Displaying 1 to 20 from 62 results

forge - A native implementation of TLS in Javascript and tools to write crypto-based and network-heavy webapps

  •    Javascript

A native implementation of TLS (and various other cryptographic tools) in JavaScript. The Forge software is a fully native implementation of the TLS protocol in JavaScript, a set of cryptography utilities, and a set of tools for developing Web Apps that utilize many network resources.

keyshuffling - Keyshuffling Attack for Persistent Early Code Execution in the Nintendo 3DS Secure Bootchain

  •    TeX

We demonstrate an attack on the secure bootchain of the Nintendo 3DS in order to gain early code execution. The attack utilizes the block shuffling vulnerability of the ECB cipher mode to rearrange keys in the Nintendo 3DS's encrypted keystore. Because the shuffled keys will deterministically decrypt the encrypted firmware binary to incorrect plaintext data and execute it, and because the device's memory contents are kept between hard reboots, it is possible to reliably reach a branching instruction to a payload in memory. This payload, due to its execution by a privileged processor and its early execution, is able to extract the hash of hardware secrets necessary to decrypt the device's encrypted keystore and set up a persistent exploit of the system. Information in this article (especially the keyshuffling vulnerability) is original, independent work unless cited otherwise. Note that the keyshuffling vulnerability detailed here is the same one documented publicly by much of this team including "stuckpixel" (also known as "dark_samus") on sites such as 3DBrew. Additionally, note that the persistence vulnerability detailed here is the same one documented publicly as "arm9loaderhax" by "plutoo", "derrek", and "smea" at the 2015 32c3 conference.




miscreant - Misuse-resistant symmetric encryption library with AES-SIV (RFC 5297) and AES-PMAC-SIV support

  •    TypeScript

A misuse resistant symmetric encryption library designed to support authenticated encryption of individual messages, encryption keys, message streams, or large files using the AES-SIV (RFC 5297), AES-PMAC-SIV, and STREAM constructions. Miscreant is available for several programming languages, including C#, Go, JavaScript, Python, Ruby, and Rust.

sysPass - Systems Password Manager

  •    PHP

Gestor de Claves web basado en PHP para uso empresarial y personal. PHP web based Password Manager for business and personal use.

Azure Table Encryption via Attribute

  •    

SSL isn't enough when storing data in the cloud. You need to protect data-at-rest from anyone who has access to your store. In addition your SSL data may be vulnerable to a man-in-the-middle technology or IT shops that inspect and log the SSL contents. Bluecoat is one examp...


HTML Encrypter

  •    Java

An encryption and decryption application developed in Java. The application uses a number of algorithms to encrypt and decrypt the HTML source code: Blowfish, AES, TEA, Rabbit, MARC 4, Escape/Unescape functions. In addition to the encryption and decryption functions, the ap...

.NET Crypto Library (Devv.Core.Crypto)

  •    DotNet

Devv.Core.Crypto is an encryption library written in VB.NET. It supports all the major Cipher and Hash algorithms: RC2, DES, TripleDES, AES (Rijndael), SHA and MD5. The configuration can be done using the application settings file, and it's quite easy to integrate. Compatible ...

C.A.E.S.A.R.

  •    DotNet

CAESAR (Consolidated AES Automated Runtime) is a user-friendly file encryption software that uses an Advanced Encryption Standard (AES) service to secure data.

PassKeeper

  •    DotNet

A simple C# 2.0 GUI program that manages your usernames and passwords, that is, basically account information. All confidential information is saved using the latest encryption standard, AES (Advanced Encryption Standard), in the highest possible 256-bit strength. Account inf...

WinRT Bouncy Castle

  •    

The Bouncy Castle API provides many cryptoghraphic APIs to every developpers. It is a port targetting WinRT (Windows Store apps & WP8) of the original C# branch

Password Protector

  •    DotNet

Password Protector allows you to securely store all your passwords and usernames in one place using AES256 for encryption, which used in Banks.

Some Kit

  •    

Client library for invoking simple REST services based on URIs only. Simple POCO serialization applied. Asynchronous as well as synchronous (using manual reset events, not synchronization contexts) supported. Target: Full .NET, Silverlight 4 as well as Phone 7 Silverlight.

crypt.io - Encryption enabled browser storage

  •    Javascript

crypt.io implements secures browser storage with the SJCL (Stanford Javascript Crypto Libraries) crypto library. Here are a few examples of use to get you started.

Heimdall - Heimdall is a wrapper around the Security framework for simple encryption/decryption operations

  •    Swift

In Norse mythology, Heimdall is the gatekeeper of Bifröst, the rainbow road connecting Midgard, realm of the humans, to Asgard, the realm of gods. In iOS, Heimdall serves as a gatekeeper between Security framework and the UI, offering a nice wrapper around the C APIs for encrypting, decrypting, signing and verifying messages.

privy - An easy, fast lib to correctly password-protect your data

  •    Python

Privy is a small and fast utility for password-protecting secret data such as API keys, cryptocurrency wallets, or seeds for digital signatures.Say for example you are using GnuPG. You are about to sign a message but it first requires your password. Does your password become the input to instantiate your private key? No, it is first hashed by a secure key derivation function. That hash then becomes the input to a symmetric cipher such as AES which then decrypts your stored private key. That is what Privy does.

mongocrypt - An encryption library for node.js

  •    Javascript

The mongocrypt functions are based on the MongoDB SDK functions. The structure is always the same. You can see each equivalent in the list below.

aes - A JavaScript component for the Advanced Encryption Standard (AES). Important for BIP38

  •    Javascript

A JavaScript component for the Advanced Encryption Standard (AES). Fully compatible with Node.js and the browser (via Browserify).AES is currently one of the most popular block ciper encyrption algorithms. It is relevant to the Bitcoin private key encryption scheme BIP38.