Top 23 HTTPS Open-Source Projects

1. Caddy

   1 461 73,224 9.5 Go

   Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS

   

   Project mention: I got tired of setting up SSL for every side project, so I made a 60-second Docker deploy kit | dev.to | 2026-05-19

   The secret is Caddy. Unlike Nginx, Caddy handles SSL automatically — it requests certificates from Let's Encrypt and renews them without any configuration. The entire reverse proxy config is 3 lines:

2. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

3. mkcert

   2 149 58,813 1.9 Go

   A simple zero-config tool to make locally trusted development certificates with any names you'd like.

   

   Project mention: mkdev: trusted HTTPS for localhost, mapped by name | dev.to | 2026-05-24

   On install it generates an ECDSA P-256 root CA at ~/.mkdev/ca/ (private key written 0o400, owner-read only) and installs it into the OS-native trust store. The trust-store integration — Keychain via security on macOS, the CA-bundle dirs plus update-ca-* on Linux, the ROOT store via crypt32.dll on Windows — is adapted from mkcert (BSD-3, credited in LICENSE-MKCERT). That layer is the genuinely OS-specific part and reusing it saved a lot of pain.

4. libcurl

   3 363 42,065 10.0 C

   A command line tool and library for transferring data with URL syntax, supporting DICT, FILE, FTP, FTPS, GOPHER, GOPHERS, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, MQTT, MQTTS, POP3, POP3S, RTSP, SCP, SFTP, SMB, SMBS, SMTP, SMTPS, TELNET, TFTP, WS and WSS. libcurl offers a myriad of powerful features

   

   Project mention: I Will Not Add Query Strings to Your URLs | news.ycombinator.com | 2026-05-09

   bagder merged a fix to curl in response to my report: https://github.com/curl/curl/commit/b079595f2e903b820a027a68...

   Sorry for not believing you initially! I'm very surprised that was in there

5. nps

   4 1 34,065 0.0 Go

   一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发，可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面，内网dns解析、内网socks5代理等等……，并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy server, with a powerful web management terminal. (by ehang-io)

   

6. Echo

   5 138 32,430 8.8 Go

   High performance, minimalist Go web framework

   

   Project mention: Go Web Frameworks in Production: Performance Benchmarks and Real-World Trade-offs | dev.to | 2026-03-19

   Echo is a high-performance web framework that strikes an excellent balance between performance and features. It supports HTTP/2 out of the box and provides flexible middleware options.

7. Nginx

   6 139 30,595 9.1 C

   The official NGINX Open Source repository.

   

   Project mention: Codex Discovered a Hidden HTTP/2 Bomb | news.ycombinator.com | 2026-06-02

   Not ideal.

   This appears to be fixed as of April (at least for Apache). [0].

   [0] - https://github.com/nginx/nginx/commit/365694160a85229a7cb006...

8. nginxconfig.io

   7 5 28,288 5.7 JavaScript

   ⚙️ NGINX config generator on steroids 💉

   

9. gopeed

   8 2 24,831 8.8 Go

   A fast, modern download manager for HTTP, BitTorrent, Magnet, and ed2k. Cross-platform, built with Golang and Flutter.

   

   Project mention: Gopeed – A Modern Download Manager | news.ycombinator.com | 2025-06-25

10. cpp-httplib

    9 38 16,557 9.6 C++

    A C++ header-only HTTP/HTTPS server and client library

    

11. ecapture

    10 15 15,221 8.5 C

    Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

    

    Project mention: PCAPdroid VS ecapture - a user suggested alternative | libhunt.com/r/PCAPdroid | 2025-10-07

12. got

    11 19 14,915 8.8 TypeScript

    🌐 Human-friendly and powerful HTTP request library for Node.js

    

    Project mention: Show HN: I ported Tree-sitter to Go | news.ycombinator.com | 2026-02-25

    I'd be more concerned about confusing it with https://github.com/sindresorhus/got, which is well-established (15k stars on GitHub is nothing to sneeze at).

13. nginx-admins-handbook

    12 2 14,148 2.2 Shell

    How to improve NGINX performance, security, and other important things.

    

    Project mention: Nginx Admin's Handbook | news.ycombinator.com | 2025-11-15

14. hotel

    13 1 10,021 5.1 JavaScript

    🏩 A simple process manager for developers. Start apps from your browser and access them using local domains

    

15. libhv

    14 0 7,517 7.5 C

    🔥 比libevent/libuv/asio更易用的网络库。A c/c++ network library for developing TCP/UDP/SSL/HTTP/WebSocket/MQTT client/server.

    

16. cowboy

    15 16 7,504 6.1 Erlang

    Small, fast, modern HTTP server for Erlang/OTP.

    

    Project mention: Standalone HTTP Server in Elixir with Bandit | dev.to | 2026-06-03

    bandit has been created as an alternative to cowboy, fully coded in Elixir and designed to be integrated and highly compatible with the Phoenix framework. When it came out few years ago, the community did a lot of noise and I never find a moment to test it. bandit  supports HTTP/1.1 and HTTP/2 natively. WebSockets protocols support can be added with the help of WebSock and WebSockAdapter modules. At this time, it does not support HTTP/3 (yet?).

17. warpgate

    16 23 7,098 9.6 Rust

    Fully transparent SSH, HTTPS, Kubernetes, MySQL and Postgres bastion/PAM that doesn't need additional client-side software

    

    Project mention: Warpgate 0.24 (a client-less bastion) adds a web SSH terminal | news.ycombinator.com | 2026-06-02

18. gost

    17 3 6,913 8.3 Go

    GO Simple Tunnel - a simple tunnel written in golang (by go-gost)

    

19. haproxy

    18 21 6,614 10.0 C

    HAProxy Load Balancer's development branch (mirror of git.haproxy.org)

    

    Project mention: When Reverse Proxies Surprise You: Hard Lessons from Operating at Scale | news.ycombinator.com | 2025-11-18

    Very interesting read! But I want to point out a small correction - the DNS collapse issue at HAProxy also had some O(N^3) code paths, which is just mind-blowing.

    Also, I believe this should be the correct GitHub issue link - https://github.com/haproxy/haproxy/issues/1404

    > Production Lesson: Code that "works fine" at small scale may still hide O(N²) or worse behavior. At hundreds or thousands of nodes, those costs stop being theoretical and start breaking production.

20. reqable-app

    19 3 6,391 0.0

    Reqable issue track repo

    

    Project mention: Charles Proxy | news.ycombinator.com | 2025-12-19

    I'm also using Reqable, for those interested check it out: https://reqable.com

21. curl-impersonate

    20 38 5,950 6.2 Python

    curl-impersonate: A special build of curl that can impersonate Chrome & Firefox

    

    Project mention: The privacy nightmare of browser fingerprinting | news.ycombinator.com | 2025-11-22

    JA3/JA4 are useless now.

    At best they identify the family of browser, and spoofing it is table stakes for bad actors. https://github.com/lwthiker/curl-impersonate

22. AndroidNetworking

    21 0 5,905 2.5 Java

    🚀 A Complete Fast Android Networking Library that also supports HTTP/2 🚀

    

23. curl_cffi

    22 14 5,798 8.8 Python

    Python binding for curl-impersonate fork via cffi. A http client that can impersonate browser tls/ja3/http2 fingerprints.

    

    Project mention: Bing Search API Replacement: scrape SERP results for $1.05/1K | dev.to | 2026-05-31

    1. TLS fingerprint inspection. Bing inspects the JA3/JA4 signature of your TLS handshake. Python's stdlib ssl, requests, and httpx emit fingerprints no real browser produces — the server returns 403 before reading the query string. We route every request through curl-cffi's AsyncSession, impersonating Chrome 131, Chrome 124, or Firefox 147 TLS + HTTP/2 SETTINGS frames at the socket level, rotating profiles per page to reduce burst correlation.

24. certmagic

    23 16 5,565 6.7 Go

    Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal

    

    Project mention: LetsEncrypt – Expiration Notification Service Has Ended | news.ycombinator.com | 2025-06-30

    It's unfortunate to see this go away, but understandable given the costs involved. If you use a web server like Caddy, you can automate certificate renewal (https://caddyserver.com/docs/automatic-https). If notifications are important, they also provide an event subscription system (https://github.com/caddyserver/certmagic#events) so you can subscribe to cert-related events, run custom code, trigger event handlers, etc.

HTTPS related posts

• Bing Search API Replacement: scrape SERP results for $1.05/1K

  1 project | dev.to | 31 May 2026

• mkdev: trusted HTTPS for localhost, mapped by name

  3 projects | dev.to | 24 May 2026

• Using dio HTTP Client in Dart

  9 projects | dev.to | 15 May 2026

• Self-Signed Certificates for localhost Development

  1 project | dev.to | 6 May 2026

• Docker basics: Using mkcert and caddy with docker compose to host web services over HTTPS for local development

  4 projects | dev.to | 21 Apr 2026

• Deploying Mercure alongside Caddy on a shared VPS

  3 projects | dev.to | 29 Mar 2026

• My minute-by-minute response to the LiteLLM malware attack

  2 projects | news.ycombinator.com | 26 Mar 2026
• A note from our sponsor - SaaSHub
  www.saashub.com | 12 Jun 2026

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com