Top 23 Ecdsa Open-Source Projects

• PHPSecLib

  12 5,247 8.9 PHP

  PHP Secure Communications Library

  

Project mention: How to install software on VPS through PHP? | /r/PHP | 2023-10-24

I recommend using PHPSecLib which has a powerful SSH library that is far more versatile than the official PHP SSH extension.

• swift-crypto

  8 1,403 7.2 C

  Open-source implementation of a substantial portion of the API of Apple CryptoKit suitable for use on Linux platforms.

  

Project mention: Swift for Android: How to use Swift-Crypto with Android Studio | dev.to | 2023-11-14

dependencies: [ .package(url: "https://github.com/scade-platform/swift-java.git", branch: "main"), .package(url: "https://github.com/apple/swift-crypto.git", .branch("main")) ]

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• multi-party-ecdsa

  4 940 3.6 Rust

  Rust implementation of {t,n}-threshold ECDSA (elliptic curve digital signature algorithm).

  

• python-ecdsa

  3 890 8.1 Python

  pure-python ECDSA signature/verification and ECDH key agreement

  

• docker-nginx-certbot

  2 854 7.7 Shell

  Automatically create and renew website certificates for free using the Let's Encrypt certificate authority.

• noble-secp256k1

  3 693 7.7 JavaScript

  Fastest 4KB JS implementation of secp256k1 signatures and ECDH

Project mention: A beginner's guide to constant-time cryptography (2017) | news.ycombinator.com | 2024-02-22

I noticed in July of 2022 that Go did exactly the vulnerable example and reported it to the security team.

https://github.com/golang/go/issues/53849

It was fixed as of Go 1.21 https://go.dev/doc/go1.21

---

The article cites JavaScript, which is not constant time. There's no sure way to do constant time operations in JavaScript and thus no secure way to do crypto directly in Javascript. Browsers like Firefox depend on low level calls which should be implemented in languages that are constant time capable.

JavaScript needs something like constant time WASM in order to do crypto securely, but seeing the only constant time WASM project on GitHub has only 16 stars and the last commit was 2 years ago, it doesn't appear to have much interest. https://github.com/WebAssembly/constant-time

However, for JavaScript, I recommend Paul's library Noble which is "hardened to be algorithmically constant time". It is by far the best library available for JavaScript. https://github.com/paulmillr/noble-secp256k1

• RustCrypto Elliptic Curves

  2 602 8.7 Rust

  Collection of pure Rust elliptic curve implementations: NIST P-224, P-256, P-384, P-521, secp256k1, SM2

  

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• noble-curves

  2 585 9.0 TypeScript

  Audited & minimal JS implementation of elliptic curve cryptography.

Project mention: The AT protocol is the most obtuse crock of s* | news.ycombinator.com | 2023-05-09

BlueSky uses @noble/secp256k1 which performs this stuff in Javascript, with about 880* verifications per second on the Apple M2 (a chip with a relatively high IPC, likely higher than your average server).

Verifying those messages will take about a minute of CPU time per user (assuming no impact from cache misses due to threads swapping in and out and processing new data). I think that's quite significant.

* = https://github.com/paulmillr/noble-curves

• putty-cac

  12 448 6.1 C

  Windows Secure Shell Client With Support For Smart Cards, Certificates, & FIDO Keys

Project mention: NIST: Personal Identity Verification (PIV) of Federal Employees and Contractors | news.ycombinator.com | 2024-03-23

PuTTY-CAC was an interesting, although imperfect solution to using PIV/CAC cards together with SSH. I remember piloting it from 2013-2014 at an agency. Back then, it was maintained by Dan Risacher[0]. Nowadays it is maintained on GitHub[1] and adopted some interesting features like FIDO.

[0] https://risacher.org/putty-cac/

[1] https://github.com/NoMoreFood/putty-cac

• signatures

  1 432 8.6 Rust

  Cryptographic signature algorithms: DSA, ECDSA, Ed25519

  

• GpgFrontend

  13 424 9.5 C++

  A free, open-source, robust yet user-friendly, compact and cross-platform tool for OpenPGP encryption. It stands out as an exceptional GUI frontend for the modern GnuPG (gpg).

Project mention: GpgFrontend: Open-source, Cross-platform GnuPG Front end | news.ycombinator.com | 2024-03-16

• ecdsa-private-key-recovery

  2 383 0.0 Python

  A simple library to recover the private key of ECDSA and DSA signatures sharing the same nonce k and therefore having identical signature parameter r

Project mention: If I sign multiple messages with the same nonce, my private key can be extracted? | /r/ethdev | 2023-06-27

• Crypt-LE

  1 348 2.7 Perl

  Crypt::LE - Let's Encrypt / Buypass / ZeroSSL and other ACME-servers client and library in Perl for obtaining free SSL certificates (inc. generating RSA/ECC keys and CSRs). HTTP/DNS verification is supported out of the box, EAB (External Account Binding) supported, easily extended with plugins, easily dockerized.

• cryptotools

  2 198 3.9 Python

• zkp-ecdsa

  1 192 4.0 TypeScript

  Proves knowledge of an ECDSA-P256 signature under one of many public keys that are stored in a list.

  

• bip32

  1 167 3.7 JavaScript

  A BIP32 compatible library.

  

• VbAsyncSocket

  11 159 6.4 Visual Basic 6.0

  Sockets with pure VB6 impl of TLS encryption

Project mention: Modern TLS/SSL on 16-bit Windows | news.ycombinator.com | 2023-06-26

I wonder if it is possible to make https://github.com/wqweto/VbAsyncSocket compile on Visual Basic 4, then you could target 16 bit.

• btclib

  3 98 4.1 Python

  btclib: a python3 library for 'bitcoin cryptography'

  

• bitcoin-recover-privkey

  1 70 2.7 Python

  Proof of concept of bitcoin private key recovery using weak ECDSA signatures

• flutter-openpgp

  1 60 4.7 Dart

  OpenPGP for flutter made with golang for fast performance with support for android, ios, macos, linux, windows, web and hover

• BreakingECDSAwithLLL

  2 59 2.7 Python

  Breaking ECDSA (not so broken) with LLL

Project mention: PuTTY vulnerability vuln-p521-bias | news.ycombinator.com | 2024-04-15

• interesting-keys

  1 50 5.1 HTML

  Interesting collected (leaked) encryption/decryption keys

• secp256k1.cr

  1 48 0.0 Crystal

  a native library implementing secp256k1 purely for the crystal language.

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Ecdsa related posts

• PuTTY vulnerability vuln-p521-bias
  2 projects | news.ycombinator.com | 15 Apr 2024
• Noble Cryptography
  1 project | news.ycombinator.com | 8 Dec 2023
• Swift for Android: How to use Swift-Crypto with Android Studio
  3 projects | dev.to | 14 Nov 2023
• If I sign multiple messages with the same nonce, my private key can be extracted?
  1 project | /r/ethdev | 27 Jun 2023
• Interacting with the bitcoin network without typical software.
  2 projects | /r/BitcoinDiscussion | 19 Apr 2023
• Covert a seed phrase to Bitcoin address(es) offline
  4 projects | /r/Bitcoin | 9 Mar 2023
• Can swift be used for web, data science, or cybersecurity?
  1 project | /r/swift | 24 Jan 2023
• A note from our sponsor - WorkOS
  workos.com | 29 Apr 2024

  The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com