CerberAuthCerberAuth

Identity · Access · Security

Every application has a gate. CerberAuth guards it.

API security, OAuth governance, SCIM provisioning, and user management — in one ecosystem. No blind spots. No afterthoughts.

Get Started Free View on GitHub
6 Products
10+ Integrations
OWASP API Top 10
SCIM 2 Enterprise Ready

The Problem

Three blind spots. One breach away.

Most teams treat identity, access control, and security testing as separate concerns. That gap is where attackers operate.

01

Identity is hard to build right

Rolling your own auth layer takes months and still gets edge cases wrong. The spec is clear. The implementation never is.

02

Security testing is always last

Pen tests happen at the end, when authentication flows are baked in. Findings become debt instead of prevented vulnerabilities.

03

SCIM is chronically deprioritized

Enterprise deals require directory sync. Every team that's lost a deal to "do you support SCIM?" knows this pain.

The Platform

One ecosystem. Every layer of the gate.

Purpose-built tools. Made to work together. Each deployable on its own.

AUMS

Manage users, organizations, audit logs, and access — built for support, ops, and product teams.

  • Identity lifecycle management
  • Session visibility and revocation
  • Granular access control
Explore AUMS
Early Access

Taco

One dashboard for all your OAuth clients. Validate configs, control access, and enforce security policies across your whole team.

  • Client registration and secret rotation
  • Scope and audience governance
  • Token policy enforcement
Explore Taco
Open Source

SCIMply

A SCIM gateway that provisions users directly into your existing databases.

  • SCIM 2.0 compliant
  • Azure AD, Okta, Google Workspace
  • Real-time provisioning & deprovisioning
Explore SCIMply
Open Source

VulnAPI

Find OWASP API Top 10 vulnerabilities before attackers do. Run VulnAPI in CI/CD and get actionable fixes — not just alerts.

  • OWASP API Security Top 10
  • Auth flow attack scenarios
  • CI/CD integration, MIT licensed
Explore VulnAPI
Enterprise

Boadr

SCIM gateway for products that were never built for the enterprise — connect any IdP to Firebase, Supabase, and beyond.

  • SCIM 2.0 compliant endpoint
  • Firebase, Supabase & beyond
  • Okta, Entra ID, Google Workspace
Explore Boadr

Who It's For

Built for the people who guard the gate.

Developers & Engineers

API-first. Sub-5-minute quickstart. Secure by design. Audit every line that touches your auth.

Who It's For

Our core tools are open source, meaning you can fork, audit, and contribute. Your identity layer shouldn't be a vendor's black box.

AppSec & IAM Teams

OWASP API Top 10 coverage built in. Identity-specific attack scenarios. Audit logs for incident response.

Who It's For

Security testing at build time, not bolted on after. Findings become PRs, not slide decks.

CISOs & Enterprise IT

SOC 2 roadmap alignment. Self-hosted and cloud options. You own the infrastructure and audit trail.

Who It's For

Compliance questions answered with code and transparency. Your user data stays within your controlled perimeter.

Engineering Managers

Stop debating build vs. buy. Ship the auth layer in hours, not months. Let your team focus on the product.

Who It's For

Time-to-value measured in hours. Every week spent on auth is a week not spent on differentiation.

Openness

Transparent at the core.

We believe trust in security software must be earned through openness. Our core security and provisioning tools are open source, so every line of code that guards your users is auditable.

Many of our tools are MIT licensed. Fork them. Audit them. Contribute to them.

View on GitHub Join Discord →
Verifiable

Audit Ready

Transparent security core

Zero Lock-in

Standards-Based

OAuth 2.0 & SCIM 2.0

"You can audit every line of code that guards your users."

Ecosystem

Built to integrate. Designed to extend.

CerberAuth runs on open standards — OAuth 2.0, OIDC, SCIM 2.0. It fits your stack.

Auth0 Keycloak AWS Cognito Microsoft Entra ID Supabase Firebase Ory Kratos Ory Hydra Aspnet Core Identity Authjs Next Auth and more...

Technology Partners

First-class integrations with leading identity providers, cloud platforms, and developer tooling.

Dev Agencies

Resell, implement, and support CerberAuth for your clients. Partner program coming soon.

Cloud Marketplace

Deploy from AWS, Azure, and GCP marketplaces. Coming soon.

From the Blog

Latest thinking

All posts →

Azure AD B2C is being retired: What should you do next?

Azure AD B2C is not disappearing overnight, but it is effectively a dead-end platform. This article explains what's actually changing, by when, and most importantly what your options are.

Federation is not just Authentication

Confused about the difference between authentication and identity federation? You're not alone. This article breaks down the concepts in plain language, explains how they work together, and shows why understanding the difference is crucial for your architecture and your users security.

How to use SAML for Single Page Applications and Mobile Apps?

Using SAML for Single Page Applications (SPAs) can be a bit tricky. In this blog post, we explore how to implement SAML for SPAs and provide best practices for securing your application.

Start Building

The gate is already there. Who guards it?

Join teams building identity infrastructure that's auditable, testable, and enterprise-ready from day one.

Start Building Join the Community
Docs GitHub Discord Blog Contact