I compiled a list of open-source post-quantum tools and libraries

We recently had to review our cryptographic stack for long-term compliance. We’re not a bank or a government contractor, but we do handle sensitive data that needs to stay secure for 10+ years.

I fell into a rabbit hole of post-quantum cryptography and ended up writing a fairly deep guide. It covers stuff like Kyber, Dilithium, liboqs, PQClean, and hybrid key exchange with OpenSSL.

I tried to keep it practical includes working code examples, trade-offs, and where the standards are headed including the finalized NIST picks. Also added some notes on real-world use cases.

If anyone here is working on something similar or already rolling out PQC in production, would love to hear what libraries or strategies you're using.