrastructure building blocks. It supports multi-account orchestration, allowing for the deployment of consistent resource sets across different regions and accounts from a single template, and includes capabilities for detecting infrastructure drift to ensure deployed environments remain aligned with their defined state. The project is distributed as a software development kit, providing programmatic interfaces to manage the full lifecycle of cloud resources and integrate infrastructure definitions directly into application codebases. - [iam-veeramalla/aws-devops-zero-to-hero](https://awesome-repositories.com/repository/iam-veeramalla-aws-devops-zero-to-hero.md) (10,451 ⭐) — This project is a comprehensive educational curriculum and practical guide designed to teach the fundamentals of DevOps practices within the Amazon Web Services ecosystem. It provides a structured learning path for mastering cloud infrastructure automation, deployment workflows, and system management through hands-on tutorials. The curriculum covers the end-to-end lifecycle of cloud resources, focusing on defining infrastructure through version-controlled templates and orchestrating automated delivery pipelines. It distinguishes itself by integrating security and governance directly into the learning process, teaching users how to manage identity access, enforce compliance auditing, and maintain operational visibility through telemetry-based monitoring. Beyond core automation, the material addresses the management of containerized applications and the configuration of network traffic distribution. The repository serves as a centralized resource for understanding how to provision virtual infrastructure, scale workloads, and implement consistent, repeatable deployment patterns across development and production environments. - [gethomepage/homepage](https://awesome-repositories.com/repository/gethomepage-homepage.md) (30,679 ⭐) — This project is a self-hosted dashboard portal designed to centralize access to internal applications and infrastructure services. It functions as a configuration-driven platform that automatically discovers and organizes services from container runtimes and cluster management systems, presenting them within a unified, customizable web interface. The system distinguishes itself through a declarative widget framework that allows users to construct dashboard components by mapping raw API responses to visual elements. It includes a secure internal proxy layer that handles authentication, header injection, and request routing for external services, ensuring that data retrieval remains isolated and controlled. Developers can extend the platform by authoring custom widgets using standardized lifecycle hooks, which are supported by a comprehensive suite of unit and integration tests to ensure reliable data fetching and error handling. The platform covers a broad range of infrastructure monitoring and management capabilities, including real-time visualization of resource utilization for servers, containers, and virtual machines. Users can organize their dashboard through a hierarchical layout engine that supports nested service groups and flexible grid arrangements. The system also features a centralized localization layer to ensure consistent multi-language support across all interface elements and widgets. The application is managed through a centralized configuration file, which governs service discovery, global settings, and the behavior of various modular widgets. - [infiniflow/ragflow](https://awesome-repositories.com/repository/infiniflow-ragflow.md) (82,922 ⭐) — This project is a comprehensive retrieval-augmented generation platform designed for building, managing, and deploying knowledge-based AI applications. It provides a unified environment for organizing datasets, configuring conversational chat assistants, and developing autonomous agents that execute multi-step reasoning workflows. By integrating document intelligence with advanced retrieval pipelines, the platform enables the creation of grounded, verifiable responses supported by traceable citations. The platform distinguishes itself through deep document understanding and sophisticated knowledge orchestration. It supports complex document parsing, including the extraction of tables and images, and utilizes graph-based indexing to enhance reasoning over large document collections. Users can configure multiple recall strategies and fused re-ranking to optimize retrieval accuracy, while the system maintains context through multi-turn dialogue management and flexible tool-use frameworks. The architecture is built on a modular, containerized microservice foundation that supports both local inference engines and external language model APIs. It includes asynchronous task processing for document ingestion and indexing, ensuring system responsiveness during heavy workloads. The platform also provides a standardized interface for model abstraction, allowing for seamless integration with existing language model ecosystems. Developers can interact with the platform through a comprehensive suite of RESTful endpoints and Python client libraries, which cover the full lifecycle of agents, datasets, and knowledge graphs. The system is designed for flexible deployment, offering configurable environment settings and support for custom containerized environments to facilitate local development and infrastructure portability. - [devopness/devopness](https://awesome-repositories.com/repository/devopness-devopness.md) (431 ⭐) — DevOps Happiness: 1-click or 1-prompt MCP. Deploy apps + infra + CI/CD on your cloud. Happy humans + reliable agents. 🚀 - [davila7/claude-code-templates](https://awesome-repositories.com/repository/davila7-claude-code-templates.md) (20,933 ⭐) — Claude Code Templates is a comprehensive framework for orchestrating specialized AI agents and automating development workflows within local environments. It provides a structured system for defining, configuring, and deploying AI personas that handle specific technical tasks, ranging from backend architecture and frontend implementation to security auditing and infrastructure management. The project distinguishes itself through a configuration-driven approach that allows teams to standardize development environments and share reusable agent definitions across projects. It includes a robust CLI toolkit for managing the entire agent lifecycle, from discovery and installation to execution and performance monitoring. By utilizing standardized protocols and modular function definitions, it enables seamless integration of external services and local tools into the assistant's capabilities. Beyond core agent management, the platform offers extensive support for workflow automation, including event-driven hooks, custom slash commands, and automated testing pipelines. It incorporates security-focused features such as granular permission enforcement, sandbox execution environments, and automated secret scanning to ensure safe operation. The system also provides observability tools, including real-time dashboards for tracking agent performance, token usage, and conversation history. - [233boy/v2ray](https://awesome-repositories.com/repository/233boy-v2ray.md) (29,199 ⭐) — This project is an automated deployment tool designed to streamline the installation, configuration, and maintenance of network proxy software on Linux servers. It functions as a command-line utility that manages the lifecycle of network tunneling services, enabling users to establish and control private traffic routing through repeatable, automated workflows. The tool distinguishes itself through an interactive, menu-driven interface that abstracts complex configuration parameters into selectable options, making it accessible for operators regardless of their technical background. It performs environment-aware path resolution to detect host architecture and distribution specifics, ensuring that binary packages and directory structures are correctly aligned during deployment. Furthermore, it integrates proxy processes directly into the host operating system as managed background daemons, ensuring automatic restarts and consistent boot-time initialization. Beyond initial setup, the project provides comprehensive infrastructure management capabilities, including automated service updates and configuration changes. It utilizes template-driven generation to create service files, ensuring that network traffic routing and security settings are applied consistently across remote server environments. - [nis2shield/infrastructure](https://awesome-repositories.com/repository/nis2shield-infrastructure.md) (2 ⭐) — 🐳 Secure Docker infrastructure for NIS2 compliance - Hardened containers, log segregation, automated backups - [ansible/ansible](https://awesome-repositories.com/repository/ansible-ansible.md) (68,968 ⭐) — Ansible is an agentless infrastructure automation engine designed to manage remote servers and network devices. It functions as a cross-platform orchestration tool that coordinates system updates, software installations, and service configurations from a centralized management workstation. By utilizing a declarative approach, it allows users to define desired system states through human-readable configuration files, ensuring consistency across distributed environments. The platform operates by establishing secure shell connections to target nodes, eliminating the need for persistent agent software or complex bootstrapping processes on managed hosts. It employs an inventory-driven model to organize infrastructure into logical groups, while its module-based execution system dispatches idempotent scripts to verify and maintain state. This architecture is supported by a plugin-based framework that enables custom interfaces for connection methods, inventory sources, and task processing logic. Beyond core orchestration, the project provides capabilities for automated application deployment and infrastructure as code, allowing for version-controlled management of data center environments. It also includes template rendering functionality to dynamically inject variables and logic into configuration files before deployment. The software is distributed as a comprehensive package with extensive documentation available for installation and configuration. - [kamranahmedse/developer-roadmap](https://awesome-repositories.com/repository/kamranahmedse-developer-roadmap.md) (357,434 ⭐) — Developer Roadmap is a community-driven platform that provides structured, graph-based learning paths for software engineering. It serves as a comprehensive knowledge repository where technical domains are organized into visual sequences to guide professional skill acquisition and career growth. The project distinguishes itself through a collaborative ecosystem that enables users to contribute roadmaps, curate industry best practices, and maintain professional profiles. It integrates diagnostic assessment frameworks to evaluate technical proficiency, helping developers identify knowledge gaps and prepare for professional interviews through targeted learning sequences. Beyond its core mapping capabilities, the platform offers practical project ideas and interactive tutoring to reinforce engineering concepts. It provides a centralized space for the community to share resources, track progressive skill development, and navigate complex technical landscapes. - [microsoft/azure-devops-mcp](https://awesome-repositories.com/repository/microsoft-azure-devops-mcp.md) (1,820 ⭐) — The MCP server for Azure DevOps, bringing the power of Azure DevOps directly to your agents. - [vinta/awesome-python](https://awesome-repositories.com/repository/vinta-awesome-python.md) (303,207 ⭐) — This project is a comprehensive, community-curated directory that organizes a vast landscape of Python software libraries, frameworks, and tools. It serves as a centralized knowledge base designed to facilitate ecosystem navigation and accelerate developer discovery across the entire software development lifecycle. The directory distinguishes itself by providing a structured index of resources categorized by technical domain, ranging from foundational development utilities to specialized engineering fields. It covers high-level capabilities including artificial intelligence, data science, web development, and infrastructure management, allowing developers to identify vetted solutions for specific technical challenges. The project encompasses a broad capability surface, including tools for dependency management, static code analysis, and automated testing. It also catalogs resources for persistent data storage, cloud infrastructure orchestration, and interface development, providing a unified reference for building and maintaining complex software systems. - [xamarinhq/xamu-infrastructure](https://awesome-repositories.com/repository/xamarinhq-xamu-infrastructure.md) (0 ⭐) - [forem/forem](https://awesome-repositories.com/repository/forem-forem.md) (22,603 ⭐) — Forem is an open-source platform designed for building and managing technical communities. It functions as a social publishing engine that enables members to share long-form content, participate in threaded discussions, and engage through social interactions. The platform provides tools for organizations to maintain branded profiles, host community hackathons, and facilitate collaborative learning through structured educational tracks. Beyond its social features, Forem integrates advanced capabilities for AI agent workflow orchestration and codebase knowledge graphing. It allows developers to map project architecture, analyze dependency relationships, and automate complex coding tasks using autonomous agents. The system includes specialized infrastructure for LLM context optimization, such as token compression and persistent memory management, to improve the efficiency and performance of agent-driven development. The platform supports a modular architecture that allows for extensibility through plugins and custom configuration. It includes comprehensive administrative tools for managing user permissions, moderating content, and tracking community engagement metrics. Forem is designed to be self-hosted, providing full control over deployment, data storage, and community governance. - [opentofu/opentofu](https://awesome-repositories.com/repository/opentofu-opentofu.md) (29,076 ⭐) — OpenTofu is a declarative infrastructure orchestrator that automates the provisioning and management of cloud resources. It functions as a platform-agnostic interface, allowing users to define their desired environment state in configuration files, which the system then reconciles against live infrastructure to calculate and execute necessary updates. The project utilizes a graph-based execution engine to determine the optimal sequence for resource operations, enabling the parallel processing of independent components to reduce deployment times. To support complex, multi-platform environments, it employs a provider-based plugin architecture that translates generic configuration definitions into specific API calls for various cloud services and third-party providers. Beyond core provisioning, the system facilitates infrastructure lifecycle management through reusable configuration modules that standardize deployments and enforce consistent patterns. It also provides a synchronization layer for state metadata, enabling distributed teams to coordinate changes and maintain consistent environment status across collaborative workflows. - [ros-infrastructure/superflore](https://awesome-repositories.com/repository/ros-infrastructure-superflore.md) (60 ⭐) — An extended platform release manager for Robot Operating System - [avelino/awesome-go](https://awesome-repositories.com/repository/avelino-awesome-go.md) (175,576 ⭐) — This project serves as a comprehensive language ecosystem index, functioning as a centralized, community-curated directory for the Go programming language. It organizes a vast landscape of software components, libraries, and development tools into a structured, navigable hierarchy, enabling developers to efficiently discover resources tailored to specific functional domains. The repository distinguishes itself through a decentralized contribution model, where community-driven updates ensure the index remains current with the rapidly evolving software landscape. Beyond simple resource listing, it acts as a technical knowledge repository, aggregating professional literature, style guides, and best practices to support developer onboarding and professional growth across the entire software development lifecycle. The directory covers a broad capability surface, including essential utilities for distributed systems engineering, application security, data processing, and development productivity. It provides access to specialized tools for database management, web framework integration, testing, and build automation, alongside educational materials that help developers master language-specific architectural patterns. The project is maintained as a static resource aggregation, providing a holistic view of external links and documentation to orient developers within the Go ecosystem. - [dokku/dokku](https://awesome-repositories.com/repository/dokku-dokku.md) (31,945 ⭐) — Dokku is a self-hosted platform as a service that automates the deployment and management of web applications on your own infrastructure. It functions as an infrastructure automation tool, providing a git-driven engine that triggers container builds, service orchestration, and release workflows directly from source code repositories. The platform distinguishes itself by using buildpack-based image construction to detect project structures and automate container creation without manual configuration. It manages the full application lifecycle through a simplified interface that abstracts low-level container runtime commands, while dynamically handling reverse-proxy routing and environment-variable-driven configuration to map traffic and decouple settings from the underlying host. Beyond core deployment, the system provides comprehensive infrastructure lifecycle management, including the automated setup of system dependencies and the configuration of administrative access controls. The platform is designed for modular expansion, allowing users to extend core functionality through a plugin system that hooks into lifecycle events. It is installed on Linux distributions using automated scripts to ensure consistent environment preparation. - [ros-infrastructure/bloom](https://awesome-repositories.com/repository/ros-infrastructure-bloom.md) (72 ⭐) — A release automation tool which makes releasing catkin (http://ros.org/wiki/catkin) packages easier. - [pulumi/pulumi](https://awesome-repositories.com/repository/pulumi-pulumi.md) (24,797 ⭐) — Pulumi is an infrastructure-as-code framework that enables the definition, deployment, and management of cloud resources using general-purpose programming languages. It functions as a cloud resource orchestrator that coordinates the lifecycle of heterogeneous infrastructure by executing code to construct dependency graphs and reconciling the desired state against actual cloud environments. The platform distinguishes itself through a language-host runtime bridge that allows developers to use standard programming languages to define infrastructure, rather than relying solely on domain-specific configuration formats. It utilizes a provider-based plugin architecture to interface with cloud APIs and incorporates a policy-as-code engine that validates infrastructure definitions against security and compliance rules during the deployment preview phase. The project covers a broad capability surface including multi-cloud orchestration, automated state management, and drift detection. It supports complex deployment workflows through stack-based environment isolation, programmatic secret injection, and integration with continuous delivery pipelines. These features allow for the governance of infrastructure across diverse environments while maintaining consistency through version-controlled code. The platform provides extensive documentation and a command-line interface to facilitate project initialization, infrastructure import, and deployment monitoring. It supports a wide range of cloud providers and container orchestration platforms, enabling teams to build self-service infrastructure portals and automate resource provisioning through standardized, reusable components. - [jitsi/jitsi-meet](https://awesome-repositories.com/repository/jitsi-jitsi-meet.md) (29,423 ⭐) — Jitsi Meet is an open-source platform for real-time audio and video communication. It provides a complete infrastructure for hosting secure video conferences, supporting features such as screen sharing, messaging, and participant polling. The platform is designed for both standalone use and integration into external web or mobile applications. The system utilizes a selective forwarding unit architecture to route media streams between participants, ensuring efficient communication across multiple users. It relies on standardized real-time transport protocols to manage data transmission and includes mechanisms for network path negotiation to bypass firewalls and network address translation. Security is maintained through the implementation of end-to-end encryption and standard protocols to protect the privacy of communication sessions. The platform offers extensive configuration and deployment options, allowing for self-hosted installations on private servers or scalable deployments within cloud environments. It supports infrastructure management through containerized microservices and load balancing to maintain performance during high usage. Developers can extend the platform's functionality through programmatic interfaces, including software development kits and sandboxed interface injection, to align the communication experience with specific organizational requirements. - [activepieces/activepieces](https://awesome-repositories.com/repository/activepieces-activepieces.md) (20,887 ⭐) — Activepieces is an open-source, self-hosted workflow automation platform designed to connect third-party applications through modular triggers and actions. It provides a low-code integration framework that allows users to build, manage, and execute complex business logic sequences within isolated, sandboxed environments. The platform distinguishes itself through its focus on embeddability and enterprise-grade security. It features an embedded automation builder that can be integrated into external applications via iframes, supported by comprehensive identity and access management tools such as single sign-on, SCIM provisioning, and granular role-based access control. These capabilities allow organizations to maintain programmatic control over their automation infrastructure while ensuring secure user provisioning and centralized credential management. Beyond its core automation engine, the system includes robust lifecycle management tools for versioning, deploying, and promoting workflows across different environments. It supports advanced operational requirements through distributed worker scaling, event queuing, and detailed observability features, including execution history inspection and telemetry exports. Developers can extend the platform by creating custom connectors using TypeScript, which can be validated, packaged, and synchronized with version control systems. The project is built with TypeScript and provides a comprehensive CLI for managing database migrations, integration testing, and infrastructure provisioning. - [tiberriver256/mcp-server-azure-devops](https://awesome-repositories.com/repository/tiberriver256-mcp-server-azure-devops.md) (374 ⭐) — An MCP server for Azure DevOps - [stas00/ml-engineering](https://awesome-repositories.com/repository/stas00-ml-engineering.md) (18,124 ⭐) — This project is a comprehensive engineering framework and technical reference for managing, scaling, and optimizing distributed machine learning infrastructure. It provides a suite of methodologies and diagnostic tools designed to support large-scale model training and inference on high-performance computing clusters. The project distinguishes itself through a specialized diagnostic toolkit and infrastructure optimization suite that addresses the complexities of multi-node environments. It enables precise control over cluster resources, including hardware maintenance, network topology configuration, and the orchestration of containerized workloads. By integrating performance benchmarking, numerical stability validation, and automated fault detection, it allows engineers to identify and resolve bottlenecks or hardware failures within distributed systems. Beyond core orchestration, the project covers a broad range of operational capabilities including distributed file system management, automated checkpointing, and storage lifecycle optimization. It provides utilities for training performance tuning, inference scaling, and the enforcement of structured outputs, ensuring that both training and deployment pipelines remain efficient and reliable. The repository serves as a technical guide for distributed machine learning engineering, offering automation scripts and diagnostic procedures for GPU and TPU clusters. - [codefuse-ai/codefuse-devops-model](https://awesome-repositories.com/repository/codefuse-ai-codefuse-devops-model.md) (508 ⭐) — DevOps-Models is a series of industrial-first LLMs for theDevOps domain. Asking it for any question in the DevOps domain to get solution! - [photoprism/photoprism](https://awesome-repositories.com/repository/photoprism-photoprism.md) (39,816 ⭐) — PhotoPrism is a self-hosted digital asset management platform designed to organize, classify, and manage large collections of photos and videos on personal infrastructure. It functions as a private alternative to cloud-based services, ensuring that all media remains under the user's control. The platform utilizes neural-network-based media analysis to automatically detect objects, faces, and locations, providing a comprehensive, AI-powered approach to library organization. The project distinguishes itself through its containerized architecture, which simplifies deployment and lifecycle management across diverse hardware environments. It features an asynchronous background worker system that handles compute-intensive tasks like transcoding and thumbnail generation, ensuring the web interface remains responsive even during large-scale indexing operations. Furthermore, it employs a sidecar-based metadata persistence model, storing information in external files alongside original assets to maintain data portability and independence from the primary database. Beyond its core organization capabilities, the platform provides a robust suite of tools for library management, including duplicate detection, geospatial mapping, and advanced metadata-based search. It supports secure, authenticated access through a responsive web interface and offers granular control over media sharing and privacy settings. Users can extend the platform's functionality through custom AI model configurations and integrate it with external identity providers for centralized authentication. The application is distributed as a containerized service, typically managed via Docker Compose, and includes comprehensive documentation for deployment, database maintenance, and performance optimization on various hardware architectures. - [codefuse-ai/codefuse-devops-eval](https://awesome-repositories.com/repository/codefuse-ai-codefuse-devops-eval.md) (656 ⭐) — Industrial-first evaluation benchmark for LLMs in the DevOps/AIOps domain. - [mhsanaei/3x-ui](https://awesome-repositories.com/repository/mhsanaei-3x-ui.md) (40,785 ⭐) — This project is a comprehensive network traffic orchestrator and server infrastructure manager designed to provide centralized control over secure tunneling, routing, and security policies. It functions as a web-based dashboard that enables administrators to deploy and maintain network services, enforce access restrictions, and manage traffic flow through a private server environment. The platform distinguishes itself by integrating advanced traffic anonymization and routing capabilities, including support for relay networks and secure tunnels to bypass regional restrictions. It provides granular control over network security through automated certificate lifecycle management, host-based firewall rule enforcement, and the ability to configure specialized transport protocols. Administrators can further manage server operations remotely via event-driven messaging bot integration, allowing for real-time monitoring and command execution. Beyond its core routing and security functions, the software supports flexible deployment models, including containerized orchestration and automated script-based installation. It includes a suite of maintenance tools for monitoring user traffic, managing geographical routing databases, and hardening system environments against unauthorized access. The project provides multiple installation paths, ranging from automated scripts to manual binary deployment, to accommodate various server configurations. - [gravitl/netmaker](https://awesome-repositories.com/repository/gravitl-netmaker.md) (11,630 ⭐) — Netmaker is a platform for automating and managing virtual mesh networks built on WireGuard. It functions as a centralized control plane that orchestrates encrypted, peer-to-peer tunnels across distributed infrastructure, including cloud environments, on-premise data centers, and containerized clusters. By automating the configuration of routing tables and access policies, the system enables secure, private connectivity between diverse devices and services without requiring manual network administration. The platform distinguishes itself through its focus on zero-trust network access and software-defined perimeters, which hide network resources from the public internet while enforcing granular, identity-based security policies. It supports complex network topologies by providing dynamic relay-based routing for firewall-traversal and gateway-based bridging for isolated subnets. These capabilities allow for the creation of scalable, high-performance overlays that maintain consistent connectivity even when direct peer-to-peer paths are unavailable. Beyond core connectivity, the project provides a comprehensive suite of management tools, including automated node provisioning, private service discovery via integrated DNS, and multi-tenant infrastructure support. It also offers robust observability features, such as administrative audit logging and network health monitoring, to ensure operational visibility. The entire networking stack can be self-hosted to maintain data sovereignty, and the platform integrates with external identity providers to streamline authentication and device onboarding. - [kubesphere/kubesphere](https://awesome-repositories.com/repository/kubesphere-kubesphere.md) (16,842 ⭐) — KubeSphere is a distributed operating system for cloud-native application management that provides a centralized control plane for Kubernetes clusters. It functions as a comprehensive DevOps portal, enabling teams to orchestrate containerized workloads, manage CI/CD pipelines, and enforce security policies across hybrid cloud, datacenter, and edge environments. The platform distinguishes itself through its multi-cluster federation capabilities and robust multi-tenancy model, which allow for logical resource isolation and granular access control across shared infrastructure. It integrates a modular plugin architecture that supports platform extensibility, enabling users to customize observability, storage, and security components to meet specific operational requirements. Beyond core management, the platform provides a unified observability suite that aggregates metrics, logs, and distributed traces to visualize system health and microservice topology. It also includes advanced traffic governance tools, such as service mesh integration and automated release strategies, to maintain stability during application updates. The project offers a web-based dashboard and a flexible installer to simplify the provisioning and administration of container platforms. It supports diverse infrastructure needs, ranging from bare metal load balancing to hardware accelerator management, through a unified graphical interface. - [milanm/devops-roadmap](https://awesome-repositories.com/repository/milanm-devops-roadmap.md) (18,752 ⭐) — DevOps-Roadmap is a comprehensive educational repository and knowledge base designed to guide technical professionals through the complexities of modern software engineering. It functions as a structured curriculum and reference library, covering the full spectrum of skills required to master system architecture, infrastructure management, and cloud operations. The project distinguishes itself by bridging the gap between high-level architectural design and the practical realities of engineering leadership. It provides curated insights into distributed systems, data consistency, and scalable design patterns, while simultaneously offering frameworks for managing high-performing teams, navigating corporate dynamics, and fostering psychological safety within technical organizations. Beyond core architecture, the repository encompasses a broad capability surface that includes professional development, productivity optimization, and the integration of emerging technologies. It offers guidance on implementing AI-driven workflows, managing large-scale machine learning lifecycles, and applying evidence-based metrics to track team performance and development health. The repository serves as a centralized resource for engineers at all career stages, providing access to industry-standard principles, technical interview preparation materials, and strategic coaching frameworks. - [raphire/win11debloat](https://awesome-repositories.com/repository/raphire-win11debloat.md) (48,264 ⭐) — Win11Debloat is a command-line utility designed to automate the configuration, privacy hardening, and maintenance of Windows environments. It functions as a centralized tool for streamlining the operating system by removing pre-installed software, disabling telemetry and diagnostic tracking, and adjusting system settings to enhance performance and user privacy. The project distinguishes itself through its support for declarative configuration profiles and audit-mode provisioning, which allow administrators to define and enforce consistent system states across multiple machines. Users can interact with the tool through an intuitive terminal-based menu or utilize command-line arguments for automated, non-interactive deployments. It also provides granular control over interface elements, such as taskbar and start menu layouts, ensuring that environment adjustments can be standardized for individual user accounts or entire organizations. Beyond basic cleanup, the tool integrates registry-based management and transactional state restoration to ensure that modifications are applied safely. It includes built-in support for creating system restore points and registry backups, providing a mechanism to revert changes or reinstall previously removed components if necessary. The entire suite is powered by PowerShell scripts that interface directly with system APIs to manage application lifecycles and environment configurations. - [mas-cli/mas](https://awesome-repositories.com/repository/mas-cli-mas.md) (11,992 ⭐) — This project provides a command-line interface for managing the lifecycle of applications from the Apple App Store. It functions as a package manager for macOS, enabling users to search for software, install new applications, and maintain existing installations directly through terminal commands. The tool distinguishes itself by wrapping private system APIs to perform store operations that are typically restricted to the graphical user interface. It integrates with the operating system to handle administrative privilege elevation, allowing for secure, automated modifications to protected application files during installation and update processes. Beyond basic installation, the utility facilitates system maintenance by auditing installed software and comparing local versions against official store metadata. This allows for the identification of outdated applications and the automation of software updates across multiple machines, supporting consistent environment provisioning through scripted workflows. - [infisical/infisical](https://awesome-repositories.com/repository/infisical-infisical.md) (27,374 ⭐) — Infisical is a centralized secrets management platform designed to store, synchronize, and control access to sensitive credentials and configuration data across distributed development, staging, and production environments. It employs client-side encryption to ensure that secrets remain unreadable to the underlying storage infrastructure, while providing a hierarchical permission model to govern both user and machine access. The platform distinguishes itself through dynamic credential provisioning, which generates short-lived access tokens that are automatically revoked after use. It supports complex security workflows by integrating with external identity providers for federated authentication and offering a reverse tunneling gateway that allows secure access to private network resources without exposing inbound ports. Additionally, the system includes an event-driven audit engine that maintains an immutable record of all configuration changes and access requests to support compliance requirements. Beyond core secret storage, the platform provides comprehensive orchestration capabilities, including automated secret injection into containerized environments and infrastructure pipelines. It also features integrated public key infrastructure management for the lifecycle of digital certificates and automated scanning to detect hardcoded secrets in source code and CI pipelines. The platform supports flexible deployment models, allowing teams to either utilize managed cloud services or self-host the infrastructure within their own private networks. It provides a broad ecosystem of SDKs and a command-line interface to facilitate integration across various programming languages and deployment workflows. - [tikam02/devops-guide](https://awesome-repositories.com/repository/tikam02-devops-guide.md) (9,131 ⭐) - [bytebytegohq/system-design-101](https://awesome-repositories.com/repository/bytebytegohq-system-design-101.md) (83,491 ⭐) — This project is a centralized engineering knowledge repository that provides a structured curriculum for mastering system design, architectural patterns, and fundamental software development workflows. It serves as a professional development resource for engineers, offering foundational knowledge and real-world case studies to support the design of scalable, secure, and efficient distributed systems. The repository distinguishes itself through a visual-first approach to knowledge synthesis, distilling complex technical concepts into high-density graphical diagrams and succinct illustrations. By employing cross-domain concept mapping and modular topic decomposition, it connects disparate engineering disciplines—such as infrastructure, security, and application layers—into granular, self-contained modules that facilitate rapid mental modeling and targeted learning. The content covers a broad spectrum of technical domains, including API and web development, database scaling strategies, networking protocols, and DevOps deployment pipelines. These educational assets are organized as a static, version-controlled repository, allowing users to consume technical insights asynchronously at their own pace. - [basecamp/omarchy](https://awesome-repositories.com/repository/basecamp-omarchy.md) (20,253 ⭐) — Omarchy is a directory structure orchestrator that automates the provisioning and maintenance of file system hierarchies. By utilizing declarative configuration files, it allows users to define a desired workspace layout that serves as a single source of truth, ensuring that local development environments remain consistent and reproducible across distributed teams. The tool functions as an infrastructure-as-code utility for local environments, employing idempotent reconciliation to compare the current file system state against the defined configuration. It automatically applies only the necessary changes to align the workspace with the target state, effectively managing complex, nested directory trees through a recursive traversal engine. Beyond basic directory management, the system provides a platform-agnostic abstraction layer that enables standardized environment setup across different host operating systems. This approach supports the synchronization of workspace layouts and the automated configuration of necessary tools, facilitating uniform development standards regardless of the underlying hardware. - [crazy-canux/super-devops](https://awesome-repositories.com/repository/crazy-canux-super-devops.md) (0 ⭐) - [saltstack/salt](https://awesome-repositories.com/repository/saltstack-salt.md) (15,237 ⭐) — Salt is an infrastructure configuration management tool and orchestration framework designed for large-scale system administration. It functions as a remote execution engine that enables administrators to manage, provision, and enforce declarative states across distributed fleets of servers from a central control point. By utilizing a high-performance message bus, the platform allows for the simultaneous execution of administrative tasks and the maintenance of consistent software configurations across thousands of nodes. The system distinguishes itself through a flexible architecture that supports both agent-based management and agentless administration. It employs a secure, cryptographic key-based authentication model to verify communication between the controller and managed nodes, while its event-driven orchestration capabilities allow for automated responses to real-time infrastructure changes. Furthermore, the platform provides proxy-based management for resource-constrained devices and hardware that cannot host native agents, ensuring broad compatibility across diverse environments. Beyond core configuration and remote execution, the platform covers a wide capability surface including cloud infrastructure provisioning, lifecycle management, and support for air-gapped deployments. It offers extensive extensibility through modular plugins and allows for precise targeting of nodes based on system metadata or unique identifiers. The software is designed to be installed via standard package managers and includes features for bundling dependencies to simplify deployment across varied operating systems. - [crazy-canux/go-devops](https://awesome-repositories.com/repository/crazy-canux-go-devops.md) (0 ⭐) - [hashicorp/terraform](https://awesome-repositories.com/repository/hashicorp-terraform.md) (48,720 ⭐) — Terraform is a declarative infrastructure-as-code tool designed to manage the lifecycle of cloud and on-premises resources. It functions as a workflow engine that reconciles a defined desired state against real-world infrastructure, using a persistent state-tracking layer to maintain consistency and visibility across distributed environments. By mapping infrastructure components into a directed acyclic graph, the system calculates the optimal order for provisioning, updating, or destroying resources. The platform is distinguished by its extensible plugin-based architecture, which decouples core orchestration logic from vendor-specific service APIs. This allows users to manage diverse infrastructure across multiple providers through a unified workflow. The system enforces predictability by separating operations into a three-stage lifecycle—planning, applying, and state-updating—and supports policy-as-code evaluation to validate changes against security and compliance rules before any modifications are executed. Beyond core orchestration, the tool provides robust support for collaborative management, including workspace isolation for environment separation and module sharing for distributing standardized infrastructure patterns. It integrates into broader development ecosystems through support for programmatic definition in various languages, external system hooks, and comprehensive tooling for configuration debugging and editor assistance. - [twpayne/chezmoi](https://awesome-repositories.com/repository/twpayne-chezmoi.md) (18,075 ⭐) — chezmoi is a command-line utility designed to manage and synchronize system configuration files across multiple machines. It uses a local Git repository as the single source of truth, allowing users to track, version, and distribute dotfiles while maintaining a consistent state across diverse operating systems and hardware architectures. The project distinguishes itself through a declarative reconciliation model that computes the difference between the current filesystem and the desired state defined in the repository. It features a robust templating engine that processes configuration files as dynamic templates, enabling the injection of machine-specific data, environment variables, and system metadata. To maintain security, it includes a transparent encryption layer and integrates directly with third-party password managers and key vaults, allowing sensitive credentials to be retrieved at runtime rather than stored in plain text. Beyond core synchronization, the tool provides extensive automation capabilities for environment provisioning and lifecycle management. It supports custom hook-based scripts that execute before or after configuration operations, facilitating automated dependency installation and system-level setup. The platform also handles complex file management tasks, including symbolic link creation, external dependency fetching, and the ability to manage configurations within ephemeral container environments. The project is distributed as a standalone binary, providing a comprehensive command-line interface for auditing configuration drift, previewing changes, and bootstrapping new environments. - [hrydgard/ppsspp](https://awesome-repositories.com/repository/hrydgard-ppsspp.md) (13,375 ⭐) — This project is a cross-platform, open-source emulator designed to execute handheld gaming software on modern desktop and mobile hardware. By recreating the original console environment and system libraries, it allows users to run game files without requiring original firmware. The software achieves high-performance execution through a combination of dynamic recompilation and just-in-time instruction translation, which map console-specific instructions to native host machine code. The emulator distinguishes itself by providing advanced visual and connectivity enhancements that extend beyond the capabilities of the original hardware. It features a graphics abstraction layer that enables high-resolution upscaling, texture filtering, and post-processing effects on modern displays. Furthermore, it restores multiplayer functionality by tunneling local wireless communication protocols over standard network sockets, allowing users to connect via custom servers or ad-hoc relay systems. The platform includes a comprehensive suite of tools for managing game data, including support for importing existing save files and capturing system memory states for instant progress persistence. Users can customize their experience through flexible input mapping for gamepads, touch interfaces, and keyboards, alongside various performance configuration settings. The project also maintains a public compatibility database and provides integrated debugging and profiling utilities to support ongoing development and accuracy verification. - [elevy99927/devops-mcp-webui](https://awesome-repositories.com/repository/elevy99927-devops-mcp-webui.md) (2 ⭐) — Bridge connecting OpenWebUI to Kubernetes clusters via MCP protocol - [nats-io/nats-server](https://awesome-repositories.com/repository/nats-io-nats-server.md) (19,177 ⭐) — NATS Server is a high-performance, lightweight messaging system designed for cloud-native applications, edge computing, and distributed microservices. It functions as a distributed publish-subscribe broker that routes messages using hierarchical, dot-separated subject strings, enabling decoupled communication between services without requiring centralized broker lookups. The system supports core messaging patterns including asynchronous publish-subscribe, request-reply, and load-balanced queue processing. The platform distinguishes itself through a decentralized architecture that eliminates the need for centralized user databases or complex service discovery. It utilizes cryptographically signed JSON Web Tokens for identity and permission management, and maintains a self-healing mesh network through gossip-based cluster discovery. For isolated or edge environments, the server supports leaf-node proxying, which tunnels traffic through persistent connections to bridge local and remote namespaces. Beyond basic messaging, the system provides a robust capability surface for distributed state and data management. This includes log-structured stream persistence for reliable message replay and durable delivery, as well as an integrated, atomic key-value store for managing configuration and state across services. The architecture enforces multi-tenant isolation by segregating traffic into independent accounts, each with granular access control policies that govern cross-account data sharing and service interaction. The server is designed for flexible deployment, ranging from single-process instances embedded within applications to globally distributed superclusters spanning multiple cloud providers. It provides comprehensive observability through real-time metrics, event tracing, and integration with standard monitoring tools. - [mattermost/mattermost](https://awesome-repositories.com/repository/mattermost-mattermost.md) (37,944 ⭐) — Mattermost is a self-hosted, enterprise-grade communication platform designed for organizations that require strict control over their internal data and messaging infrastructure. It functions as a centralized hub for real-time team interaction, offering persistent messaging, voice and video conferencing, and integrated project management tools within a single, private workspace. The platform is built to support high-security environments, including air-gapped deployments where public internet access is restricted or unavailable. The platform distinguishes itself through a focus on regulatory compliance and administrative sovereignty. It provides granular role-based access control, comprehensive audit logging, and data retention policies to meet legal and security standards. Organizations can extend the core functionality through a plugin-based framework, allowing for the injection of custom server-side logic and UI components without modifying the underlying source code. Furthermore, the system acts as a secure workflow orchestrator, enabling teams to integrate automated tasks and external services directly into their communication channels. The architecture is designed for scalability and reliability, supporting large-scale deployments through Kubernetes-based orchestration and microservices-ready infrastructure. Administrators can manage complex environments using centralized identity federation, external search indexing for high-performance data retrieval, and robust disaster recovery planning. The platform also includes tools for mobile device management and custom branding to ensure a consistent and secure experience across organizational hardware. Comprehensive documentation is available to guide administrators through installation, configuration, and maintenance, including specific procedures for Kubernetes deployments and air-gapped environment setups. - [open-webui/open-webui](https://awesome-repositories.com/repository/open-webui-open-webui.md) (141,777 ⭐) — Open WebUI is a self-hosted, web-based platform designed for interacting with local and remote artificial intelligence models. It functions as a unified interface and orchestration suite, enabling users to build, deploy, and manage specialized AI agents equipped with custom instructions, external tool access, and private knowledge bases. The platform distinguishes itself through a modular architecture that supports complex AI workflows. It features a plugin-based framework for custom logic and pipeline-based request processing, allowing developers to filter or transform data streams before they reach a model. For enterprise environments, it provides centralized model management, role-based access control, and integration with standard identity providers like LDAP and SSO. It also includes sandboxed code execution and vector-database-based retrieval, enabling models to perform secure computations and semantic searches across private document collections. Beyond its core chat capabilities, the platform offers extensive administrative and operational tools. It supports multi-node deployments, horizontal scaling, and comprehensive system observability to ensure reliability in production settings. Users can further customize the interface, manage API access via personal tokens, and utilize persistent workspaces for collaborative knowledge management. The software is packaged for container-orchestrated deployment, allowing for consistent execution across diverse cloud and local infrastructure. - [aliyun/alibabacloud-devops-mcp-server](https://awesome-repositories.com/repository/aliyun-alibabacloud-devops-mcp-server.md) (121 ⭐) — Yunxiao MCP Server provides AI assistants with the ability to interact with the Yunxiao platform. It provides a set of tools that interact with Yunxiao's API, allowing AI assistants to manage Codeup repository, Project, Pipeline, Packages etc.