lemur - Repository for the Lemur Certificate Manager

  •        18

Lemur manages TLS certificate creation. While not able to issue certificates itself, Lemur acts as a broker between CAs and environments providing a central portal for developers to issue TLS certificates with 'sane' defaults.It works on CPython 3.5. We deploy on Ubuntu and develop on OS X.

https://github.com/Netflix/lemur
http://lemur.readthedocs.io/en/latest/

Tags
Implementation
License
Platform

   




Related Projects

Cryptlib - provides Encryption and Authentication Service


cryptlib is a powerful security toolkit that allows even inexperienced crypto programmers to easily add encryption and authentication services to their software. It provides support for S/MIME and PGP/OpenPGP secure enveloping, SSL/TLS and SSH secure sessions, CA services such as CMP, SCEP, RTCS, and OCSP, and other security operations such as secure timestamping.

lets-encrypt - Let’s Encrypt Add-on for Jelastic Cloud


Let’s Encrypt is a free and open Certificate Authority, that simplifies and automates processes of browser-trusted SSL certificates issuing and appliance. This is achieved through obtaining a browser-trusted SSL certificate from Let's Encrypt and attaching it to environment entry point (i.e. either compute node or load balancer). Upon integrating such certificate into your application, it will start supporting secure connection via the HTTPS protocol.Herewith, pay attention that Tomcat 8/9, GlassFish 4 and HAProxy servers are supported only starting with 4.9.5 Jelastic Platform version. Other stacks support is going to be implemented further.

certigo - A utility to examine and validate certificates in a variety of formats


Certigo is a utility to examine and validate certificates to help with debugging SSL/TLS issues.Supports all common file formats: Certigo can read and dump certificates in various formats. It can automatically detect and read from X.509 (DER/PEM), JCEKS, PKCS7 and PKCS12 files. Certificates can be dumped to a human-readable format, a set of PEM blocks, or a JSON object for use in scripting.

certstrap - Tools to bootstrap CAs, certificate requests, and signed certificates.


A simple certificate manager written in Go, to bootstrap your own certificate authority and public key infrastructure. Adapted from etcd-ca.certstrap is a very convenient app if you don't feel like dealing with openssl, its myriad of options or config files.

PolarSSL library - Crypto and SSL made easy


Download PolarSSL PolarSSL is an SSL library written in ANSI C. PolarSSL makes it easy for developers to include cryptographic and SSL/TLS capabilities in their (embedded) products with as little hassle as possible. It is designed to be readable, documented, tested, loosely coupled and portable. It supports Symmetric encryption algorithms, hash algorithms, RSA with PKCS and X.509 certificate, SSL and TLS.



Cheap-Comodo-Essential-SSL-Wildcard


Cheap Comodo Essential SSL Wildcard: Comodo Essential SSL Wildcard Certificates designed for encrypting web sites for low volume online transactions. Essential Wildcard SSL Certificate is a best 128-bit SSL certificate for small e-commerce website. http://www.1cheapssl.com/comodo/essentialssl-wildcard

Buy-Comodo-Essential-SSL-Wildcard


Cheap Comodo Essential SSL Wildcard: Comodo Essential SSL Wildcard Certificates designed for encrypting web sites for low volume online transactions. Essential Wildcard SSL Certificate is a best 128-bit SSL certificate for small e-commerce website.

tls-gen - Generates self-signed TLS/SSL certificates useful for development


Generates self-signed TLS/SSL certificates useful for development

tls-gen - Generates self-signed TLS/SSL certificates useful for development


Generates self-signed TLS/SSL certificates useful for development

cipherscan - A very simple way to find out which SSL ciphersuites are supported by a target.


Cipherscan tests the ordering of the SSL/TLS ciphers on a given target, for all major versions of SSL and TLS. It also extracts some certificates informations, TLS options, OCSP stapling and more. Cipherscan is a wrapper above the openssl s_client command line.Cipherscan is meant to run on all flavors of unix. It ships with its own built of OpenSSL for Linux/64 and Darwin/64. On other platform, it will use the openssl version provided by the operating system (which may have limited ciphers support), or your own version provided in the -o command line flag.

Nogotofail - Network Security Testing Tool


Nogotofail is a network security testing tool designed to help developers and security researchers spot and fix weak TLS/SSL connections and sensitive cleartext traffic on devices and applications in a flexible, scalable, powerful way. It includes testing for common SSL certificate verification issues, HTTPS and TLS/SSL library bugs, SSL and STARTTLS stripping issues, cleartext issues, and more.

Comodo-SGC-Wildcard-SSL-Certificate


Secure unlimited sub-domains on your website with a single Comodo SGC Wildcard SSL Certificate. A Comodo SGC Wildcard SSL Certificate is a cost effective and efficient means of securing all sub-domains without the need to manage multiple certificates.

tlspretense - A test framework for testing SSL/TLS client certificate validation.


A test framework for testing SSL/TLS client certificate validation.

Cheap-Comodo-SSL-certificate-protect-customer-e-businesses-transactions-that-trusted-by-all-browser-


Cheap Comodo SSL certificate having Trust & Assurance over the Internet, that's way Comodo is the second largest High Assurance provider of SSL certificates.

acme - :lock: acmetool, an automatic certificate acquisition tool for ACME (Let's Encrypt)


acmetool is an easy-to-use command line tool for automatically acquiring certificates from ACME servers (such as Let's Encrypt). Designed to flexibly integrate into your webserver setup to enable automatic verification. Unlike the official Let's Encrypt client, this doesn't modify your web server configuration.You can perform verifications using port 80 or 443 (if you don't yet have a server running on one of them); via webroot; by configuring your webserver to proxy requests for /.well-known/acme-challenge/ to a special port (402) which acmetool can listen on; or by configuring your webserver not to listen on port 80, and instead running acmetool's built in HTTPS redirector (and challenge responder) on port 80. This is useful if all you want to do with port 80 is redirect people to port 443.

caman - A self-signing certificate authority manager


A self-signing certificate authority manager - create your own certificate authority, and generate and manage SSL certificates using openssl.

SSL certificate verification utility


This utility will provide ways to validate validity of SSL certificates on your network. It'll traverse network finding HTTPS websites, retreive certificate chain for each of them and validate each certificate for various problems. Typical use is finding expired or certificate...

Ejbca - PKI Certificate Authority software


EJBCA is an enterprise class PKI Certificate Authority software. It supports SSL/TLS, Smart card logon to Windows and/or Linux, Signing and encrypting email (SMIME), Mobile PKI, Secure mobile networks and lot more.

aws_replace_certificates - Replaces SSL certificates in AWS load balancers and ebs configurations


Replaces SSL certificates in AWS load balancers and ebs configurations