awesome-repositories.com
博客
awesome-repositories.com

通过 AI 驱动的搜索,发现最优秀的开源仓库。

探索精选搜索开源替代品自托管软件博客网站地图
项目关于排名机制媒体报道MCP 服务器
法律隐私政策服务条款
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

38 个仓库

Awesome GitHub RepositoriesClient-Side Encryption

Mechanisms for securing sensitive local data before transmission to remote services.

Distinguishing note: Focuses on local encryption for synchronization privacy, distinct from general network security.

Explore 38 awesome GitHub repositories matching security & cryptography · Client-Side Encryption. Refine with filters or upvote what's useful.

Awesome Client-Side Encryption GitHub Repositories

用 AI 发现最棒的仓库。我们将通过 AI 为您搜索最匹配的仓库。
  • awesome-selfhosted/awesome-selfhostedawesome-selfhosted 的头像

    awesome-selfhosted/awesome-selfhosted

    299,516在 GitHub 上查看↗

    这是一个由社区策划的开源软件目录,专为在私有服务器环境和家庭实验室中部署而设计。它作为发现主流云服务独立自托管替代方案的综合资源,使用户能够保持对数字基础设施的完全数据所有权和控制权。 该目录通过层级分类法构建,将庞大的应用程序集合组织成逻辑类别,范围从媒体管理和数据分析到私有通信和团队生产力工具。它通过协作同行评审流程脱颖而出,社区成员验证每个提交的质量和相关性,以确保目录保持准确和可靠。 该项目涵盖了广泛的能力领域,包括基础设施自动化、基于容器的服务部署和声明式配置管理。这些工具协助用户维护可复现的服务器环境,并管理私有硬件上的复杂服务依赖。 该目录作为版本控制仓库进行维护,确保所有更新和社区驱动的变更都是可追踪且透明的。

    Secures content within the browser before transmission so that the server never gains access to the original data.

    awesomeawesome-listcloud
    在 GitHub 上查看↗299,516
  • atuinsh/atuinatuinsh 的头像

    atuinsh/atuin

    30,266在 GitHub 上查看↗

    Atuin is a command-line tool that replaces standard shell history with a searchable, encrypted SQLite database. By hooking into shell initialization scripts, it provides an interactive, keyboard-driven interface for real-time command filtering and retrieval. The platform ensures data privacy through a client-side encryption layer, securing sensitive history and configuration data before it is synchronized across multiple machines. Beyond history management, Atuin functions as an executable documentation platform that enables teams to create and share interactive runbooks. These documents use

    Secures sensitive command history and configuration data locally before transmission to ensure privacy during cloud-based synchronization.

    Rustbashfishhistory
    在 GitHub 上查看↗30,266
  • robinlinus/snapdropRobinLinus 的头像

    RobinLinus/snapdrop

    19,712在 GitHub 上查看↗

    Snapdrop is a web-based local file sharing tool and progressive web app designed for transferring files between devices on the same local network. It functions as an end-to-end encrypted transfer tool that allows users to move data across different devices and operating systems without manual configuration. The service supports self-hosting through a containerized deployment model, allowing users to run private instances of the file sharing service on their own infrastructure. This ensures that data transfers remain within a private local network. The system uses a signaling server for local

    Secures file data using cryptographic keys generated directly in the browser to ensure privacy during transmission.

    JavaScript
    在 GitHub 上查看↗19,712
  • bitwarden/corebitwarden 的头像

    bitwarden/core

    19,209在 GitHub 上查看↗

    This project is a password management backend designed to store and synchronize encrypted credentials across multiple devices and client applications. It serves as a secure central server that enables the management of secret vaults and password data. The system supports self-hosted secret storage, allowing users to run a private vault on their own hardware to maintain control over their data. It facilitates cross-platform credential syncing to keep passwords updated in real time across various operating systems. The backend is built with a REST-based API gateway, token-based session managem

    Ensures server privacy by encrypting sensitive data on the user device before transmission.

    C#
    在 GitHub 上查看↗19,209
  • bitwarden/serverbitwarden 的头像

    bitwarden/server

    18,074在 GitHub 上查看↗

    This project provides a comprehensive, self-hosted platform for zero-knowledge credential management and enterprise secrets orchestration. It functions as a secure vault that ensures all encryption and decryption processes occur exclusively on the client side, preventing the server from ever accessing plaintext data. By combining identity federation with robust access controls, the system enables organizations to centralize the management of passwords, passkeys, and sensitive infrastructure credentials. The platform distinguishes itself through its focus on both human-centric security and aut

    Ensures all encryption and decryption occur exclusively on the client side, keeping plaintext inaccessible to the server.

    C#apiaspnetaspnetcore
    在 GitHub 上查看↗18,074
  • video-dev/hls.jsvideo-dev 的头像

    video-dev/hls.js

    16,767在 GitHub 上查看↗

    hls.js is a JavaScript player library that enables HTTP Live Streaming playback in web browsers using the Media Source Extensions API. It functions as an adaptive bitrate streaming engine and a media streamer that manages the buffering and playback of video segments. The library features specialized capabilities for low latency streaming and digital rights management, allowing it to decrypt protected content via Encrypted Media Extensions. It includes a metadata processor for handling ID3 tags and date-range elements, as well as a pluggable loader interface to replace default network request

    Coordinates with Encrypted Media Extensions to decrypt protected video segments on the client side.

    TypeScript
    在 GitHub 上查看↗16,767
  • cryptomator/cryptomatorcryptomator 的头像

    cryptomator/cryptomator

    15,310在 GitHub 上查看↗

    Cryptomator is a client-side cloud encryption tool and cross-platform vault manager. It provides a transparent encryption layer that encrypts files and folder structures locally before they are uploaded to a cloud storage provider. The software creates virtual encrypted drives that mount encrypted vaults, allowing users to interact with their data as if it were on a physical disk. It supports the management of multiple independent encrypted containers, each protected by a unique password. The project covers data privacy through directory structure obfuscation and filename encryption to hide

    Provides client-side encryption of file contents and folder structures before they are uploaded to cloud storage.

    Javacloud-storagecryptocryptography
    在 GitHub 上查看↗15,310
  • haiwen/seafilehaiwen 的头像

    haiwen/seafile

    14,845在 GitHub 上查看↗

    Seafile is a self-hosted file synchronization and sharing platform that provides a central server for maintaining file consistency across multiple devices. It functions as a cloud storage management system and a collaborative document suite, integrating tools for real-time teamwork and shared file management. The platform distinguishes itself through a metadata-driven file organizer that uses extensible properties and hierarchical tags instead of traditional folder structures. It includes client-side encrypted storage to protect private data using user-defined passwords before files leave the

    Secures private files using user-defined passwords and client-side encryption before they leave the device.

    Ccloud-storagedocument-managementfile-sharing
    在 GitHub 上查看↗14,845
  • mozilla/sendmozilla 的头像

    mozilla/send

    13,269在 GitHub 上查看↗

    Send is a self-hosted file transfer service designed for end-to-end encrypted file sharing. It provides a privacy-focused data transfer solution and ephemeral file storage where uploaded content is automatically deleted after a specified number of downloads or a set amount of time. The service ensures private file sharing by utilizing client-side encryption to protect data before it is uploaded. Decryption keys are distributed to recipients via URL hash fragments to ensure the server never has access to the keys. The platform supports encrypted data transfer and temporary file hosting. It us

    Implements client-side encryption in the browser to ensure files are encrypted before they are uploaded to the server.

    FreeMarker
    在 GitHub 上查看↗13,269
  • juicedata/juicefsjuicedata 的头像

    juicedata/juicefs

    13,233在 GitHub 上查看↗

    JuiceFS is a distributed file system designed to mount object storage as a local, POSIX-compliant drive. It functions as a cloud-native persistent storage layer that decouples file metadata from raw data, storing metadata in a transactional database while keeping data blocks in object storage. This architecture enables multiple hosts across different regions to access the same storage simultaneously while maintaining strong consistency. The system distinguishes itself by performing data processing, including compression and encryption, directly on the client side before transmission. By split

    Performs encryption and compression on the client side before data transmission.

    Gobigdatacloud-nativedistributed-systems
    在 GitHub 上查看↗13,233
  • keeweb/keewebkeeweb 的头像

    keeweb/keeweb

    12,942在 GitHub 上查看↗

    KeeWeb is a web-based password manager and vault that allows users to open and edit encrypted databases through a browser interface. It functions as a cross-platform tool for managing password vaults using the KeePass database format. The application provides a self-hosted password vault that can be deployed as a single HTML file or via Docker. It integrates with remote storage providers using OAuth to synchronize encrypted database files across multiple devices. The system includes capabilities for secure credential generation, two-factor authentication management through time-based one-tim

    Decrypts database files entirely within the browser to ensure the server never accesses the master password.

    HTML
    在 GitHub 上查看↗12,942
  • aws/aws-cdkaws 的头像

    aws/aws-cdk

    12,817在 GitHub 上查看↗

    The AWS Cloud Development Kit is an infrastructure-as-code framework that enables developers to define and provision cloud resources using familiar programming languages. By utilizing construct-based synthesis, it translates high-level, object-oriented code into declarative templates, allowing for the automated management of complex cloud environments through a centralized, code-driven control plane. The framework distinguishes itself through its ability to model infrastructure as a dependency-aware resource graph, ensuring that components are provisioned and updated in the correct order. It

    Secures data by performing encryption on the client side before transmitting objects to remote storage.

    TypeScriptawscloud-infrastructurehacktoberfest
    在 GitHub 上查看↗12,817
  • kopia/kopiakopia 的头像

    kopia/kopia

    12,612在 GitHub 上查看↗

    Kopia is a backup utility designed to create encrypted, deduplicated, and compressed snapshots of files and directories. It functions as a client-side tool that secures data locally before transmitting it to various storage targets, ensuring that sensitive information remains protected throughout the backup process. The system utilizes content-addressable block storage and metadata-driven versioning to identify and remove redundant data across multiple snapshots. By employing a pluggable storage abstraction layer, it supports a wide range of local, network, and cloud-based storage providers,

    Encrypts all data locally using user-provided keys before transmission to ensure privacy.

    Gobackupclouddeduplication
    在 GitHub 上查看↗12,612
  • hicccc77/weflowhicccc77 的头像

    hicccc77/WeFlow

    11,644在 GitHub 上查看↗

    WeFlow is a local client extension for the WhatsApp messaging protocol. It functions as a suite of tools for decrypting media, managing chat history, and extending the core capabilities of the messaging client. The project is distinguished by its ability to block message recalls, preventing the remote deletion of sent messages to maintain a permanent record of conversations. It also includes a local messaging API that exposes internal chat capabilities via an HTTP service for use with external automation scripts and third-party tools. The software provides a chat analytics dashboard for gene

    Processes encrypted binary blobs from private chats into standard image and video formats for local viewing.

    annual-reportdata-analysisdata-visualization
    在 GitHub 上查看↗11,644
  • mongodb/node-mongodb-nativemongodb 的头像

    mongodb/node-mongodb-native

    10,180在 GitHub 上查看↗

    The MongoDB Node.js Driver is a programmatic interface and NoSQL database client used to manage document storage and execute operations within a MongoDB database. It serves as an asynchronous database interface and connection manager that enables Node.js applications to integrate with MongoDB servers. The project implements client-side field encryption to secure sensitive data and queries locally before transmission. It also provides a BSON serialization library to convert JavaScript objects into a binary format for efficient storage and network transmission. The driver covers a broad range

    Implements client-side encryption to secure sensitive local data before it is transmitted to the server.

    TypeScriptdatabasemongodbnode-js
    在 GitHub 上查看↗10,180
  • boto/boto3boto 的头像

    boto/boto3

    9,834在 GitHub 上查看↗

    Boto3 is the AWS SDK for Python, providing a programmatic interface for managing and automating AWS cloud infrastructure and services. It serves as a cloud management API client and resource manager for provisioning, configuring, and scaling virtual servers, databases, and storage. The library enables the implementation of infrastructure-as-code through declarative templates and scripts, allowing for the deployment of identical resource stacks across multiple accounts and geographic regions. It also provides a framework for coordinating distributed workflows, serverless functions, and contain

    Supports encrypting data locally before it is uploaded to cloud storage to ensure the provider never sees plaintext.

    Pythonawsaws-sdkcloud
    在 GitHub 上查看↗9,834
  • laverna/lavernaLaverna 的头像

    Laverna/laverna

    9,189在 GitHub 上查看↗

    Laverna is an open-source note-taking application designed as a privacy-focused alternative to Evernote. It operates as a single-page application that runs entirely in the browser, combining Markdown editing with client-side encryption to ensure note content is encrypted on the device before it ever reaches a server or cloud storage. The application distinguishes itself through its offline-first architecture, storing notes locally using browser storage for full offline access and editing capabilities. It synchronizes notes across devices through a unified interface that connects to multiple b

    Encrypt note content in the browser before it leaves your device, keeping data private from the server.

    JavaScriptlavernanote-takingpeer-to-peer
    在 GitHub 上查看↗9,189
  • privatebin/privatebinPrivateBin 的头像

    PrivateBin/PrivateBin

    8,384在 GitHub 上查看↗

    PrivateBin is a self-hosted, zero-knowledge text hosting service and secret sharing tool. It utilizes browser-based AES 256-bit encryption to ensure that data is encrypted on the client side before transmission, meaning the hosting server cannot read or recover the original content. The project distinguishes itself by using URL fragments to distribute decryption keys, preventing the secret key from ever being sent to the server. It supports the distribution of both encrypted text and files, which are compressed and encrypted locally prior to storage. The platform includes capabilities for an

    Uses 256-bit AES encryption within the browser to ensure plaintext never reaches the server.

    PHP
    在 GitHub 上查看↗8,384
  • solid/solidsolid 的头像

    solid/solid

    8,108在 GitHub 上查看↗

    Solid is a protocol and ecosystem for decentralized web applications that separates application logic from data storage. It enables users to store and control their personal information in personal online data stores, known as Pods, ensuring that individuals own their data rather than the applications they use. The project provides a framework for decentralized identity and authentication using WebID and OpenID Connect, decoupling identity from central providers. It implements a resource-level permission system via Web Access Control, allowing users to grant or deny read, write, and append ac

    Provides mechanisms to encrypt sensitive information at rest using keys controlled exclusively by the user.

    HTMLcommunication
    在 GitHub 上查看↗8,108
  • cryptpad/cryptpadcryptpad 的头像

    cryptpad/cryptpad

    7,739在 GitHub 上查看↗

    CryptPad is a self-hosted, zero-knowledge office suite designed for real-time collaborative editing and content management. It provides a privacy-centric infrastructure where documents, files, and notes are encrypted in the browser before transmission, ensuring that the server administrator cannot access the underlying data. The platform implements zero-knowledge user authentication, utilizing cryptographic keys to verify identities so that plain text passwords are never stored on the server. To further isolate sensitive operations, the system employs a security architecture that separates th

    Uses browser-based cryptography to secure shared files before they are transmitted to the server.

    JavaScriptchainpadcollaborationcollaborative-editing
    在 GitHub 上查看↗7,739
上一个12下一个
  1. Home
  2. Security & Cryptography
  3. Client-Side Encryption

探索子标签

  • Configuration SynchronizationSecurely synchronizing application settings and user preferences across multiple devices using client-side encryption. **Distinct from Client-Side Encryption:** Distinct from Client-Side Encryption: focuses on the synchronization of settings rather than the general encryption mechanism.
  • Identity Management1 个子标签Management of identities specifically used for encryption and secure communication. **Distinct from Client-Side Encryption:** Focuses on the identities that authorize encryption, not the encryption mechanisms themselves.
  • Media DecryptionProcessing of encrypted binary media assets into viewable formats on the client side. **Distinct from Client-Side Encryption:** Distinct from Client-Side Encryption which focuses on securing data before transmission; this focuses on recovery for viewing.
  • S3 Envelope EncryptionsEncrypts and decrypts Amazon S3 objects locally before upload or after download using envelope encryption. **Distinct from Client-Side Encryption:** Distinct from Client-Side Encryption: specifically targets S3 object encryption with envelope key wrapping, not general local encryption.