Displaying 1 to 16 from 16 results

teleport - Privileged access management for elastic infrastructure.

  •    Go

Teleport is built on top of the high-quality Golang SSH implementation and it is fully compatible with OpenSSH and can be used with sshd servers and ssh clients. Download the latest binary release, unpack the .tar.gz and run sudo ./install. This will copy Teleport binaries into /usr/local/bin.

the-bastion - Authentication, authorization, traceability and auditability for SSH accesses.

  •    Perl

Bastions are a cluster of machines used as the unique entry point by operational teams (such as sysadmins, developers, database admins, ...) to securely connect to devices (servers, virtual machines, cloud instances, network equipment, ...), usually using ssh. Bastions provides mechanisms for authentication, authorization, traceability and auditability for the whole infrastructure.

bowser - a smart, friendly, secure, and auditable ssh daemon

  •    Go

Bowser is a modern, simple, and grokable SSH daemon built to act as a bastion and SSH certificate authority. Bastion provides users with a unobtrusive yet highly secure flow to SSH. Bowser was built at Discord. This is caused by this OpenSSH bug. Upgrade your version of OpenSSH to resolve.




drawbridge - manage SSH access to multiple applications/environments protected by bastion servers

  •    Go

A Jump/Bastion host is a special purpose computer on a network specifically designed and configured to withstand attacks. The computer generally hosts a single application, for example a proxy server, and all other services are removed or limited to reduce the threat to the computer. It is hardened in this manner primarily due to its location and purpose, which is either on the outside of a firewall or in a demilitarized zone (DMZ) and usually involves access from untrusted networks or computers. In secure cloud architectures, jump/bastion hosts are the primary method to access the internal/protected network. This means that all traffic can be audited, and that a single server can be shut down in the event that the network is compromised.

tf_aws_bastion_s3_keys - A Terraform module for creating bastion host on AWS EC2 and populate its ~/

  •    HCL

A Terraform module for creating resilient bastion host using auto-scaling group (min=max=desired=1) and populate its ~/.ssh/authorized_keys with public keys fetched from S3 bucket. This module can append public keys, setup cron to update them and run additional commands at the end of setup. Note that if it is set up to update the keys, removing a key from the bucket will also remove it from the bastion host.

bunjil - A GraphQL bastion server with schema merging, authentication and authorization with Policy Based Access Control

  •    TypeScript

Bunjil is a public facing GraphQL server. It comes with Policy Based authorization, and hook for your own authentication (Passport.js, Auth0, database).

ssm-sh - Experiment to use SSM RunCommand instead of SSH

  •    Go

Little experiment to mimic SSH by using SSM agent to send commands to remote instances and fetching the output. Grab a binary from the releases.


terraform-aws-ec2-bastion-server - Terraform Module to define a generic Bastion host with parameterized user_data

  •    HCL

This project is part of our comprehensive "SweetOps" approach towards DevOps. It's 100% Open Source and licensed under the APACHE2.

bastion - 🔒Secure Bastion implemented as Docker Container running Alpine Linux with Google Authenticator & DUO MFA support

  •    Shell

This is a secure/locked-down bastion implemented as a Docker Container. It uses Alpine Linux as the base image and ships with support for Google Authenticator & DUO MFA support. It was designed to be used on Kubernetes together with GitHub Authorized Keys to provide secure remote access to production clusters.

curse - CURSE is an SSH certificate signing server, built as an alternative to Netflix's BLESS tool, but without a dependency on AWS

  •    Go

CURSE is an SSH certificate signing server, built as an alternative to Netflix's BLESS tool, but without a dependency on AWS. This software is currently in a beta state, feel free to submit issues on GitHub with any suggestions for improvement/feature requests or issues encountered.

happo-agent - Yet another Nagios nrpe

  •    Go

happo-agent is yet another Nagios nrpe plugin. And improvement nrpe functions. Many configuration can be with environment variables.

tg - TG is the greatest ssh bridge ever ! An SSH bridge, also known as SSH bastion or SSH gateway acts as proxy to handle your SSH connections

  •    Perl

TG is the greatest ssh bridge ever ! An SSH bridge, also known as SSH bastion or SSH gateway acts as proxy to handle your SSH connections. First of all, you must have an SSH key on your current machine.

privx-on-aws - PrivX - Just-in-time Access Management

  •    TypeScript

Available as Infrastructure as a Code on AWS for fast deployment. PrivX is a lean and modern privileged access management solution to automate your AWS, Azure and GCP infrastructure access management in one multi-cloud solution. While it offers super great cloud experience, you can also easily connect your on-prem infrastructure to it for a single pane of glass access control and monitoring. This project further simplifies PrivX on-boarding experience with deployment automation using infrastructure as a code tooling.

ssh-proxy - 🐳 Dockerized SSH bastion to proxy SSH connections to arbitrary containers.

  •    Python

Dockerized SSH bastion to proxy SSH connections to arbitrary containers. This SSH proxy can be deployed as a standalone docker container that allows to proxy any user SSH connection to arbitrary unexposed containers. This enables users to securely access any container via SSH within a cluster only via a single exposed port and provides full SSH compatibility (e.g. port tunneling, scp, sftp, rsync, sshfs, X11). This proxy has a few security features built-in to make sure that users can only access target containers that they are allowed to.

terraform-aws-ec2-admin-server - Terraform Module for providing a EC2 instance capable of running admin tasks and provisioned by Ansible

  •    HCL

Terraform Module for providing a server capable of running admin tasks. Use terraform-aws-ec2-admin-server to create and manage an admin instance. This project is part of our comprehensive "SweetOps" approach towards DevOps.






We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.