Open-source zero trust networking for applications and infrastructure.
OpenZiti is a platform for building secure, zero-trust connectivity into any application or network. Every connection is authenticated with cryptographic identity, authorized by policy, and encrypted end-to-end.
In traditional networking, services are exposed, and security is layered around them. OpenZiti inverts this: services are invisible by default, and network paths exist only once an identity is fully authorized, whether that identity belongs to a user, service, device, or workload.
OpenZiti is fully open-source under the Apache 2.0 license. All core networking functionality is in the open-source project. NetFoundry, which created and sponsors OpenZiti, offers a managed service built on the same platform.
| Repository | Description |
|---|---|
| openziti/ziti | Core platform: controller, edge routers, CLI |
| Repository | Language |
|---|---|
| sdk-golang | Go |
| ziti-sdk-c | C |
| ziti-sdk-jvm | Java / Kotlin / Android |
| ziti-sdk-swift | Swift / iOS |
| ziti-sdk-nodejs | Node.js |
| ziti-sdk-csharp | C# / .NET |
| ziti-sdk-py | Python |
| Repository | Description |
|---|---|
| ziti-tunnel-sdk-c | Linux tunneler and core tunneler SDK |
| ziti-tunnel-apple | macOS and iOS edge clients |
| desktop-edge-win | Windows desktop edge client |
| Repository | Description |
|---|---|
| ziti-doc | Documentation site source |
| security | Vulnerability disclosure policy and incident response process |
- Discourse Forum — Questions, discussions, and help
- YouTube — Tutorials and demos
- Blog — Project updates and deep dives
- Twitter/X — News and announcements
OpenZiti is developed and open-sourced by NetFoundry, Inc.
