Secrets Management Tools

Secure storage and rotation of API keys, tokens, certificates and env variables.

55 tools in this category

1Password logo
1Password

1Password — Secrets Management tool for developers

Medium subscription Free tier
Aembit logo
Aembit

Aembit — workload identity and access management platform for non-human identities and API credentials.

Low custom
Akeyless logo
Akeyless

Akeyless — SaaS secrets management vault with dynamic secrets, zero-knowledge encryption, and multi-cloud gateway sync.

Medium subscription
Ansible Vault logo
Ansible Vault

Ansible Vault — built-in feature of Ansible for encrypting variables and files used in playbooks.

Low free Free tier
AWS Secrets Manager logo
AWS Secrets Manager

AWS Secrets Manager — Managed secrets service rotating RDS, Redshift, and custom credentials with KMS encryption and IAM policies.

Low subscription Free tier
Azure Key Vault logo
Azure Key Vault

Azure Key Vault — Managed HSM and secrets service storing keys, certificates, and connection strings with Azure AD access control.

Low subscription Free tier
Bitwarden logo
Bitwarden

Bitwarden — Open-source password and secrets manager with end-to-end encryption, SSO support, and self-hosting options.

Low freemium Free tier
Certbot logo
Certbot

Certbot — EFFs free tool to automatically obtain and renew Lets Encrypt TLS certificates.

Low free Free tier
Cobo logo
Cobo

Digital asset custody platform offering full custody, MPC and hybrid wallets with DeFi and exchange connectivity via API.

High custom
CyberArk Conjur logo
CyberArk Conjur

CyberArk Conjur — Enterprise secrets management platform with dynamic secrets, RBAC, and audit trails for DevOps pipelines.

High subscription Free tier
Cycode logo
Cycode

Cycode — Software supply chain security platform scanning secrets, IaC, SCA, and SAST across the entire SDLC.

Medium subscription
DigiCert logo
DigiCert

DigiCert — digital certificate provider for TLS, PKI, IoT, and code signing.

Low subscription
Dogtag PKI logo
Dogtag PKI

Dogtag PKI — open source certificate system developed as part of Red Hat Certificate System.

Low free Free tier
Doppler logo
Doppler

Doppler — Universal secrets manager syncing environment variables across clouds, CI pipelines, and local dev with team sharing.

Medium freemium Free tier
Dotenv Vault logo
Dotenv Vault

Dotenv Vault — Encrypted secrets sync service for .env files enabling secure sharing across team members and CI environments.

Medium freemium Free tier
EJBCA logo
EJBCA

EJBCA — open source certificate authority and PKI software by Keyfactor.

Low freemium Free tier
EnVault logo
EnVault

EnVault — lightweight environment variable manager for developer teams and CI/CD.

Low freemium Free tier
EnvKey logo
EnvKey

EnvKey — Secrets Management tool for developers. Specializes in environment management.

Medium freemium Free tier
Exposed logo
Exposed

Exposed — Secure tunneling and secrets management tool for sharing local development environments with collaborators.

Low free Free tier
External Secrets logo
External Secrets

External Secrets — CI/CD for Applications tool for developers. Specializes in Secrets Management.

Low free Free tier
Fortanix logo
Fortanix

Fortanix — confidential computing platform with data security manager for keys, secrets, and tokenization.

High custom
GitGuardian logo
GitGuardian

GitGuardian — Secrets detection platform monitoring GitHub, GitLab, and Bitbucket commits for 350+ credential detector patterns.

Medium freemium Free tier
GlobalSign logo
GlobalSign

GlobalSign — global certificate authority providing PKI, identity, and certificate lifecycle management.

Medium subscription
Google Secret Manager logo
Google Secret Manager

Google Secret Manager — GCP-managed secrets service with versioning, IAM-based access, and audit logging for API keys and credentials.

Medium freemium Free tier
HashiCorp Vault logo
HashiCorp Vault

HashiCorp Vault — Open-source secrets engine providing dynamic database credentials, PKI, and encryption-as-a-service APIs.

Low freemium Free tier
Infisical logo
Infisical

Infisical — Open-source secrets manager with end-to-end encryption, native SDK support, and GitHub Actions integration.

Low freemium Free tier
Keeper Security logo
Keeper Security

Keeper Security — Enterprise password manager and secrets vault with zero-knowledge encryption, SSO, and privileged session recording.

Medium subscription
Keybase Teams logo
Keybase Teams

Keybase Teams — End-to-end encrypted team secrets, file sharing, and messaging using PGP-based identity verification.

Medium free Free tier
Keyfactor logo
Keyfactor

Keyfactor — machine identity management and PKI-as-a-service for certificates and cryptographic keys.

High custom
KeyHippo logo
KeyHippo

KeyHippo — Secrets Management tool for developers. Specializes in api key management.

Low freemium Free tier
Let's Encrypt logo
Let's Encrypt

Lets Encrypt — free, automated, and open certificate authority by the Internet Security Research Group.

Low free Free tier
Localtunnel logo
Localtunnel

Localtunnel — Open-source tool exposing localhost ports over HTTPS for webhook testing and external API callback development.

Low free Free tier
Nitrokey logo
Nitrokey

Nitrokey — open source hardware security keys and HSMs for secrets, SSH, and certificates.

Low free Free tier
OpenBao logo
OpenBao

OpenBao — open source fork of HashiCorp Vault maintained by the Linux Foundation for secrets management.

High free Free tier
OpenZiti logo
OpenZiti

OpenZiti — Open-source zero-trust overlay network embedding application-level security directly into the software fabric.

High free Free tier
PassBolt logo
PassBolt

PassBolt — Open-source team password manager with GPG encryption, RBAC, and self-hosted deployment for organization sharing.

Low freemium Free tier
Proton Pass (SimpleLogin API) logo
Proton Pass (SimpleLogin API)

Password manager + SimpleLogin alias API (end-to-end encrypted).

Low freemium Free tier
Psono logo
Psono

Psono — open source password manager for teams with REST API and client-side encryption.

Low freemium Free tier
Pulumi ESC logo
Pulumi ESC

Pulumi ESC — Environments, Secrets, and Configuration service for managing and composing secrets across clouds and environments.

Low freemium Free tier
Safeheron logo
Safeheron

Self-custody MPC wallet platform using 3-of-3 key-shard architecture with open-source protocol libraries and developer APIs.

Low freemium Free tier
Secrets Store CSI Driver logo
Secrets Store CSI Driver

Secrets Store CSI Driver — Kubernetes SIG project to mount secrets from external vaults as volumes.

High free Free tier
Sectigo logo
Sectigo

Sectigo — commercial certificate authority offering SSL, code signing, and PKI management.

High subscription
Skyflow logo
Skyflow

Data privacy vault delivered as an API for PII, payments, and LLM data protection.

High custom
Smallstep logo
Smallstep

Smallstep — open source PKI, mutual TLS, and SSH certificate authority for zero-trust infrastructure.

Low freemium Free tier
SPIFFE/SPIRE logo
SPIFFE/SPIRE

SPIFFE/SPIRE — CNCF identity framework and reference implementation for workload identity across infrastructure.

Low free Free tier
TeamPass logo
TeamPass

TeamPass — open source collaborative password manager with granular access controls for teams.

Low free Free tier
TeamViewer Engage / Tensor logo
TeamViewer Engage / Tensor

Remote access + IoT connectivity with embedded SDK and Tensor developer APIs.

Medium subscription
Thales payShield logo
Thales payShield

Payment HSM family securing card issuance, transaction processing, tokenization, and key management.

High custom
Trustify logo
Trustify

Trustify — open source PKI and certificate automation platform for internal and public TLS.

Low free Free tier
Ubiq Security logo
Ubiq Security

Ubiq Security — Secrets Management tool for developers. Specializes in encryption.

Medium freemium Free tier
Unbound Security logo
Unbound Security

Unbound Security — MPC-based key management and cryptographic asset security acquired by Coinbase.

High custom
Vault (HashiCorp) logo
Vault (HashiCorp)

Vault (HashiCorp) — CI/CD for Applications tool for developers. Specializes in Secrets Management.

Low freemium Free tier
Venafi logo
Venafi

Venafi — machine identity management platform for certificates, keys, and SSH credentials at scale.

High custom
YubiHSM logo
YubiHSM

YubiHSM — compact, cost-effective hardware security module from Yubico for digital key storage.

Medium subscription
ZeroSSL logo
ZeroSSL

ZeroSSL — free and paid SSL certificate provider with ACME support and REST API.

Low freemium Free tier