Top 23 C Encryption Projects

• OpenSSL

  149 24,090 9.9 C

  TLS/SSL and crypto library

  

  Project mention: Heartbleed and XZ Backdoor Learnings: Open Source Infrastructure Can Be Improved Efficiently With Moderate Funding | dev.to | 2024-04-07

  Today, April 7th, 2024, marks the 10-year anniversary since CVE-2014-0160 was published. This security vulnerability known as "Heartbleed" was a flaw in the OpenSSL cryptography software, the most popular option to implement Transport Layer Security (TLS). In more layman's terms, if you type https:// in your browser address bar, chances are high that you are interacting with OpenSSL.

• VeraCrypt

  74 6,169 9.3 C

  Disk encryption with strong security based on TrueCrypt

  

  Project mention: VeraCrypt: Free, open source, disk encryption for Windows, Mac OS X, Linux | news.ycombinator.com | 2023-10-01

  [1] - https://github.com/veracrypt/VeraCrypt

• InfluxDB

  www.influxdata.com

  sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• GmSSL

  1 4,694 8.9 C

  支持国密SM2/SM3/SM4/SM9/SSL的密码工具箱

• s2n

  9 4,446 9.4 C

  An implementation of the TLS/SSL protocols

  

  Project mention: S2n-TLS – A C99 implementation of the TLS/SSL protocol | /r/programming | 2023-12-05

• wolfssl

  12 2,166 9.9 C

  The wolfSSL library is a small, fast, portable implementation of TLS/SSL for embedded devices to the cloud. wolfSSL supports up to TLS 1.3!

  

• c-toxcore

  20 2,156 9.5 C

  The future of online communications.

  

  Project mention: Tox Core is one of the nicest-to-read C codebases | news.ycombinator.com | 2024-03-22

• magma

  1 1,820 3.4 C

  The magma server daemon, is an encrypted email system with support for SMTP, POP, IMAP, HTTP and MOLTEN,. Additional support for DMTP and DMAP is currently in active development. (by lavabit)

  

• WorkOS

  workos.com

  sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• Themis

  2 1,807 5.9 C

  Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.

  

• LibTomCrypt

  3 1,477 7.3 C

  LibTomCrypt is a fairly comprehensive, modular and portable cryptographic toolkit that provides developers with a vast array of well known published block ciphers, one-way hash functions, chaining modes, pseudo-random number generators, public key cryptography and a plethora of other routines.

  

• Minizip-ng

  0 1,152 8.0 C

  Fork of the popular zip manipulation library found in the zlib distribution.

  

• enchive

  1 615 0.0 C

  Encrypted personal archives

• Cronos

  3 532 2.9 C

  PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners. (by Idov31)

• pgsodium

  15 508 5.4 C

  Modern cryptography for PostgreSQL using libsodium.

  Project mention: Macaroons Escalated Quickly | news.ycombinator.com | 2024-01-31

  I like the "solve the now" perspective here, and having code examples is very helpful to understand some of the rational behind the approach. Having read your previous "tedious survey"[0] post on various token formats, I generally agree with a lot of your conclusions. Curious though about your thought process wrt macaroons vs biscuits.

  To me the one major downside of macaroons has always been the single shared root symmetric key. Many use cases are addressed by third party attenuation, but then there are the problems like key rotation, having to do online verification, no built in encryption, no peer-to-peer support through an "untrusted" fly.io, and no third party token verification without decryption like in signcryption[1] schemes. Of course this is traded off by having to do PK issuance and management so I can see the simplicity of it.

  Is fly.io scoping this pretty hard to just auth tokens with third party attenuation, or do you see further development and maybe moving to other token systems like biscuit when/if the need arises to address those known issues?

  fwiw I've done a bit of research work myself on a token format using signcryption [2] where I explored addressing some of these ideas (but not the attenuation side of it yet, which I get is a big deal here).

  [0] https://fly.io/blog/api-tokens-a-tedious-survey/

  [1] https://github.com/jedisct1/libsodium-signcryption

  [2] https://github.com/michelp/pgsodium/blob/feat/signcryption-t...

• libdime

  2 416 2.2 C

  The DIME resolver library and command line utilities.

  

• sqleet

  1 371 1.4 C

  SQLite3 encryption that sucks less

• lurch

  5 279 0.0 C

  XEP-0384: OMEMO Encryption for libpurple.

• VeraCrypt-DCS

  2 126 0.0 C

  VeraCrypt EFI Bootloader for EFI Windows system encryption (LGPL)

  

• mkinitcpio-ykfde

  2 105 2.3 C

  Full disk encryption with Yubikey (Yubico key)

• CatCrypto

  0 68 0.0 C

  An easy way for hashing and encryption.

• disco-c

  2 62 0.0 C

  A tiny C cryptographic library to encrypt sessions, authenticate messages, sign, hash, etc. based only on SHA-3 and Curve25519

• libsodium-signcryption

  7 57 0.0 C

  Signcryption using libsodium.

  Project mention: Macaroons Escalated Quickly | news.ycombinator.com | 2024-01-31

  I like the "solve the now" perspective here, and having code examples is very helpful to understand some of the rational behind the approach. Having read your previous "tedious survey"[0] post on various token formats, I generally agree with a lot of your conclusions. Curious though about your thought process wrt macaroons vs biscuits.

  To me the one major downside of macaroons has always been the single shared root symmetric key. Many use cases are addressed by third party attenuation, but then there are the problems like key rotation, having to do online verification, no built in encryption, no peer-to-peer support through an "untrusted" fly.io, and no third party token verification without decryption like in signcryption[1] schemes. Of course this is traded off by having to do PK issuance and management so I can see the simplicity of it.

  Is fly.io scoping this pretty hard to just auth tokens with third party attenuation, or do you see further development and maybe moving to other token systems like biscuit when/if the need arises to address those known issues?

  fwiw I've done a bit of research work myself on a token format using signcryption [2] where I explored addressing some of these ideas (but not the attenuation side of it yet, which I get is a big deal here).

  [0] https://fly.io/blog/api-tokens-a-tedious-survey/

  [1] https://github.com/jedisct1/libsodium-signcryption

  [2] https://github.com/michelp/pgsodium/blob/feat/signcryption-t...

• libcrux

  1 38 9.7 C

  The formally verified crypto library for Rust

  

  Project mention: Verified ML-KEM (Kyber) in Rust | news.ycombinator.com | 2024-02-01

• rvault

  2 33 0.0 C

  rvault: secure and authenticated store for secrets and small documents

• SaaSHub

  www.saashub.com

  sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

C Encryption related posts

• Heartbleed and XZ Backdoor Learnings: Open Source Infrastructure Can Be Improved Efficiently With Moderate Funding
  2 projects | dev.to | 7 Apr 2024
• Ask HN: Open-source Windows 11 backup solutions
  4 projects | news.ycombinator.com | 4 Apr 2024
• Ask HN: How does the xz backdoor replace RSA_public_decrypt?
  1 project | news.ycombinator.com | 1 Apr 2024
• Tox Core is one of the nicest-to-read C codebases
  1 project | news.ycombinator.com | 22 Mar 2024
• Macaroons Escalated Quickly
  4 projects | news.ycombinator.com | 31 Jan 2024
• Use of HTTPS Resource Records
  1 project | news.ycombinator.com | 4 Jan 2024
• Delete or hide life-wasting apps
  2 projects | news.ycombinator.com | 2 Jan 2024
• A note from our sponsor - SaaSHub
  www.saashub.com | 18 Apr 2024

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending C projects with our weekly report!