A lightweight tool for bootstrapping Certificate Authorities and managing SSL/TLS certificate requests. It simplifies the creation of root CAs, intermediate CAs, and signed certificates without the configuration overhead of OpenSSL.
Tech Stack
GoSecurity & Passwords
Why certstrap?
• No OpenSSL config files
• Secure-by-default defaults
• Portable Go binary
Limitations
• No automated certificate renewal
• Manual key management
• No web interface
2/27/2026
Last Update
212
Forks
32
Issues
Apache-2.0
License
Financial Leak Detected
Stop the "SaaS Tax"
Your team could be burning cash. Switching to certstrap instantly boosts your runway.
Competitor Cost
-$1,440
/ year (est. based on HashiCorp Vault (PKI Engine))
