19 repository-uri
Tools for centralizing, securing, and rotating third-party service credentials.
Distinguishing note: None of the provided candidates were relevant; this focuses on centralized credential lifecycle management.
Explore 19 awesome GitHub repositories matching security & cryptography · API Credential Managers. Refine with filters or upvote what's useful.
One API is a centralized gateway and orchestration platform designed to consolidate multiple artificial intelligence model providers into a single, standardized interface. It functions as a reverse proxy that intercepts incoming API requests and routes them to various third-party services, abstracting the underlying provider credentials through a unified token management system. The platform provides comprehensive administrative tools for managing API keys, rotating credentials, and enforcing security policies across diverse service integrations. It includes a persistent database-backed syste
Managing and rotating multiple third-party service credentials in one secure location to reduce administrative overhead and improve system security.
Nuclei is a modular security scanning framework designed for automated vulnerability detection and infrastructure reconnaissance. It functions as a template-driven engine that executes security checks across diverse network protocols, allowing users to define custom detection logic to identify vulnerabilities, misconfigurations, and exposed assets. The platform distinguishes itself through its highly extensible architecture, which supports distributed scanning, headless browser automation for dynamic web content, and out-of-band interaction monitoring to detect blind vulnerabilities. It integ
Centralizes and secures authentication keys for cloud service API access.
Activepieces is an open-source, self-hosted workflow automation platform designed to connect third-party applications through modular triggers and actions. It provides a low-code integration framework that allows users to build, manage, and execute complex business logic sequences within isolated, sandboxed environments. The platform distinguishes itself through its focus on embeddability and enterprise-grade security. It features an embedded automation builder that can be integrated into external applications via iframes, supported by comprehensive identity and access management tools such a
Centralizes API keys and access tokens to make third-party services available across all projects and users.
SWE-agent is an autonomous software engineering platform designed to automate repository maintenance and issue resolution. By orchestrating language models to navigate codebases, diagnose software bugs, and apply fixes, the framework functions as an autonomous agent capable of executing shell commands, editing source code, and managing pull requests within isolated, containerized environments. The platform distinguishes itself through its focus on end-to-end task autonomy and observability. It features a robust trajectory logging system that records every thought, action, and environment obse
Distributes requests across multiple authentication keys to bypass rate limits during automated sessions.
Nango is an open-source platform that connects applications to external APIs by managing authentication, data synchronization, and custom function execution. It provides a managed runtime for TypeScript integration functions, handling OAuth flows, credential storage, and token refresh for hundreds of external APIs while keeping secrets isolated from application code. The platform distinguishes itself by exposing integration functions as discoverable tools for AI agents through an MCP server or API, with per-user credential isolation that keeps provider secrets out of the agent loop. It offers
Fetches stored credentials on demand for calling external APIs without handling secrets.
RestSharp is a .NET HTTP client library designed for interacting with RESTful web services. It provides a high-level request wrapper and a dedicated REST API client to manage endpoints, headers, and query parameters. The library includes a serialization mechanism that automatically converts objects to and from JSON or XML formats for API payloads. It also features a system for managing API credentials and security tokens to ensure authorized access to protected remote resources. The toolkit covers broad capabilities for external web service integration, including generic type-based deseriali
Handles the management and application of security tokens and identity credentials for protected remote resources.
Valuecell is an artificial intelligence financial trading platform and market analysis engine. It functions as a multi-exchange trading bot and financial data orchestrator, designed to analyze market data and execute automated trades across global financial exchanges. The system utilizes a modular agent plugin framework that allows for the integration of third-party tools and agents through a shared community registry. It incorporates a retrieval-augmented generation approach to analyze fundamental financial documents and historical patterns, grounding AI responses in factual data. The platf
Includes a security utility for the centralized storage and rotation of third-party API keys and OAuth tokens.
Higress is an AI API gateway and cloud-native traffic manager that functions as a Kubernetes ingress controller. It provides a centralized system for routing, securing, and optimizing traffic directed toward large language models, AI agents, and microservice architectures. The project distinguishes itself through deep AI orchestration, including the ability to host and manage Model Context Protocol servers that transform REST APIs into tools for AI agents. It features specialized AI infrastructure for model request proxying, protocol translation across multiple providers, and semantic-based c
Generates and manages unique API keys and secrets for different environments to maintain multiple credential sets.
Faraday is a vulnerability management platform and security tool aggregator designed to centralize security findings from multiple scanners into a single dashboard. It utilizes a relational security database to catalog hosts, services, and security flaws, enabling users to track remediation and analyze organizational risk. The platform distinguishes itself through a plugin-based system that normalizes diverse security tool outputs into a unified data model. It supports deep integration with a wide array of scanners and CLI tools, intercepting shell command output or parsing report files to ag
Offers an API for storing and updating authentication credentials associated with specific network assets.
TelegramSwift is a native macOS client for the Telegram messaging platform, built entirely in Swift. It provides a complete implementation of the Telegram protocol, enabling users to send text messages, make voice calls, share media files, and participate in group chats and channels directly from their Mac. The application supports core messaging features including end-to-end encryption, emoji reactions, message pinning, and threaded comments, along with content types like stickers, GIFs, polls, and stories. The client extends beyond basic messaging with capabilities for bot interaction, paym
Guides users through obtaining apiid and apihash credentials from the Telegram portal.
Acest proiect este un set cuprinzător de ghiduri și framework-uri concepute pentru a securiza infrastructura software-as-a-service și operațiunile companiei. Oferă o colecție de liste de verificare tehnice, tipare arhitecturale și bune practici pentru consolidarea aplicațiilor cloud împotriva atacurilor cibernetice. Proiectul se diferențiază prin furnizarea de manuale specializate pentru gestionarea riscurilor și pregătirea pentru conformitate. Oferă abordări structurate pentru modelarea amenințărilor, planificarea răspunsului la incidente și pregătirea dovezilor de audit necesare pentru a îndeplini certificările de securitate din industrie și cerințele clienților enterprise. Framework-ul acoperă domenii largi de capabilități, inclusiv consolidarea infrastructurii cloud, gestionarea identității și accesului, și gestionarea riscurilor de securitate. Acesta abordează controale tehnice precum izolarea mediului și criptarea rețelei, precum și procese operaționale precum offboarding-ul angajaților și verificarea furnizorilor.
Manages the lifecycle of API credentials, including the assignment of unique keys and token revocation processes.
Scanopy is a self-hosted infrastructure inventory and network discovery tool. It identifies hosts, services, and workloads across subnets to build a live model of network infrastructure, maintaining a searchable catalog of assets. The system features an interactive network topology visualizer that generates physical, logical, and application dependency diagrams. It maps the nesting chain from physical hardware and hypervisors down to virtual machines and containers, utilizing SNMP for hardware metadata and container APIs for workload discovery. The platform supports distributed network scann
Stores credentials for APIs to enable deep discovery of device and container dependencies.
apollo-ios is a GraphQL client library for iOS and Apple platforms that enables type-safe network communication. It transforms GraphQL operations into generated Swift models, ensuring that network responses are validated at compile time to eliminate manual mapping. The library features a normalized cache manager that stores entities in a flat structure to maintain data consistency across different application views. It also optimizes network performance using hash-based persisted queries to reduce payload sizes and supports real-time data streaming via WebSockets or HTTP subscriptions. The p
Provides a centralized system for the creation, rotation, and deletion of API credentials.
DNSControl is an infrastructure-as-code tool designed to manage DNS records and zones across multiple providers through a unified, programmable configuration language. By treating DNS as code, it enables teams to maintain consistent infrastructure state, automate record updates, and perform version-controlled management of network settings across diverse cloud, registrar, and network DNS services. The system functions as a multi-provider orchestrator that uses a declarative reconciliation engine to compare local configurations against live remote states. It employs a provider-agnostic abstrac
Centralizes API keys and configuration parameters in files to enable secure and repeatable infrastructure synchronization.
This project is an AI API gateway and proxy that translates and normalizes requests between different AI model formats to ensure compatibility across client applications. It functions as a middleware service that can transform local command-line binaries into web services, allowing them to be triggered via HTTP requests. The system is distinguished by its ability to route multimodal text and image inputs and extract internal reasoning chains from model outputs to separate the chain of thought from the final answer. It includes an authentication manager that automatically cycles through multip
Centralizes the storage and lifecycle management of authentication tokens required for external AI services.
Quotio is a local LLM API proxy gateway and credential manager that intercepts and routes requests from command-line tools and integrated development environments to various AI model providers. It serves as a centralized authentication hub, managing API keys and service accounts to provide a unified interface for external AI agents. The project distinguishes itself through a routing engine that implements priority-chain and round-robin load balancing to distribute workloads across multiple accounts. It features automated API key failover, which redirects requests to backup authentication keys
Provides a centralized, secure store for managing API keys and service accounts across multiple AI providers.
acme-dns is a DNS server and protocol manager designed to proxy TXT records for ACME DNS-01 challenges. It enables the validation of domain ownership for automated certificate issuance without exposing primary DNS zone files or credentials to external clients. The project utilizes CNAME-based delegation to offload verification from a primary zone to a specialized server. It provides a REST API for programmatically updating short-lived validation tokens, which is secured through CIDR-based network restrictions and automated TLS provisioning for the API interface. The system supports stateless
Provides an API to issue and manage unique subdomains and credentials for certificate authority validation tokens.
Fleetbase este un sistem de operare logistic modular și containerizat, conceput pentru a gestiona operațiunile de supply chain end-to-end, inclusiv dispecerizarea flotei, controlul inventarului și onorarea comenzilor. Funcționează ca o platformă headless de e-commerce și logistică ce oferă infrastructura necesară pentru a construi marketplace-uri multi-vendor și aplicații de comandă pentru consumatori. Prin utilizarea unui sistem de identitate centralizat și a fluxurilor de lucru bazate pe evenimente, platforma automatizează ciclurile de viață complexe de livrare și procesele de contabilitate financiară. Platforma este construită pe o arhitectură modulară care permite dezvoltatorilor să extindă funcționalitatea de bază prin pachete instalabile, fără a modifica codul sursă subiacent. Dispune de un framework API robust care suportă endpoint-uri versionate, gestionarea securizată a credențialelor și fluxuri de evenimente în timp real pentru integrarea cu hardware și software terț. Utilizatorii pot personaliza în continuare sistemul prin atașarea de metadate entităților de bază, permițând stocarea informațiilor unice de business în cadrul modelului de date existent. Sistemul oferă o suită cuprinzătoare de instrumente pentru medii self-hosted, inclusiv backup-uri automate ale bazei de date, orchestrarea containerelor și configurații de securitate a rețelei. Include o interfață de linie de comandă dedicată pentru a gestiona întregul ciclu de viață al aplicației, de la dezvoltarea locală și scaffolding-ul extensiilor până la deployment și actualizări de sistem. Setările administrative și instrumentele de monitorizare axate pe dezvoltatori asigură menținerea integrității platformei și a sănătății integrărilor în toate modulele operaționale.
Generates and rotates authentication tokens for secure access to platform services, supporting both live and sandbox environments.
Acest proiect este un gateway API de inteligență artificială care centralizează conexiunile către mai mulți furnizori de modele într-o singură interfață standardizată. Acționând ca un proxy, traduce diverse protocoale ale furnizorilor într-un format compatibil cu clienții existenți, permițând dezvoltatorilor să integreze diverse modele de limbaj fără a gestiona SDK-uri specifice fiecărui furnizor. Gateway-ul se distinge printr-un strat robust de gestionare a traficului care include rutarea inteligentă a cererilor, echilibrarea ponderată a sarcinii și mecanisme automate de failover pentru a asigura disponibilitatea serviciului. Încorporează un pipeline modular de middleware care gestionează autentificarea, limitarea ratei (rate limiting) și moderarea conținutului, menținând în același timp controlul centralizat asupra credențialelor furnizorilor și a căilor de rutare a modelelor prin fișiere de configurare. Dincolo de proxy-ul de bază, sistemul oferă o vizibilitate operațională completă prin monitorizarea volumului de cereri, a latenței și a consumului de token-uri în toate serviciile conectate. Suportă controale de acces administrativ și monitorizarea stării de sănătate a serviciilor pentru a facilita analiza performanței și gestionarea costurilor în diverse medii de deployment.
Centralizes and secures third-party service credentials while isolating upstream provider keys from client-facing interfaces.