OpenZiti
An open-source zero-trust networking platform that makes network services invisible to unauthorized users with cryptographic identity and end-to-end encryption.
What is OpenZiti?
OpenZiti is an open-source zero-trust networking platform that creates a secure overlay network where services are invisible to unauthorized users. It replaces traditional VPNs and open ports by requiring every connection to be authenticated with cryptographic identity, authorized by policy, and encrypted end-to-end. The platform works with existing applications via lightweight tunnelers and new applications via embedded SDKs for the strongest security model.
Developers, DevOps engineers, and security teams building or managing secure applications across clouds, IoT environments, or hybrid infrastructure who need to eliminate VPNs and open ports. It's also for organizations implementing zero-trust security models for both human and non-human workloads.
Developers choose OpenZiti because it provides true zero-trust networking with 'dark services' that have no listening ports, eliminating the attack surface entirely. Its unique combination of cryptographic identity for everything, end-to-end encryption, and flexible deployment models (from no-code tunnelers to embedded SDKs) makes it practical for both brownfield and greenfield environments.
Overview
The parent project for OpenZiti. Here you will find the executables for a fully zero-trust, programmable network @OpenZiti
Use Cases
Best For
Related Projects
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
