Top 22 C Encryption Projects
-
There are many notable open-source projects (SSLyze, CipherScan, testssl.sh, tls-scan, …) and several SaaS solutions (CryptCheck, CypherCraft, Hardenize, ImmuniWeb, Mozilla Observatory, SSL Labs, …) to do a security setting analysis, especially when we are talking about TLS, which is the most common and popular cryptographic protocol. However, most of these tools heavily depend on one or more versions of one or more cryptographic protocol libraries, like GnuTLS, OpenSSL, or wolfSSL. But why is this such a problem?
-
see there: https://github.com/borgbackup/borg/releases/tag/1.2.0b4
-
OPS
OPS - Build and Run Open Source Unikernels. Quickly and easily build and deploy open source unikernels in tens of seconds. Deploy in any language to any cloud.
-
-
For the most part this was just an experiment. EncFS is effectively unmaintained at this point and the last security audit in 2014 was not flattering. I'd prefer VeraCrypt, but they are missing features needed for Trezor. Other warnings pertain to the hybrid-MBR. Tails explicitly abandoned this in favor of cleaner solutions. I also set the protective MBR entry to 0x42 (spanning filesystem) instead of 0xEE (protective GPT). The genius of the windows AutoMount service prompts to format the 0xEE partition every time it is seen by the OS. Setting it to 0x42 causes AutoMount to ignore it, but it causes VolMgr to think there is a broken spanning volume somewhere. You won't see this unless you go digging, but if you do dig, don't panic, it's the 0x42 entry on your SD. Just yank it out and relax. Perhaps I can find a partition type-id later that windows will ignore without spamming the error log.
-
-
Project mention: E2E encrypted voice and chat service similar to Discord/Slack? | reddit.com/r/PrivacyGuides | 2021-10-25
You could use a Tox front end like qTox or Toxic. It is a fully encrypted end-to-end communication protocol that allows text, voice, and video chat. The github page for the Tox protocol has some useful caveats about the its security.
-
wolfssl
The wolfSSL library is a small, fast, portable implementation of TLS/SSL for embedded devices to the cloud. wolfSSL supports up to TLS 1.3!
There are many notable open-source projects (SSLyze, CipherScan, testssl.sh, tls-scan, …) and several SaaS solutions (CryptCheck, CypherCraft, Hardenize, ImmuniWeb, Mozilla Observatory, SSL Labs, …) to do a security setting analysis, especially when we are talking about TLS, which is the most common and popular cryptographic protocol. However, most of these tools heavily depend on one or more versions of one or more cryptographic protocol libraries, like GnuTLS, OpenSSL, or wolfSSL. But why is this such a problem?
-
SonarLint
Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.
-
Themis
Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.
Now, the real world work starts. We introduce interns to the world of popular cryptographic libraries, help them to make their first OSS contributions, and let them practice with our cryptographic library Themis which provides a high-level crypto API on 14 languages.
-
LibTomCrypt
LibTomCrypt is a fairly comprehensive, modular and portable cryptographic toolkit that provides developers with a vast array of well known published block ciphers, one-way hash functions, chaining modes, pseudo-random number generators, public key cryptography and a plethora of other routines.
Project mention: What is the difference between sha512 and sha512_256? | reddit.com/r/cryptography | 2021-04-24The open source library libtomcrypto has two separate implementations of sha512. What is the difference between these implementations? Which is the version that would be most typically used?
-
-
Project mention: What tools / utilities have you written that you use regularly? | reddit.com/r/commandline | 2021-09-17
enchive: encrypted personal archive/backup.
-
Project mention: XMPP: The secure communication protocol that respects privacy | news.ycombinator.com | 2022-01-10
the omemo support in pidgin is just through a plugin, as with many recent XEPs. i think people tend to forget that pidgin's focus is being a multi-protocol messenger. it ships with XMPP support, but that mostly includes the base.
i wrote that omemo plugin and tbh I am pretty burned out. so many moving parts, it's hell to debug and i'm not even sure where to go next with it. (plus people keep talking badly about pidgin anyway and i am not sure if it's even worth continuing.) i am very thankful for all the contributions so far, especially the help with packaging it. sorry if someone feels let down.
i feel like this is the right moment to ask: if anyone reading has an idea how to improve the state of things, i'd be happy about some suggestions. the project page is https://github.com/gkdr/lurch
-
Project mention: Show HN: Pgsodium – A Crytographic PostgreSQL Extension | news.ycombinator.com | 2022-01-10
Hey HN, I shared an earlier prototype version of pgsodium but I just released 2.0 and felt this could be a good opportunity to share some updates!
[pgsodium](https://github.com/michelp/pgsodium) 2.0.0 is a postgres extension that uses the [libsodium](https://doc.libsodium.org/) library to provide high-performance, modern cryptography support for PostgreSQL 10+.
2.0.0 includes a ton of new feature and a few bug-fixes:
* Support for [XChaCha20-SIV](https://github.com/jedisct1/libsodium-xchacha20-siv) deterministic nonce-free encryption, this is useful for one-time workflows sacrificing a bit of speed and larger key size without worrying about nonce-handling issues.
-
trice
super fast and tiny embedded device C printf-like trace code (works also inside inerrupts) and real-time PC logging (trace ID visualization)
Project mention: How useful are tool tracing software for RTOS in industry? | reddit.com/r/embedded | 2021-06-25 -
Project mention: How to setup Full-Disk Encryption with TPM (AMD fTPM 2.0) | reddit.com/r/VeraCrypt | 2021-08-24
-
Project mention: Second factor LUKS encryption via Yubikey on Fedora 33 | reddit.com/r/Fedora | 2021-02-07
Found a solution myself: https://github.com/eworm-de/mkinitcpio-ykfde/blob/master/README-dracut.md
-
-
disco-c
A tiny C cryptographic library to encrypt sessions, authenticate messages, sign, hash, etc. based only on SHA-3 and Curve25519
Project mention: STM32 call to memcpy causes hardfault (the call to memcpy itself, not the execution of memcpy) | reddit.com/r/stm32 | 2021-06-14The code below is my modification of the original library code where the assignment to *s2 was replaced by a memcpy. The original code can be found on the library's github.
-
Project mention: Show HN: Pgsodium – A Crytographic PostgreSQL Extension | news.ycombinator.com | 2022-01-10
* Support for [SignCryption](https://github.com/jedisct1/libsodium-signcryption) Sign & Encrypt identity verification. Signcryption goes beyond public key verification to provide identity verification, and negotiating a shared-secret key between two parties to use fast streaming encryption of the payload.
-
Project mention: Show HN: Rvault – secure store using envelope encryption and OTP authentication | news.ycombinator.com | 2021-03-10
-
-
Project mention: r/crypto - My OTP management and assessment command line tool ("er") and dynamic library ("libenoch") for Linux written in C. | reddit.com/r/CryptoToFuture | 2021-06-20
C Encryption related posts
- CryptoLyzer: A comprehensive cryptographic settings analyzer
- Secure your API Gateway APIs mutual TLS
- Remember Stalkers. Anomaly is not the only modification that exists. Still alot of time before Stalker 2 will be released, so if you are bored you can try some of them. My favorite is Lost Alpha and newly released OP 2.2.
- Show HN: Pgsodium – A Crytographic PostgreSQL Extension
- Pgsodium 2.0.0: Modern cryptography for PostgreSQL
- pgsodium 2.0.0: Modern cryptography for PostgreSQL
- Correction holder
Index
What are some of the best open-source Encryption projects in C? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | OpenSSL | 17,423 |
| 2 | BorgBackup | 7,884 |
| 3 | s2n | 4,039 |
| 4 | VeraCrypt | 3,757 |
| 5 | GmSSL | 2,820 |
| 6 | c-toxcore | 1,643 |
| 7 | wolfssl | 1,413 |
| 8 | Themis | 1,413 |
| 9 | LibTomCrypt | 1,194 |
| 10 | Minizip-ng | 865 |
| 11 | enchive | 555 |
| 12 | lurch | 263 |
| 13 | pgsodium | 243 |
| 14 | trice | 149 |
| 15 | VeraCrypt-DCS | 96 |
| 16 | mkinitcpio-ykfde | 80 |
| 17 | CatCrypto | 61 |
| 18 | disco-c | 50 |
| 19 | libsodium-signcryption | 28 |
| 20 | rvault | 22 |
| 21 | crypt_rclone | 5 |
| 22 | Enoch-Root | 1 |
Are you hiring? Post a new remote job listing for free.
