-
rustls
modern TLS library written in Rust
-
tokio-rustls
Asynchronous TLS/SSL streams for Tokio using Rustls
-
rustls-webpki
Web PKI X.509 Certificate Verification
-
openssl
bindings
-
hyper-rustls
Rustls+hyper integration for pure rust HTTPS
-
security-framework
Security.framework bindings for macOS and iOS
-
rustls-native-certs
allows rustls to use the platform native certificate store
-
native-tls
A wrapper over a platform's native TLS implementation
-
rustls-platform-verifier
supports verifying TLS certificates in rustls with the operating system verifier
-
openssl-probe
helping to find system-wide trust anchor (“root”) certificate locations based on paths typically used by
openssl -
tokio-openssl
SSL streams for Tokio backed by OpenSSL
-
schannel
bindings for rust, allowing SSL/TLS (e.g. https) without openssl
-
boring
BoringSSL bindings
-
tokio-websockets
High performance, strict, tokio-util based WebSockets implementation
-
aws-smithy-http-client
HTTP client abstractions for generated smithy clients
-
async-native-tls
Native TLS using futures
-
tls-parser
Parser for the TLS protocol
-
pq-sys
Auto-generated rust bindings for libpq
-
rustpython
A python interpreter written in rust
-
rustls-connector
Connector similar to openssl or native-tls for rustls
-
mbedtls
Idiomatic Rust wrapper for MbedTLS, allowing you to use MbedTLS with only safe code while being able to use such great Rust features like error handling and closures. Building on MbedTLS's focus on embedded use…
-
tokio-rustls-acme
Automatic TLS certificate management using rustls
-
futures-rustls
Asynchronous TLS/SSL streams for futures using Rustls
-
tokio-native-tls
TLS/SSL streams for Tokio using native-tls giving an implementation of TLS for nonblocking I/O streams
-
s2n-tls
A C99 implementation of the TLS/SSL protocols
-
actix-tls
TLS acceptor and connector services for Actix ecosystem
-
aws-sdk-transfer
AWS SDK for AWS Transfer Family
-
boring2
BoringSSL bindings
-
kftray-portforward
KFtray library with port forwarding logic
-
dimpl
DTLS 1.2/1.3 implementation (Sans‑IO, Sync)
-
certon
Automatic HTTPS/TLS certificate management via the ACME protocol
-
hyper-openssl
Hyper TLS support via OpenSSL
-
huginn-net-tls
TLS fingerprinting and JA4 analysis for huginn-net
-
rama-tls-rustls
tls implementations for rama using rustls
-
reqwless
HTTP client for embedded devices
-
kftray-http-logs
HTTP logging library for KFtray
-
kftray-commons
KFtray commons
-
kftui
KFtray TUI is a Rust application that manage multiple kubectl port forward configurations
-
security-framework-sys
Apple
Security.frameworklow-level FFI bindings -
tcp-stream
std::net::TcpStream on steroids
-
kftray-helper
Privileged helper binary for KFTray
-
rustls-acme
TLS certificate management and serving using rustls
-
kftray-network-monitor
Network monitoring and management for KFtray
-
ct-merkle
append-only log described in the Certificate Transparency specification (RFC 6962)
-
fluvio-future
I/O futures for Fluvio project
-
tonic-tls
TLS for tonic gRPC
-
hyper-http-proxy
A proxy connector for Hyper-based applications
-
gday
Command line tool to securely send files (without a relay or port forwarding)
-
slinger
An HTTP Client for Rust designed for hackers
-
domain-fronting
Domain fronting client and server implementation for tunneling connections through HTTP POST requests
-
tencrypt-cli
Command-line interface for tencrypt certificate issuance and reconcile flows
-
jaws
JSON Algorithms and Web Signing
-
noxtls-crypto
Internal implementation crate for noxtls: hash, symmetric cipher, public-key, and DRBG primitives
-
trans_proxy
Transparent proxy with upstream HTTP CONNECT and SOCKS5 proxy support (macOS pf, Linux nftables)
-
ktls
Configures kTLS for tokio-rustls client and server connections
-
tencrypt-metrics-snapshot
One-shot metrics snapshot CLI for tencrypt state files
-
boring-sys
FFI bindings to BoringSSL
-
purecrypto
A pure-Rust cryptography toolkit with no foreign-code dependencies, from constant-time primitives up to keys, X.509 and TLS
-
native-ossl
Native Rust idiomatic bindings to OpenSSL
-
rama-boring
BoringSSL bindings for Rama
-
anytls
A proxy protocol that attempts to mitigate the TLS in TLS fingerprinting problem
-
tokio-xmpp
Asynchronous XMPP for Rust with tokio
-
webpki
Web PKI X.509 Certificate Verification
-
tokio-boring
SSL streams for Tokio backed by BoringSSL
-
hyper-tls
Default TLS implementation for use with hyper
-
tonic-rustls
Provide support for custom rustls configs in tonic servers and clients
-
android-auto
implementing the android auto protocol
-
compio-py-dynamic-openssl
Dynamic OpenSSL implementation for compio-py
-
embedded-tls
TLS 1.3 client with no_std support and no allocator
-
yacme
ACME client
-
aws-kms-tls-auth
package for performing pre-shared key TLS authentication through AWS Key Management Service (KMS)
-
rustpython-stdlib
RustPython standard libraries in Rust
-
rmqttc
client for the MQTT V5 protocol. based on rumqttc
-
dcap-qvl-webpki
Fork of rustls-webpki to support single cert CRL check
-
vh
VHost manager for local development
-
blasthttp
Offensive-first HTTP library with Python bindings
-
reqrio
A lightweight, high-performance, fingerprint-based HTTP request library
-
rustls-cng
Windows CNG API bridge for rustls
-
wolfcrypt-tls
Safe Rust TLS API backed by wolfSSL
-
wasmtime-wasi-tls
Wasmtime implementation of the wasi-tls API
-
acme-tiny-rs
A tiny ACME client in Rust to issue and renew TLS certs from Let's Encrypt
-
libp2p-quic
TLS based QUIC transport implementation for libp2p
-
rustls-aws-lc-rs
An aws-lc-based crypto provider for rustls
-
rustls-ring
A *ring*-based crypto provider for rustls
-
async-pop
Pop3 compatible client
-
dicom-ul
Types and methods for interacting with the DICOM Upper Layer Protocol
-
recon-cli
Versatile network reconnaissance CLI: HTTP/TLS/DNS, multi-protocol probes, and a Rhai script engine
-
tls-api
TLS API without implementation
-
kcr_flows_netobserv_io
Kubernetes Custom Resource Bindings
-
spiffe-rustls
SPIFFE-based mutual TLS integration for rustls
-
rusmes-imap
Async IMAP4rev2 server for RusMES — RFC 9051 compliant with CONDSTORE, QRESYNC, UIDPLUS, MOVE, IDLE, NAMESPACE, and SPECIAL-USE extensions
-
btls
BoringSSL bindings
-
nzb-nntp
Async NNTP client with TLS, pipelining, connection pooling, and multi-server support
-
noxtls
TLS/DTLS protocol and connection state machine for the noxtls Rust stack
-
firewall
Connection rejection abstraction
-
curlview
A Rust-powered HTTP performance analyzer that visualizes timing metrics in a human-readable format
-
cert-store
CLI-based certificate store. Inspired by Password Store.
-
hyper-boring
Hyper TLS support via BoringSSL
-
socket-tools-mcp
MCP server for multi-turn socket session management
-
rustls-ffi
Rustls bindings for non-Rust languages
-
parse_layer7
parsing layer 7 packets comming from UDP OR TCP payloads
-
rusmes-acme
ACME v2 client for RusMES — automatic TLS certificate provisioning and renewal with HTTP-01 and DNS-01 challenge support via Let's Encrypt
-
noxy
HTTP forward and reverse proxy with a pluggable tower middleware pipeline
-
tokio-boring2
SSL streams for Tokio backed by BoringSSL
-
liburlx
A memory-safe URL transfer library — idiomatic Rust reimplementation of libcurl
-
tokio-postgres-generic-rustls
rustls-backed TLS for tokio-postgres without a required crypto backend
-
hyper-custom-cert
A small, ergonomic HTTP client wrapper around hyper with optional support for custom Root CAs and a dev-only insecure mode for self-signed certificates
-
async-openssl
SSL streams for async IO backed by OpenSSL
-
kern
General library for Rust
-
pkix
TLS Certificate encoding and decoding helpers
-
boring-rustls-provider
A BoringSSL-based rustls crypto provider with optional FIPS and post-quantum support
-
qcert
generating test key/certificate pairs
-
pqready
A cross-platform CLI tool to test for quantum-secure TLS/HTTPS encryption support
-
pingora-rustls
RusTLS async APIs for Pingora
-
certradar-cli
Certificate transparency and SSL/TLS security analysis CLI tool
-
tencrypt-core
Core types and state-machine logic for tencrypt certificate workflows
-
wasmtime-wasi-tls-nativetls
Wasmtime implementation of the wasi-tls API, using native-tls for TLS support
-
ldap-client
Async LDAPv3 client for Rust
-
mailrs-tls-reload
Hot-reloadable rustls ServerConfig via arc-swap. Atomic cert/key rotation without dropping in-flight connections. Plus PEM file loader. Use with ACME, Let's Encrypt renewal hooks, or any cert-rotation flow.
-
gel-stream
streaming data between clients and servers
-
redis-universal-client
wrapper around Client and ClusterClient, like go-redis UniversalClient
-
rigetti-hyper-proxy
A proxy connector for Hyper-based applications
-
mssql-tls
TLS negotiation for SQL Server connections (TDS 7.x and 8.0)
-
axum-server-mtls
mTLS peer certificate extraction for axum-server. Wraps RustlsAcceptor to inject client certificates into request extensions.
-
pqaudit
TLS post-quantum readiness auditor
-
pingora-openssl
OpenSSL async APIs for Pingora
-
fastcert
zero-config tool for making locally-trusted development certificates
-
tls-api-stub
TLS API implementation that returns error on any operation
-
fetch_hyper
Hyper-based HTTP transport utilities for fetch
-
variant-ssl
Bindings for OpenSSL variants such as BoringSSL / AWS-LC / Tongsuo
-
guise
Canonical browser-persona substrate — HTTP / browser / mobile-Frida planes — for the Santh scanner fleet
-
cloudiful-server
Rust web server bootstrap crate with Actix and Axum adapters
-
primp-h2
A fork of the HTTP/2 client and server library from hyperium
-
clienthello
Extract the TLS SNI from QUIC Initial datagrams without performing a handshake
-
mailrs-acme
High-level ACME (RFC 8555 / Let's Encrypt) orchestration: account load-or-create, HTTP-01 cert provisioning, expiry monitoring, periodic renewal task. Pairs with mailrs-tls-reload for…
-
elasticsearch_exporter
Proper Elasticsearch exporter
-
doggygallery
A secure, beautiful media gallery server with TLS 1.3, HTTP Basic Auth, automatic light/dark mode, lazy loading, and pagination
-
anytls-rs
Async TLS proxy with SOCKS5 support for privacy and security
-
philharmonic-connector-router
Per-realm HTTP dispatcher for the Philharmonic connector layer. Terminates TLS and forwards traffic to connector service instances inside the realm.
-
rama-boring-tokio
SSL streams for Tokio backed by BoringSSL in function of Rama
-
fastnet
Ultra-low latency encrypted networking for real-time games. TLS 1.3 + ChaCha20-Poly1305 with ~15µs RTT.
-
ktls-stream
Streamabstraction for implementing Linux kernel TLS (kTLS) offload -
pingora-boringssl
BoringSSL async APIs for Pingora
-
bbwebservice
Rust minimal dependencies port of the bbwebservice microframework
-
rusmes-smtp
Async SMTP server for RusMES — RFC 5321 compliant with STARTTLS, AUTH (PLAIN/LOGIN/CRAM-MD5/SCRAM-SHA-256), PIPELINING, DSN, and BDAT/CHUNKING
-
mbedtls-smx
Idiomatic Rust wrapper for MbedTLS, allowing you to use MbedTLS with only safe code while being able to use such great Rust features like error handling and closures. Building on MbedTLS's focus on embedded use…
-
blaze-ssl-async
Legacy SSLv3 bare minimum implementation
-
nginx-discovery
Parse, analyze, and extract information from NGINX configurations
-
rsnova
A lightweight tunnel/proxy using TLS mux and QUIC
-
turn-client-rustls
TURN protocol in a sans-IO fashion (Rustls)
-
tencentcloud
generic sdk
-
rust-tls-duplex-stream
Full Duplex stream Wrapper around rust-tls
-
claw-transport
Async byte-stream transport trait with pluggable TLS backends
-
s2n-tls-tokio
TLS streams for Tokio built on top of s2n-tls
-
impcurl
Safe Rust wrapper for libcurl-impersonate WebSocket handshake, send and recv
-
qssl
Pure Rust post-quantum TLS — zero C code. ML-KEM, ML-DSA, SLH-DSA, Falcon. FIPS 203/204/205/206 compliant. 100 Lean 4 theorems.
-
hermes-broker-client
gRPC client library for the Hermes message broker — publisher and subscriber
-
grpcio
language implementation of gRPC, base on the gRPC c core library
-
sagitta
Rust framework for building analytical data services on Arrow Flight and DataFusion
-
mlkem-tls
X25519MLKEM768 / X25519MLKEM1024 hybrid post-quantum kem per draft-ietf-tls-ecdhe-mlkem, in pure rust
-
proxifier-rs
proxy client library to relay network packets towards a destination target using a proxy. With built-in support for TLS.
-
atlas-rs
attested TLS (aTLS) core library for verifying TEE attestations over TLS connections
-
mikrotik-embassy
Embassy async embedded client for MikroTik RouterOS API
-
acme-rfc8555
Provision certificates from ACME providers
-
turn-client-openssl
TURN protocol in a sans-IO fashion (openssl)
-
httprs
A fast simple command line http server tool
-
praxis-proxy-tls
TLS configuration types and validation for Praxis
-
secure_network
TLS policy validation, SPKI certificate pinning, and cleartext traffic detection
-
camo-rs
Camo proxies insecure HTTP images over HTTPS, preventing mixed content warnings on secure pages
-
impersonate-rs
wrapper for curl-impersonate, providing browser fingerprinting capabilities
-
hotaru_tls
TLS transport for the Hotaru framework
-
pkix-profiles
CA/Browser Forum and RFC certificate profile policies for pkix-chain
-
primp-rustls
A fork of the original rustls crate
-
cipherrun
A fast, modular, and scalable TLS/SSL security scanner written in Rust
-
tls_root_primer
Triggers Windows's automatic root certificate installation for Rust applications, fixing TLS issues on clean systems
-
praxis-proxy-core
Configuration, error types, and server factory for Praxis
-
rusmes-pop3
Async POP3 server for RusMES — RFC 1939 compliant with APOP, STLS (STARTTLS), and CAPA extension support
-
compio-tls
TLS adaptor with compio
-
wae-request
WAE Request - HTTP 客户端封装,支持 TLS
-
deno_tls
TLS for Deno
-
local-ssl
Local HTTPS certificate generation for development — pair with local-dns
-
https-wrapper
Minimalistic HTTPS reverse proxy that adds TLS encryption to any HTTP server
-
sslenum
SSL certificate Extractor
-
turn-server-openssl
TURN server protocol in a sans-IO fashion (OpenSSL)
-
lazy-acme
A daemon that keeps your TLS certificates always fresh with Let's Encrypt and lego
-
ttfb
+ CLI utility to measure the TTFB (time to first byte) of HTTP(S) requests. This includes data of intermediate steps, such as the relative and absolute timings of DNS lookup, TCP connect, and TLS handshake.
-
ldap-client-cli
Command-line LDAP client
-
rustls-pq-addon
A pure-rust implementation of post-quantum hybrid TLS key exchange groups for use with rustls
-
wasmtime-wasi-tls-openssl
Wasmtime implementation of the wasi-tls API, using OpenSSL for TLS support
-
rustls-rustcrypto
Pure Rust cryptography provider for the Rustls TLS library using algorithm implementations from the RustCrypto organization
-
https_proxy
Stealth HTTPS forward proxy with automatic Let's Encrypt TLS and nginx camouflage
-
rustls-ccm
CCM and CCM-8 cipher suites for rustls (TLS 1.2 and TLS 1.3)
-
muxtls
Multiplexed streams over TLS/TCP
-
wafrift-fingerprint
Browser and TLS JA3/JA4 fingerprint rotation profiles for WAF evasion
-
corevpn-protocol
OpenVPN-compatible protocol implementation for CoreVPN
-
ingress-tls
Kubernetes AdmissionControl webhook to validate or mutate Ingress/Gateway to ensure it contains TLS setup
-
warm_channels
Always-ready HTTP client channels for gRPC or other RPC-like requests
-
sslx
The modern way to work with certificates and TLS
-
chagle
A reverse proxy for NAT traversal
-
reqtls
A tls lib
-
murmur-wasm
WebAssembly probe runtime for Murmur
-
aranya-internal-rustls
Fork of rustls with PSK support for internal usage
-
derusted
Programmable HTTPS interception and traffic inspection engine for security-critical applications
-
zlayer-proxy
High-performance reverse proxy with TLS termination and L4/L7 routing
-
boring-vendit
BoringSSL bindings
-
turn-client-dimpl
TURN protocol in a sans-IO fashion (dimpl)
-
quickcert
For generating test key/certificate pairs
-
tls-api-native-tls
TLS API implementation over native-tls crate
-
rivven-client
High-performance async client for Rivven event streaming platform
-
rustls-tpm-signer
A package that allows to use a TPM as a custom signer in rustls and tonic
-
acme-tls-alpn-01
Auto TLS certificate renewal with ACME TLS-ALPN-01
-
rmqtt-net
Basic Implementation of MQTT Server
-
soth-mitm
Rust intercepting proxy crate with deterministic handler/event contracts for SOTH
-
rustls-dangerous
A dangerous implementation of ServerCertVerifier for rustls that disables all certificate validation. WARNING: Development and testing only!
-
monoio-transports
Monoio Transporter
-
certreplace
CLI tool for replacing x509 certificates and their private keys
-
trojan
protocol
-
s2n-tls-sys
A C99 implementation of the TLS/SSL protocols
-
masaka
A highly modular, no-std async MQTT client
-
datapipe
Stream data from here to there
-
bertie
Minimal TLS 1.3 implementation
-
rustls-channel-resolver
single-cert channel-ish rustls resolver for live-reloading certificate files
-
rustyfixs
FIX-over-TLS (FIXS) support for
rustyfix -
wasm-smtp-tokio
Tokio + rustls socket adapter for wasm-smtp
-
libtls
Rust bindings for LibreSSL's libtls
-
websocket-relay
A WebSocket-to-TCP relay server with TLS support and domain-based routing
-
n5i-apps
Utils for working with n5i apps
-
brass-aphid-wire-decryption
do runtime decryption of TLS conversations, and helpers for popular TLS libraries
-
p2ps
Easy to implement TLS security for p2p connections
-
rustls-fork-shadow-tls
Rustls is a modern TLS library written in Rust
-
crab-kafka
Forward <TCP|UDP> + TLS traffic to kafka
-
lexe-tls
Lexe TLS configs, certs, and utilities
-
fetch_tls
TLS APIs for the fetch crate
-
cloudsqlconn
Cloud SQL connector for Rust
-
trojan-server
High-performance Trojan protocol server
-
openssl-ktls
Openssl KTLS support (with tokio)
-
alloydbconn
AlloyDB connector for Rust
-
servive
A stupid simple program to serve files over HTTP
-
acmer-server
ACME TLS certificates proxy server
-
hyper-proxy
A proxy connector for Hyper-based applications
-
tls-hot-reload
Tiny crate that brings wait- and lock-free TLS certificate hot-reloading for rustls
-
flowgger
fast, simple and lightweight data collector
-
karyon_async_rustls
Async rustls wrapper supporting both smol and tokio runtimes for the Karyon library
-
noxtls-psa
Internal implementation crate for noxtls: PSA Crypto adapter and provider abstractions
Try searching with DuckDuckGo.