Security & Privacy

40 self-hosted open source alternatives in this category

Certificates, PKI & TLS Automation(14)Identity & Access Management (IAM)(46)Network Security (VPN, Firewall, WAF)(73)Secrets, Passwords & Vaults(24)SSO & Federated Identity (OIDC/SAML)(19)Threat Detection, SIEM & Incident Response(12)Vulnerability Management, Compliance & Audit(7)

40 services found

Caddy

Modern web server with automatic HTTPS

69k

4.6k

Last commit: 3d ago

Fast, extensible web server and reverse proxy with automatic TLS certificates, simple configuration, HTTP/3 support, and production-ready observability features.

Alternative to:

NGINX Plus+3

Traefik

Cloud-native reverse proxy and load balancer

61k

5.8k

Last commit: 2d ago

Traefik is a dynamic reverse proxy and load balancer for Docker, Kubernetes, and microservices with automatic service discovery, routing, and TLS/ACME support.

Alternative to:

NGINX Plus+3

Pi-hole

Network-wide ad blocking via DNS sinkhole

55.2k

Last commit: 1mo ago

DNS sinkhole that blocks ads, trackers, and malicious domains network-wide with a web dashboard, per-client controls, and optional DHCP/DNS features.

Alternative to:

NextDNS+1

Vaultwarden

Unofficial Bitwarden-compatible server written in Rust

53.1k

2.5k

Last commit: 4d ago

Lightweight, self-hosted Bitwarden-compatible password manager server with web vault, clients support, orgs, sharing, attachments, and optional admin interface.

Alternative to:

LastPass+1

Mattermost

Secure team messaging for technical and operational teams

34.9k

8.3k

Last commit: 2d ago

Self-hostable team chat with channels, threads, calls, integrations, and enterprise-grade security controls for organizations that need full data control.

Alternative to:

Slack+4

CyberChef

The Cyber Swiss Army Knife for data analysis and decoding

33.7k

3.8k

Last commit: 5mo ago

Browser-based tool for decoding, encoding, encryption, and data analysis using a drag-and-drop “recipe” workflow for security, DFIR, and engineering tasks.

Alternative to:

CrackStation (online hash cracking/lookup)+4

AdGuard Home

Network-wide ads and tracker blocking via DNS

32k

2.2k

Last commit: 15d ago

Self-hosted DNS server with ad/tracker blocking, custom filtering, parental controls, encrypted DNS, and per-client statistics for home networks.

Alternative to:

NextDNS+1

Nginx Proxy Manager

Web UI for Nginx reverse proxy with Let's Encrypt SSL

30.9k

3.5k

Last commit: 1mo ago

Web-based reverse proxy manager for Nginx with hosts, streams, access lists, and automatic Let's Encrypt certificates via an easy admin UI.

Alternative to:

NGINX Plus+5

SafeLine

Self-hosted WAF for protecting web apps and APIs

20k

1.3k

Last commit: 2mo ago

SafeLine is an open-source web application firewall (WAF) that protects web apps and APIs from common attacks using HTTP traffic inspection, rules, and management UI.

Alternative to:

Cloudflare WAF+4

Teleport

Identity-native infrastructure access for SSH, Kubernetes, RDP and DBs

19.6k

Last commit: 1d ago

Open-source platform that provides unified, audited, identity-based access to servers, Kubernetes clusters, databases, and desktops without static credentials.

Alternative to:

Okta Advanced Server Access+2

Bitwarden

Open-source password manager for individuals and teams

17.8k

1.5k

Last commit: 2d ago

Self-hostable password manager with end-to-end encryption, vault sharing, TOTP, passkeys, and cross-platform apps plus browser extensions.

Alternative to:

1Password Secrets Sharing+4

Pangolin

Self-hosted secure tunneling and access gateway

17.8k

529

Last commit: 4d ago

Pangolin provides a self-hosted access gateway for securely exposing internal apps via tunnels, with identity-aware access controls and a web UI.

Alternative to:

Cloudflare SSL/TLS and reverse proxy features+3

Documenso

Open-source document signing and workflow platform

12.2k

2.2k

Last commit: 2d ago

Self-hosted platform for preparing, sending, and tracking legally binding e-signatures with templates, audit trails, and team workflows.

Alternative to:

DocuSign+9

SFTPGo

Secure, multi-protocol file transfer server with a web admin UI

11.6k

891

Last commit: 9d ago

Self-hosted SFTP/FTP/WebDAV server with web admin, virtual users, storage backends, and auditing for secure file exchange and managed file transfer workflows.

Alternative to:

WeTransfer+7

Stalwart Mail Server

All-in-one secure mail server with modern spam filtering

11.1k

600

Last commit: 4d ago

Stalwart is an all-in-one mail server (SMTP/IMAP/JMAP) with built-in anti-spam/DMARC, web admin UI, and flexible routing for running your own email infrastructure.

Alternative to:

Microsoft Exchange Online+9

SimpleX Chat

Private messaging without user IDs or phone numbers

10.2k

538

Last commit: 11d ago

Privacy-first messenger using SimpleX relays and end-to-end encryption, designed to avoid user identifiers, phone numbers, and centralized identity.

Alternative to:

Signal+5

BunkerWeb

Web application firewall and security reverse proxy

9.7k

555

Last commit: 1mo ago

Self-hosted WAF and reverse proxy built on NGINX, with a web UI, ModSecurity/OWASP rules, automatic HTTPS, and hardened defaults for securing web apps.

Alternative to:

Cloudflare WAF+5

Termix

Web-based SSH terminal and host management workspace

9.5k

387

Last commit: 8d ago

Self-hosted web app for managing SSH connections, organizing hosts, and accessing terminals from a browser with a focus on team-friendly workflows.

Alternative to:

BeyondTrust Privileged Remote Access+2

PrivateBin

Zero-knowledge pastebin with end-to-end encryption

7.9k

952

Last commit: 4d ago

Self-hosted, zero-knowledge pastebin that encrypts text in the browser, supports file attachments, expiration, burn-after-reading, and discussion threads.

Alternative to:

Pastebin.com+4

Technitium DNS Server

Authoritative, recursive DNS with web UI and ad blocking

7.2k

608

Last commit: 21d ago

Self-hosted DNS server with recursive resolver, authoritative zones, DoH/DoT, ad-blocking, DHCP, and a web UI with optional app-based extensibility.

Alternative to:

NextDNS+2

Sandstorm

Personal cloud to run web apps securely, per-user sandboxed

709

Last commit: 2mo ago

Self-hosted platform for running web apps with per-user sandboxes, easy install, app store packaging, and sharing via secure links and access controls.

Alternative to:

Heroku+9

Warpgate

Smart SSH bastion with web UI, RBAC, and audit logs

6.3k

224

Last commit: 3d ago

Self-hosted SSH bastion and access gateway with web UI, RBAC, just-in-time access, session recording, and audit logging for servers and infrastructure.

Alternative to:

Okta Advanced Server Access+2

SimpleLogin

Email aliasing to protect your real inbox

6.3k

551

Last commit: 2d ago

Self-hostable email alias manager that generates aliases, forwards mail, and shields your real address with reply support, custom domains, and anti-tracking options.

Alternative to:

Fastmail Masked Email+3

HAProxy

High-performance TCP/HTTP load balancer and reverse proxy

6.2k

893

Last commit: 9d ago

HAProxy is a fast, reliable load balancer and reverse proxy for TCP/HTTP(S), with TLS termination, health checks, advanced routing, and built-in observability features.

Alternative to:

NGINX Plus+4

MeshCentral

Open-source remote device management and remote access server

5.9k

776

Last commit: 2d ago

Web-based remote management server for computers and IoT devices with remote desktop/terminal, file transfer, user/device groups, and auditing.

Alternative to:

TeamViewer+6

Blocky

Fast DNS proxy with ad-blocking and safe browsing

5.9k

257

Last commit: 2d ago

Lightweight DNS proxy and local DNS server with blocklists, allowlists, custom DNS rules, caching, and optional DoH/DoT upstream for network-wide ad and tracker blocking.

Alternative to:

NextDNS+1

Passbolt

Open-source password manager for teams

5.6k

361

Last commit: 19d ago

Self-hosted, GPG-based password manager for teams with shared vaults, RBAC, auditing, and browser extensions for secure credential sharing.

Alternative to:

1Password Secrets Sharing+4

Zoraxy

Lightweight reverse proxy with a web UI and built-in tools

4.8k

270

Last commit: 7d ago

Self-hosted reverse proxy and HTTP(S) gateway with a web UI, TLS support, routing rules, and traffic/security utilities for homelabs and small servers.

Alternative to:

Cloudflare SSL/TLS and reverse proxy features+3

OpenCloud

Open-source content collaboration and file sharing platform

4.6k

158

Last commit: 2d ago

Enterprise-ready file sharing and content collaboration with sync, sharing, and integrations, built as a modern successor to ownCloud/Nextcloud-style platforms.

Alternative to:

Dropbox+5

AnonAddy

Open-source email aliases and forwarding for privacy.

4.3k

243

Last commit: 4d ago

Create unlimited email aliases and forward mail to your inbox to reduce spam, protect identity, and control who can reach you.

Alternative to:

Apple Hide My Email (iCloud+)+5