dev101.io

Security & Identity

Password managers, auth providers, secret scanning, VPNs, and vulnerability tooling for shipping secure apps.

33 curated links across 7 sections

Turnkey services and self-hostable tools for the security layer most apps need. Don't roll your own auth; don't plain-text your secrets.

Password managers

The first security tool every team needs.

  • 1Password
    FeaturedPaid

    The enterprise + personal favorite. Developer CLI, SSH agent, SSO, secret references in CI.

    passwordteam
  • Bitwarden
    FeaturedFreemium

    Open-source password manager. Free tier is genuinely usable. Self-hostable (Vaultwarden too).

    passwordopen-source
  • Proton Pass
    Freemium

    Privacy-first password manager from the Proton team. Built-in email aliases.

    passwordprivacy
  • Vaultwarden
    Open-source

    Community Bitwarden-compatible server in Rust. Self-hostable in ~30MB.

    passwordself-hostable

Auth-as-a-service

Drop-in identity for your app.

  • Clerk
    FeaturedFreemium

    Developer-first auth with great React components. Magic links, social, org management.

    authReact
  • Auth0
    Freemium

    The veteran enterprise auth platform (Okta). Endless customization, endless pricing tiers.

    authenterprise
  • WorkOS
    FeaturedFreemium

    Enterprise features (SAML, SCIM, directory sync) as a developer API. Great for B2B SaaS.

    SAMLB2B
  • Better Auth
    Open-source

    TypeScript-first self-hostable auth framework. Rising fast in the Next.js community.

    TypeScriptself-hostable
  • Supabase Auth
    Freemium

    Postgres-backed auth with every provider + magic link. Free with Supabase projects.

    Postgresauth
  • Ory
    Open-source

    Open-source suite covering identity (Kratos), OAuth (Hydra), and permissions (Keto).

    open-sourceauth
  • Keycloak
    Open-source

    The heavyweight open-source IAM. SAML, OIDC, LDAP. Java; run it behind a reverse proxy.

    SSOself-hostable

Secrets management

Keep keys out of env files and off GitHub.

  • Doppler
    FeaturedFreemium

    Developer-friendly secrets manager with CLI + env sync to every platform.

    secretsCLI
  • Infisical
    Open-source

    Open-source alternative to Doppler. Self-hostable, K8s operator, PR checks.

    secretsself-hostable
  • HashiCorp Vault
    Freemium

    Enterprise-grade secrets + PKI + encryption-as-a-service. The heavyweight option.

    secretsenterprise
  • AWS Secrets Manager
    Paid

    AWS-native secret storage with rotation + IAM auth. Default on AWS stacks.

    AWSsecrets
  • 1Password Secrets Automation
    Paid

    Reuse 1Password vaults for CI / production secrets via the Connect server or SDK.

    1Passwordsecrets

Secret scanning & SAST

Catch leaked credentials + vulnerabilities before CI merges them.

  • GitHub Secret Scanning
    FeaturedFree

    Free secret scanning + push protection for every repo. Turn it on today.

    GitHubscanning
  • Gitleaks
    Open-source

    Open-source secret scanner for git repos + pre-commit hooks + CI. Fast, configurable.

    scanningCLI
  • Trufflehog
    Freemium

    Scans git, S3, Docker, GitHub, GitLab for secrets. Verifies live-ness against providers.

    scanning
  • Semgrep
    FeaturedFreemium

    Fast, pattern-based static analysis. Huge free rule library + custom rule DSL.

    SAST
  • Snyk
    Freemium

    Dependency, container, IaC + SAST scanner. Developer-first UX.

    dependenciesSAST

Dependency & vuln scanning

The supply-chain layer.

  • Dependabot
    FeaturedFree

    Free automated dependency updates + security PRs on every GitHub repo.

    GitHubdeps
  • Renovate
    Open-source

    Dependency update bot with more flexible grouping + scheduling than Dependabot.

    depsCI
  • Socket
    Freemium

    Supply-chain security for npm / PyPI. Detects suspicious install scripts + hijacks.

    supply-chain
  • osv.dev
    Free

    Google's open vulnerability database + `osv-scanner` CLI. Multi-ecosystem, free.

    vuln DB

VPN & private networking

Mesh your servers and laptops safely.

  • Tailscale
    FeaturedFreemium

    Zero-config WireGuard mesh VPN. The dev favorite for remote dev environments + homelab.

    meshWireGuard
  • WireGuard
    Open-source

    Modern minimal VPN protocol baked into Linux. Fast, tiny surface area, audited.

    protocolVPN
  • Headscale
    Open-source

    Open-source, self-hosted Tailscale coordination server. Keep your mesh private.

    self-hostablemesh
  • Cloudflare Zero Trust
    Freemium

    ZTNA with a huge free tier. Expose internal services without opening ports.

    ZTNACloudflare

Monitoring, abuse & audit

Detect and respond.

  • Sentry
    Freemium

    Primarily error tracking, but also catches perf regressions + session anomalies.

    errors
  • BetterStack
    Freemium

    Uptime + on-call + incident mgmt in one product. Great SMB fit.

    uptimeon-call
  • Have I Been Pwned
    FeaturedFreemium

    Free breach-notification service + API. Check if your users' creds leaked.

    breaches
  • abuse.ch
    Free

    Free threat-intel feeds (URLhaus, MalwareBazaar, ThreatFox). Useful in WAF rules.

    threat-intel

Other resource directories

Links on this page point to third-party sites. We pick them on merit — no affiliate tracking, no paid placements. Spot something outdated or missing? Open an issue.