-
openssh-keys
read and write OpenSSH public keys
-
tor-proto
Asynchronous client-side implementation of the central Tor network protocols
-
tor-llcrypto
Low level cryptography wrappers used by Tor
-
ockam
End-to-end encryption and mutual authentication for distributed applications
-
tor-keymgr
Key management for the Arti Tor implementation
-
tor-hscrypto
Basic onion service cryptography types used by Aerti
-
tor-hsservice
Arti's implementation of an onion service provider
-
tor-hsclient
Arti's implementation of an onion service client
-
s2n-tls
A C99 implementation of the TLS/SSL protocols
-
tor-checkable
Types to ensure that signed or time-bound data is validated before use
-
flatline
ssh-2.0 client library
-
dccmd-rs
A command line client for DRACOON
-
ockam_transport_websocket
WebSocket Transport for the Ockam Routing Protocol
-
ockam_app_lib
Ockam's desktop application library
-
fedimint-threshold-crypto
Pairing threshold cryptography (Fedimint fork)
-
ockam_node
Ockam [Ockam][main-ockam-crate-link] Node and is intended for use by crates that provide features and add-ons to the main [Ockam][main-ockam-crate-link] library. The main [Ockam][main-ockam-crate-link]…
-
openpgp-card-tool-git
Git signing and verification with a focus on OpenPGP cards
-
ockam_identity
Ockam is a library for building devices that communicate securely, privately and trustfully with cloud services and other devices
-
ockam_vault
A software-only Ockam Vault implementation
-
tor-hsrproxy
Reverse proxy to build an onion service that connects to local servers
-
equix
Asymmetric function for client puzzle protocols
-
hashx
Hash function family designed for ASIC-resistant client puzzles
-
ockam_transport_tcp
TCP Transport for the Ockam Routing Protocol
-
ockam_executor
Ockam async executor crate
-
dag-jose
ipld dag-jose codec
-
ockam_command
End-to-end encryption and mutual authentication for distributed applications
-
ockam_transport_ble
Bluetooth Low Energy (BLE) Transport for the Ockam Routing Protocol
-
ockam_abac
Attribute based authorization control
-
wolfssl
High-level bindings for WolfSSL
-
ockam_transport_udp
UDP Transport for the Ockam Routing Protocol
-
ockam_transport_uds
Unix Domain Socket (UDS) Transport for the Ockam Routing Protocol
-
napa
secure command line password manager
-
ockam_vault_aws
An AWS KMS Ockam Vault implementation
-
nu-command
Nushell's built-in commands
-
csidh
Pure Rust implementation of of the CSIDH cryptographic algorithm for secret key exchange. Provides a (not yet) constant-time, no_std-friendly implementation.
-
s2n-tls-tokio
TLS streams for Tokio built on top of s2n-tls
-
saltlick
encrypting and decrypting file streams using libsodium
-
blitzar-sys
Rust bindings for the Blitzar library
-
vsss-rs
Verifiable Secret Sharing Schemes for splitting, combining and verifying secret shares
-
rustls
modern TLS library written in Rust
-
ironcore-documents
working with IronCore Labs documents and header formats
-
ockam_core
Core types of the Ockam library
-
rpgpie
Experimental high level API for rpgp
-
s2n-tls-sys
A C99 implementation of the TLS/SSL protocols
-
zkryptium
Rust crypto library for zero-knowledge proofs
-
jacs
JACS JSON AI Communication Standard
-
fourq
rust bind for the FourQlib that is a fourq curve implementation
-
attestation-doc-validation
attesting enclaves according to the Evervault Attestation scheme. This crate is used to generate ffi bindings.
-
rpgpie-sop
Experimental SOP implementation based on rpgpie
-
halite-sys
Unsafe Rust bindings for libsodium stable
-
wolfssl-sys
System bindings for WolfSSL
-
rpgpie-certificate-store
Certificate store for rpgpie, based on openpgp-cert-d
-
iroh-sync
Iroh sync
-
sshkeys
parsing OpenSSH certificates and public keys
-
ec-divisors
calculating elliptic curve divisors
-
libsodium-sys-stable
Maintained FFI bindings for libsodium stable
-
arti
Tor privacy tools
-
malwaredb-virustotal
Logic and datatypes for interacting with VirusTotal
-
pwdm
Rudimentary command-line tool and Rust library for managing passwords
-
maybenot
A framework for traffic analysis defenses
-
tor-circmgr
Manage a set of anonymous circuits over the Tor network
-
tor-chanmgr
Manage a set of connections to the Tor network
-
encrypted-message
Safely encrypt & store serializable data using AES-256-GCM
-
gnostr-core
Replication protocol for Hypercore feeds
-
ovunto-security
secure end-to-end communication between clients through a server
-
sodoken
libsodium wrapper providing tokio safe memory secure api access
-
prople-did-core
A set of core libraries to manage the DID data and objects based on Prople system requirements
-
crypt_guard
CryptGuardLib is a comprehensive Rust library designed for strong encryption and decryption, incorporating post-quantum cryptography to safeguard against quantum threats. It's geared…
-
twenty-first
Collection of mathematics routines and cryptography for the twenty-first century
-
fips203
FIPS 203 (draft): Module-Lattice-Based Key-Encapsulation Mechanism
-
sn_client
Safe Network Client
-
prio
aggregation system core: https://crypto.stanford.edu/prio/
-
ps-cypher
Chacha-based data cypher
-
ps-hash
Generates 50-byte hashes with 256 bits of security
-
zsign
ipa sign
-
zeroize
Securely clear secrets from memory with a simple trait built on stable Rust primitives which guarantee memory is zeroed using an operation will not be 'optimized away' by the compiler…
-
miden-air
Algebraic intermediate representation of Miden VM processor
-
generalized-schnorr
Generalized Schnorr Protocols
-
filecoin-hashers
Hashers used in filecoin and their abstractions
-
usig
Unique Sequential Identifier Generator
-
sha2raw
SHA-2 hash function
-
a2
A native, asynchronous Apple push notification client
-
openpgp-card-tools
inspecting and configuring OpenPGP cards
-
skrillax-security
Security implementation for Silkroad Online packet streams
-
kemkem
Unverified, unoptimized, and downright dirty implementation of the ML-KEM
-
iroh-blake3
the BLAKE3 hash function
-
rustls-pki-types
Shared types for the rustls PKI ecosystem
-
miden-crypto
Miden Cryptographic primitives
-
antimatter
antimatter.io Rust library for data control
-
dusk-poseidon
Poseidon hash algorithm over the Bls12-381 Scalar field
-
lambdaworks-crypto
Data structures and primitives for cryptography library
-
demand
A CLI prompt library
-
deno_crypto
Web Cryptography API implementation for Deno
-
cryptr
encrypted (streaming) values
-
animo-secure-env
secure-env is a wrapper library around the Android KeyStore and the iOS Security Framework for key creation and sign operations using the Secure Element
-
lambdaworks-math
Modular math library for cryptography
-
biscuit-cli
a CLI to manipulate biscuit tokens
-
rustls-rustcrypto
Pure Rust cryptography provider for the Rustls TLS library using algorithm implementations from the RustCrypto organization
-
cryptocol
cryptographic library that includes big number arithmatic operation, hash algorithms, symmetric-key cryptographic encryption/decryption algorithms, asymmetric-key (public-key) cryptographic…
-
acir_field
The field implementation being used by ACIR
-
acvm
The virtual machine that processes ACIR given a backend/proof system
-
brillig_vm
The virtual machine that processes Brillig bytecode, used to introduce non-determinism to the ACVM
-
aws-sdk-kms
AWS SDK for AWS Key Management Service
-
openpgp-card-ssh-agent
ssh-agent backed by OpenPGP card authentication keys
-
bn254_blackbox_solver
Solvers for black box functions which are specific for the bn254 curve
-
jubjub-schnorr
A pure-Rust implementation of Schnorr signatures with a PLONK circuit module additionally
-
prople-crypto
A set of libraries and function helpers to maintain cryptography data based on Prople system requirements
-
anonymous-credentials
Direct Anonymous Attestation for the Web Discovery Project
-
rusty_vault
RustyVault is a powerful identity-based secrets management software, providing features such as cryptographic key management, encryption as a service, public key cryptography, certificates management…
-
eternaltwin_password
Password implementation
-
b64-ct
Fast and secure Base64 encoding/decoding. This crate provides an implementation of Base64 encoding/decoding that is designed to be resistant against software side-channel attacks (such as timing…
-
rustls-webpki
Web PKI X.509 Certificate Verification
-
hash-id-crack
A command line tool to crack hash by specified dictionary
-
dco3_crypto
Symmetric and asymmetric encryption for DRACOON in Rust
-
storage-proofs-core
Core parts for proofs of storage
-
bls12_381-bls
BLS signatures using the BLS12-381 curve
-
symcrypt
Friendly and Idiomatic Wrappers for SymCrypt
-
rustls-symcrypt
rustls crypto provider model for SymCrypt
-
dndk-gcm
TODO
-
bitwarden-crypto
Internal crate for the bitwarden crate. Do not use.
-
get-hash
Get hash of a string
-
fiat-crypto
generated Rust
-
self_encryption
Self encrypting files (convergent encryption plus obfuscation)
-
tfhe
TFHE-rs is a fully homomorphic encryption (FHE) library that implements Zama's variant of TFHE
-
round-based
Driver for MPC protocols
-
variant-ssl
Bindings for OpenSSL variants such as BoringSSL / AWS-LC / Tongsuo
-
pkgar
Redox Package Archive
-
symcrypt-sys
Rust/C Bindings for SymCrypt
-
viadkim
DomainKeys Identified Mail (DKIM) specification
-
triton-vm
virtual machine that comes with Algebraic Execution Tables (AET) and Arithmetic Intermediate Representations (AIR) for use in combination with a STARK proof system to allow proving correct…
-
tiny_ed448_goldilocks
A lean, high performance, pure rust implementation of Ed448-Goldilocks for easy signatures and key exchange
-
openpgp-card-rpgp
Companion crate for using openpgp-card with rPGP
-
azalea-crypto
Cryptography features used in Minecraft
-
filesystem-hashing
Track Filesystem Integrity via Snapshots which contain a HashMap of the files and their corresponding hash signature from a specified directory
-
xplm
High-level interfaces to the X-Plane plugin SDK
-
rbw
Unofficial Bitwarden CLI
-
aws-sigv4
SigV4 signer for HTTP requests and Event Stream messages
-
bssl-cmake-sys
FFI bindings to BoringSSL (cmake incorporated)
-
aes_crypto
A platform-agnostic library for the AES cipher (Rijndael)
-
pkpw
What if correct horse battery staple, but Pokémon
-
ark-srs
that simplifies reuse of Common/Structured Reference String (CRS/SRS) from past trusted setup ceremonies, especially for SNARK
-
pki
Public key infrastructure tools for Rust
-
sequoia-sqv
OpenPGP signature verification program
-
basic-jwt
Basic JWT signing and verification library
-
rustls-mbedtls-provider-utils
code used in mbedtls based provider for rustls
-
decaf377-rdsa
randomizable signature scheme using the decaf377 group
-
rustls-mbedcrypto-provider
Mbedtls based crypto provider for rustls
-
rustls-mbedpki-provider
Implements rustls PKI traits using mbedtls
-
rattler_digest
used by rattler crates to compute different hashes from different sources
-
aws-nitro-enclaves-cose
aims to provide a safe Rust implementation of COSE, with COSE Sign1 currently implemented
-
s2n-quic-core
Internal crate used by s2n-quic
-
s2n-quic-crypto
Internal crate used by s2n-quic
-
nova-snark
High-speed recursive arguments from folding schemes
-
aws-lc-rs
cryptographic library using AWS-LC for its cryptographic operations. This library strives to be API-compatible with the popular Rust library named ring.
-
kem
Traits for key encapsulation mechanisms
-
transip
Call functions on the Transip Api Endpoint
-
VibeProtocol
Vibe Protocol is a secure, decentralized, and privacy-focused messaging protocol. Its designed using Sodium, Base64, and other cryptographic libraries to ensure the highest level of security and privacy.
-
lazychacha
Lazy ChaCha20-Poly1305 in Rust base on RustCrypto: ChaCha20Poly1305
-
false-bottom
A deniable encryption scheme
-
pkgar-keys
Key management tool/library for pkgar
-
raycrypt
Encrypt at the speed of light
-
lamport_signature_plus
Lamport one-time signature scheme
-
tss-esapi
Rust-native wrapper around TSS 2.0 Enhanced System API
-
s2n-quic-platform
Internal crate used by s2n-quic
-
diqwest
Trait to extend reqwest for digest auth flow
-
decrypt-cookies
A decrypt browser crate
-
aft-crypto
Cryptography library for aft
-
aws-lc-sys
AWS-LC is a general-purpose cryptographic library maintained by the AWS Cryptography team for AWS and their customers. It іs based on code from the Google BoringSSL project and the OpenSSL project.
-
mls-rs-crypto-awslc
AWS-LC based CryptoProvider for mls-rs
-
sequoia-sq
Command-line frontends for Sequoia
-
plonky2
Recursive SNARKs based on PLONK and FRI
-
sequoia-cert-store
A certificate database interface
-
pkarr
Public-Key Addressable Resource Records (Pkarr); publish and resolve DNS records over Mainline DHT
-
age-plugin-openpgp-card
Age plugin for using ed25519 on OpenPGP Card devices (Yubikeys, Nitrokeys)
-
scryptenc
scrypt encrypted data format
-
abcrypt
encrypted data format
-
mercy
open-source Rust crate and CLI for building cybersecurity tools, assessment projects, and testing infrastructure
-
sn_transfers
Safe Network Transfer Logic
-
starky
STARKs
-
variant-ssl-sys
FFI bindings to OpenSSL variants such as BoringSSL / AWS-LC / Tongsuo
-
plonky2_field
Finite field arithmetic
-
miden-gpu
GPU acceleration for the Miden VM prover
-
catherine
Framework is a general-purpose cybersecurity framework built to provide extended support for defense operations
-
abcrypt-capi
C API for abcrypt
-
ledger_device_sdk
Ledger device Rust SDK
-
sframe
pure rust implementation of SFrame draft-ietf-sframe-enc-09
-
polyproto
(Generic) Rust types and traits to quickly get a polyproto implementation up and running
-
wascap
wasmCloud Capabilities. Library for extracting, embedding, and validating claims
-
provider-archive
reading and writing wasmCloud capability provider archive files
-
secret-vault
secure vault to store securely application secrets in memory from Google/AWS/K8S and environment variables
-
ssh-key
Pure Rust implementation of SSH key file format decoders/encoders as described in RFC4251/RFC4253 and OpenSSH key formats, as well as "sshsig" signatures and certificates (including…
-
http-signature-normalization-actix
An HTTP Signatures library that leaves the signing to you
-
http-signature-normalization-reqwest
An HTTP Signatures library that leaves the signing to you
-
bpx-api-client
Rust client for Backpack Exchange
-
product-os-security
Product OS : Security provides a suite of helper tools to easily perform cryptograhpic operations including generating hashes, encrypting and decryting content
-
fire-crypto
Crypto library providing encryption and signing
-
dnssec-prover
allows for the creation and validation of transferrable proofs of entries in the DNS
-
rust-merkle
Merkle tree implementation in Rust
-
pipebuf_rustls
PipeBuf wrapper for Rustls
-
citadel_sdk
High-level library to build applications on the Citadel Protocol
-
citadel_crypt
Higher-level cryptographic library for the Citadel Protocol
-
citadel_pqcrypto
Lower-level cryptographic library for the Citadel Protocol
-
crab-cryptor
file cryptor
-
citadel_proto
Networking library for the Citadel Protocol
-
sequoia-openpgp
OpenPGP data types and associated machinery
-
gpg-error
Libgpg-error bindings for Rust
-
citadel_user
User backend library for the Citadel Protocol
-
ml-kem
Pure Rust implementation of the Module-Lattice-Based Key-Encapsulation Mechanism Standard (formerly known as Kyber) as described in the FIPS 203 Initial Public Draft
-
xwt-cert-fingerprint
Certificate fingerprint computation algoritms related to WebTransport. Not directly required to use xwt, but can be helpful. Also usable without xwt. Inteded to work with both wasm and native.
-
proof_system
Proof system to comprise various cryptographic primitives
-
lazyxchacha
Lazy XChaCha20-Poly1305 in Rust base on RustCrypto: ChaCha20Poly1305
-
rustkey
— rust library for tillitis TKey application development
-
nkeys
NATS nkeys library
-
drawbridge-jose
JOSE implementation
-
eio-ghosts
EIO GitHub Org Secrets Translation Service
-
xwt-cert-gen
Certificate generation factilities, provided by and for xwt. Useful for generating certificate. Also usable without xwt.
-
vb_accumulator
Positive and universal bilinear map accumulator and proof of membership and non-membership protocol
-
httpsig
IETF RFC 9421 of http message signatures
-
aries-bbssignatures
BBS+ signature support for Hyperledger Aries
-
thrussh-libsodium
Straightforward bindings to libsodium
-
oilelpqt
Post-quantum TCP proxy that uses Kyber1024 and multiple AES
-
utility-cli-rs
human-friendly console utility that helps to interact with unc Protocol from command line
-
rustgenhash
generate hashes from the command line
-
boring
BoringSSL bindings
-
httpsig-hyper
Hyper extension for http message signatures (RFC9421)
-
tangy-lib
Tang protocol library implementation
-
lnd-grpc-tonic-client
Rust lnd client using tonic and tonic-openssl
-
mozilla/neqo-crypto
Neqo, an implementation of QUIC written in Rust
-
rsa_keygen
generating rsa keys with a 12 word seedphrase
-
gm-sm2
China's Standards of Encryption Algorithms SM2
-
crypto-auditing-log-parser
Event log parser for crypto-auditing project
-
citadel_io
Underlying runtime for interfacing with I/O for std/wasm targets
-
sskr
Sharded Secret Key Reconstruction (SSKR) for Rust
-
bc-shamir
Shamir's Secret Sharing (SSS) for Rust
-
tokio-rustls-acme
Automatic TLS certificate management using rustls
-
citadel_types
Types for the citadel protocol
-
citadel_wire
NAT traversal and wire support for the Citadel Protocol
-
sequoia-chameleon-gnupg
Sequoia's reimplementation of the GnuPG interface
-
pem
Parse and encode PEM-encoded data
-
lockit
Password protect your files with strong encryption
-
citadel_logging
logging library for the Citadel Protocol
-
bc-crypto
A uniform API for cryptographic primitives used in Blockchain Commons projects
-
fss-rs
Function secret sharing including distributed comparison & point functions
-
he-ring
that provides fast implementations of rings commonly used in homomorphic encryption, built on feanor-math
-
crypto-auditing-client
Event broker client for crypto-auditing project
-
crypto-auditing-event-broker
Event broker for crypto-auditing project
-
dcf
Distributed comparison function implementation
-
dpf-fss
Distributed point function implementation
-
crypto-auditing-agent
Event collector agent for crypto-auditing project
-
keri-controller
KERI Identifier Management Library
-
wd_tools
tools for rust
-
boring-sys
FFI bindings to BoringSSL
-
garage_util
Garage object store
-
tentacli-crypto
Crypto functions for tentacli
-
sequoia-gpg-agent
interacting with GnuPG's gpg-agent
-
generic-ec
General elliptic curve cryptography
-
self-signed-cert
generate self-signed root CA, web server certs and keys
-
tfhe-zk-pok
zero-knowledge proofs of encryption for TFHE
-
parsec-service
A language-agnostic API to secure services in a platform-agnostic way
-
rustls-pemfile
Basic .pem file parser for keys and certificates
-
pgp
OpenPGP implementation in Rust
-
deterministic-keygen
Deterministic key-generator
-
filecrypt
Encrypt and decrypt files using Fernet symmetric encryption
-
tfhe-cuda-backend
Cuda implementation of TFHE-rs primitives
-
firebase-rtdb
Firebase client for the Citadel Protocol
-
zerokit_utils
Various utilities for Zerokit
-
cryptotools
cryptography library
-
netbeam
a pure-rust asynchronous network synchronization crate (using tokio) that recreates familiar asynchronous paradigms but in a network context
-
async_ip
An asynchronous client used to obtain one's global Ipv6 or Ipv4 address
-
pgen
Passphrase Generator
-
openpgp-card
A client implementation for the OpenPGP card specification
-
rcgen
Rust X.509 certificate generator
-
generic-ec-curves
Elliptic curves for
generic-ec
crate -
pwdg
A rudimentary command-line tool and Rust library for generating secure, random passwords
-
redseat-crypto
Common description for plugin creation
-
unc-cli-rs
human-friendly console utility that helps to interact with unc Protocol from command line
-
coset
Set of types for supporting COSE
-
pam-ssh-agent
A PAM module that authenticates using the ssh-agent
-
prefixed-api-key
module for generating a Prefixed API Key
-
c2pa
Rust SDK for C2PA (Coalition for Content Provenance and Authenticity) implementors
-
ssh-vault
encrypt/decrypt using ssh keys
-
sshx
A secure web-based, collaborative terminal
-
librqbit-tracker-comms
Common interface around various sha1 implementations used in rqbit torrent client
-
generic-ec-core
Core traits of
generic-ec
crate -
lsig
functionalities for generating private and public key pairs and signing messages using those keys
-
akd
auditable key directory
-
djangohashers
port of the password primitives used in Django project
-
pgp-lib
deal with PGP operations
-
fastcrypto
Common cryptographic library used at Mysten Labs
-
json-proof-token
based on the new JOSE Working Group draft specifications: JSON Web Proof (JWP), JSON Proof Token (JPT) and JSON Proof Algorithm (JPA)
-
wecom-crypto
企业微信API数据加解密库。
-
secp256k1
Rust wrapper library for Pieter Wuille’s
libsecp256k1
. Implements ECDSA and BIP 340 signatures for the SECG elliptic curve group secp256k1 and related utilities. -
kyber-pke
Kyber encryption library for arbitrary plaintext inputs. Mitigates kyberslash.
-
rusty_crypto
cryptographic suite for Rust
-
miden-verifier
Miden VM execution verifier
-
rasn-pkix
Data types for handling Public Key Infrastructure (PKIX) objects
-
pqc_kyber_kyberslash
post-quantum Kyber KEM algorithm
-
rasn-cms
Data types for handling Cryptographic Message Syntax
-
earendil_crypt
tbd
-
kyberauth
Enable AES keys transfer on unsecure channel using quantum-resistant Kyber
-
rasn-smime
Data types for Secure/Multipurpose Internet Mail Extensions
-
mls-rs
Messaging Layer Security (RFC 9420)
-
decaf377
A prime-order group designed for use in SNARKs over BLS12-377
-
der
Pure Rust embedded-friendly implementation of the Distinguished Encoding Rules (DER) for Abstract Syntax Notation One (ASN.1) as described in ITU X.690 with full support for heapless no_std targets
-
aws-lc-fips-sys
AWS-LC is a general-purpose cryptographic library maintained by the AWS Cryptography team for AWS and their customers. This is the FIPS validated version of AWS-LC.
-
akd_core
Core utilities for the akd crate
-
p12-keystore
Convenient API to work with PKCS#12 files
-
openpgp-cert-d
Shared OpenPGP Certificate Directory
-
cggmp21
TSS ECDSA implementation based on CGGMP21 paper
-
rasn-ocsp
Data types for Online Certificate Status Protocol
-
libswifft
production-ready C/C++ library providing SWIFFT, one of the fastest available secure hash functions, which is also collision-resistant as well as facilitates zero-knowledge proofs of knowledge of a preimage (ZKPoKP)…
-
presence
Privacy friendly presence tokens
-
async-signature
Traits for cryptographic signature algorithms (e.g. ECDSA, Ed25519)
-
rust_ev_crypto_primitives
Crypto Primitives necessary for E-Voting Applications
-
secp256k1-sys
FFI for Pieter Wuille’s
libsecp256k1
library -
miden-vm
Miden virtual machine
-
arrow-digest
Stable hashes for Apache Arrow
-
libswifft_sys
LibSWIFFT is a production-ready C/C++ library providing SWIFFT, one of the fastest available secure hash functions, which is also collision-resistant as well as facilitates zero-knowledge…
-
bp-pp
Bulletproofs++ - range-proof protocol in discret loggarithm setting
-
squaredb_enc
Squaredb - Enhance your DB with extendability and performance
-
muddy
static string obfuscation library
-
muddy_macros
Procedural macros for string obfuscation. Should only be used as part of the 'muddy' crate.
-
nanopub
A cross-platform Rust library to sign Nanopublications, with bindings to Python and JS (wasm)
-
key-share
Key share of any Threshold Signature Scheme (TSS)
-
backseat-signed
Authenticate cryptographic links from a signed derivate to its source input
-
winter-math
Math library for the Winterfell STARK prover/verifier
-
distrans_fileindex
Distrans file indexing
-
openssl-sys
FFI bindings to OpenSSL
-
rustls-ffi
Rustls bindings for non-Rust languages
-
leo-retriever
A retriever for the Leo programming language
-
aes-256-gcm
AES-GCM (Aes 256 Gcm) with some enhancement
-
mozilla/jwcrypto
Firefox Application Services
-
security-framework
Security.framework bindings for macOS and iOS
-
rustls-cert-gen
Rust X.509 certificate generator CLI
-
sigstore
An experimental crate to interact with sigstore
-
librqbit-sha1-wrapper
Common interface around various sha1 implementations used in rqbit torrent client
-
mozilla/rc_crypto
Firefox Application Services
-
banyanfs
A modern end-to-end encrypted filesystem built on distributed block replication primitives
-
nonce-extension
Derive-Key-AES and Double-Nonce-Derive-Key-AES nonce extension mechanisms (DNDK-GCM)
-
esdm-tool
small tool to query and use ESDM
-
clia-rustls-mod
Rustls is a modern TLS library written in Rust. This is clia-mod using ring.
-
ocb3
Pure Rust implementation of the Offset Codebook Mode v3 (OCB3) Authenticated Encryption with Associated Data (AEAD) Cipher as described in RFC7253
-
sha1-checked
SHA-1 hash function with collision detection
-
kanidm-hsm-crypto
easily interacting with a HSM or TPM
-
xaes-gcm
The simplest and safest way to encrypt data using AES-GCM in Rust (AES256-DNDK-GCM)
-
identity_jose
JOSE (JSON Object Signing and Encryption)
-
identity_storage
Abstractions over storage for cryptographic keys used in DID Documents
-
blsful
BLS signature implementation according to the IETF spec on the BLS12-381 curve
-
age-plugin-tlock
tlock plugin for age clients
-
leo-disassembler
A disassembler for the Leo programming language
-
dusk-safe
Sponge API for Field Elements
-
ntcip
National Transportation Communications for ITS Protocol
-
starfish-common
海星量化平台
-
caesar_cipher_enc_dec
can easily use caesar cipher
-
gennaro-dkg
The Gennaro Distributed Key Generation Algorithm
-
wsts
Weighted Schnorr Threshold Signatures, based on FROST
-
libcryptsetup-rs
High level Rust bindings for libcryptsetup
-
vrf-r255
A Verifiable Random Function built on the ristretto255 group
-
radicle-crypto
Radicle cryptographic primitives
-
tiny-crypto
collection of tools for common crypto algorithms, with APIs aimed to be simple to use
-
zero_pass_backend
The Zero Pass Project brain
-
mls-rs-crypto-webcrypto
SubtleCrypto based CryptoProvider for supporting mls-rs in a browser
-
mls-rs-crypto-openssl
OpenSSL based CryptoProvider for mls-rs
-
mls-rs-uniffi
An UniFFI-compatible implementation of Messaging Layer Security (RFC 9420)
-
mls-rs-crypto-hpke
HPKE implementation based on mls-rs-crypto-traits used by mls-rs
-
mls-rs-identity-x509
X509 Identity utilities for mls-rs
-
mls-rs-crypto-rustcrypto
RustCrypto based CryptoProvider for mls-rs
-
mls-rs-crypto-traits
Crypto traits required to create a CryptoProvider for mls-rs
-
sequoia-keystore
Sequoia's private key store server
-
idntkown
Identity key ownership
-
sequoia-keystore-softkeys
A soft key (in-memory key) backend for Sequoia's private key store
-
mls-rs-core
Core components and traits for mls-rs
-
sequoia-keystore-gpg-agent
A gpg-agent backend for Sequoia's private key store
-
sequoia-keystore-backend
Traits for private key store backends
-
xor_cryptor
A encryption/decryption library using bitwise xor
-
xrc_cli
A cli for multi-threaded encryption/decryption of files/folder using bitwise xor
-
p256k1
Rust wrappers around libsecp256k1 which expose internal scalar and point APIs
-
russh
A client and server SSH library
-
ratify
signing and verifying files and directories
-
rand-esdm
interface to ESDM RNG server
-
rufendec
(The Rust File Encryptor-Decryptor) is a lightweight CLI tool designed for AES-256 encryption and decryption. This tool simplifies the process of securing the contents of a user specified source directory…
-
ccatoken
CCA attestation token decoding, verification, and appraisal
-
bip32_derivation
-
nethsm
A high-level library to interact with the API of a Nitrokey NetHSM
-
cloudproof
Cosmian Cloudproof library
-
rsmt2d-rs
two dimensional Reed-Solomon merkle tree data availability scheme
-
keri-core
Core library for the Key Event Receipt Infrastructure
-
roles_logic_sv2
Common handlers for use within SV2 roles
-
ft-sys
ft-sdk: SDK for building FifthTry Applications
-
truelayer-signing
Produce & verify TrueLayer API requests signatures
-
tauri-plugin-stronghold
Store secrets and keys using the IOTA Stronghold encrypted database
-
sequoia-octopus-librnp
Reimplementation of RNP's interface using Sequoia for use with Thunderbird
-
sequoia-sop
Stateless OpenPGP Interface using Sequoia
-
russh-keys
Deal with SSH keys: load them, decrypt them, call an SSH agent
-
tokio-rustls
Asynchronous TLS/SSL streams for Tokio using Rustls
-
crypticy
cryptography library in Rust
-
futures-rustls
Asynchronous TLS/SSL streams for futures using Rustls
-
sha1collisiondetection
SHA-1 hash function with collision detection and mitigation
-
radix-transactions
Various Radix transaction models and the manifest compiler/decompiler
-
winter-utils
Winterfell STARK prover/verifier
-
radix-common
common types and functions shared by all layers of the Radix stack
-
threema-gateway
A client library for the Threema Gateway
-
gpg-tui
Manage your GnuPG keys with ease!
-
pact_verifier_cli
Standalone pact verifier for provider pact verification
-
sn_curv
Curv contains an extremely simple interface to onboard new elliptic curves. Use this library for general purpose elliptic curve cryptography
-
sthash
A very fast cryptographic hash function for large data
-
rotary-add
adds a few simple methods to the three lowest unsigned integer types, u8, u16 and u32 to allow cyclical addition and subtraction around the same 0 to (limit - 1) range or from 1 to a limit
-
otrr
otrr — OTR protocol version 3 and 4
-
async-acme
async ACME client for tls-alpn-01 challenge
-
bcrypt
Easily hash and verify passwords using bcrypt
-
gpgrv
Pure-Rust implementation of gpgv, to verify gpg signatures
-
winter-crypto
Cryptographic library for the Winterfell STARK prover/verifier
-
winter-air
AIR components for the Winterfell STARK prover/verifier
-
provenance-rs
A history-of-ownership protocol for securely proving where a document came from
-
winter-prover
Winterfell STARK prover
-
winter-fri
FRI protocol for the Winterfell STARK prover/verifier
-
winter-verifier
Winterfell STARK verifier
-
secp
A flexible and secure secp256k1 elliptic curve math library with constant-time support and superb ergonomics
-
tls-decrypt
lib to decrypt the tls cipher data
-
gix-features
integrate various capabilities using compile-time feature flags
-
winter-rand-utils
Random value generation utilities for Winterfell crates
-
simple-cookie
Functions for creating and parsing signed & encrypted cookies
-
abcrypt-py
Python bindings for abcrypt
-
winterfell
STARK prover and verifier
-
fips205
FIPS 205 (draft): Stateless Hash-Based Digital Signature Standard
-
mpc-protocol
Multi-party computation framework using the noise protocol for end-to-end encryption
-
sapphire-hash
A recursive, performant file hash calculator
-
gix-hash
Borrowed and owned git hash digests used to identify git objects
-
tough-kms
Implements AWS KMS as a key source for TUF signing keys
-
tough-ssm
Implements AWS SSM as a key source for TUF signing keys
-
blake3
hash function
-
naruto
RAMenPaSTA
-
prs-lib
Secure, fast & convenient password manager CLI with GPG & git sync
-
prs-gtk3
Secure, fast & convenient password manager CLI with GPG & git sync
-
pact-crypto
Cryptography extensions for Pacts
-
primeshor
project to explore prime numbers and factorization
-
distro-keyring
Keyring data files from linux distributions
-
native-pkcs11
Cross-platform PKCS#11 module written in rust. Can be extended with custom credential backends.
-
nettle
Rust bindings for the Nettle cryptographic library
-
dynamic-token
Encodes and evaluates a time-sensitive dynamic authentication token based on shared API key, a timestamp, some random noise characters and an optional UUID
-
ppaass-crypto
The crypto of ppaass application
-
gp-crypto-ec-utils
Host functions for common Arkworks elliptic curve operations
-
risc0-zkvm
RISC Zero zero-knowledge VM
-
enc_file
Encrypt / decrypt files or calculate hash from the command line. Warning: Don't use for anything important, use VeraCrypt or similar instead.
-
sd-jwt-payload
Selective Disclosure for JWTs (SD-JWT)
-
cosmian_ffi_utils
Cosmian FFI tools library
-
cloudproof_findex
Cosmian Findex Cloudproof library
-
risc0-zkp
RISC Zero zero-knowledge proof system core crate
-
b3sum
a command line implementation of the BLAKE3 hash function
-
risc0-core
Core types for RISC Zero crates
-
cloudproof_cover_crypt
Cosmian Covercrypt Cloudproof library
-
risc0-zkvm-platform
RISC Zero zero-knowledge VM
-
rustls-post-quantum
Experimental support for post-quantum key exchange in rustls
-
cloudproof_ecies
Cosmian ECIES scheme library
-
cloudproof_aesgcm
Cosmian AES256GCM library
-
rust_chacha20
ChaCha20 stream cipher
-
iop-sdk-rust
Unofficial Rust AliExpress Open platform SDK (iop-sdk-rust-20231210)
-
risc0-sys
Generated / Native / HAL code for RISC Zero
-
risc0-build-kernel
RISC Zero tool for building kernels
-
risc0-circuit-recursion
RISC Zero circuit for recursion
-
risc0-circuit-rv32im
RISC Zero circuit for rv32im
-
risc0-groth16
RISC Zero Groth16
-
risc0-r0vm
RISC Zero zero-knowledge VM executable
-
privacypass
Privacy Pass
-
aes
Pure Rust implementation of the Advanced Encryption Standard (a.k.a. Rijndael)
-
rtc-srtp
RTC SRTP in Rust
-
risc0-tools
RISC Zero devtools
-
rtc-dtls
RTC DTLS in Rust
-
risc0-circuit-recursion-sys
Generated HAL code for recursion cicuit
-
cggmp21-keygen
UC-secure DKG implementation based on CGGMP21 paper
-
aead
Traits for Authenticated Encryption with Associated Data (AEAD) algorithms, such as AES-GCM as ChaCha20Poly1305, which provide a high-level API
-
poly1305
universal hash function and message authentication code
-
des
Triple DES (3DES, TDES) block ciphers implementation
-
polyval
GHASH-like universal hash over GF(2^128) useful for constructing a Message Authentication Code (MAC)
-
dee
An cli for drand, with support for timelock encryption
-
acme2-eab
A Tokio and OpenSSL based ACMEv2 client
-
universal-hash
Traits which describe the functionality of universal hash functions (UHFs)
-
drand_core
A drand client library
-
ghash
Universal hash over GF(2^128) useful for constructing a Message Authentication Code (MAC), as in the AES-GCM authenticated encryption cipher
-
gitoid
Git Object Identifiers in Rust
-
kuznyechik
(GOST R 34.12-2015) block cipher
-
ezcrypt
File encryption utility with forgot password functionality
-
cryptoki
Rust-native wrapper around the PKCS #11 API
-
magma
(GOST R 34.12-2015) block cipher
-
ferropassgen
generating secure passwords and passphrases
-
rust-padbuster
It's a port of python-paddingoracle (https://github.com/mwielgoszewski/python-paddingoracle)
-
bitwark
Empowering secure digital interactions with robust binary token management and dynamic rolling keys
-
byte-aes
wrapper around the popular aes crate. The goal is to perform Encrypt and Decrypt operations using the Advanced Encryption Standard 256 bit Algorithm conveninent to use instead of use Low level functions of the aes crate
-
fips204
FIPS 204 (draft): Module-Lattice-Based Digital Signature
-
ferropassgen-cli
A command-line tool for generating secure passwords and passphrases
-
rudric
CLI tool for managing secrets in a secure way
-
ddcore-rs
Core features for interacting with the game Devil Daggers
-
omnibor-cli
CLI for working with OmniBOR Identifiers and Manifests
-
spiffe
Rust client library implementation for SPIFFE
-
vsss-rust
providing implementations of Verifiable Secret Sharing (VSS) schemes
-
cosmian_cover_crypt
Key Policy attribute encryption based on subset cover
-
sequoia-ipc
Interprocess communication infrastructure for Sequoia
-
warg-crypto
A collection of cryptographic primitives for Warg registries
-
rustls-cng
Windows CNG API bridge for rustls
-
omnibor
Reproducible software identity and fine-grained build dependency tracking
-
voprf
verifiable oblivious pseudorandom function (VOPRF)
-
spire-api
SPIRE APIs
-
rust_keylock_shell
Shell access to the rust-keylock. rust-keylock is a password manager with goals to be Secure, Simple to use, Portable and Extensible.
-
cesride
Cryptographic primitives for use with Composable Event Streaming Representation (CESR)
-
crev-data
Scalable, social, Code REView system that we desperately need - data types library
-
rust-keylock-ui
A password manager with goals to be Secure, Simple to use, Portable and Extensible
-
amora-rs
Amora is a secure token inspired by JWT and Branca, but enhanced a bit in some areas
-
lakers
EDHOC implementation in Rust
-
cipher
Traits for describing block ciphers and stream ciphers
-
indexed-merkle-tree
Indexed Merkle Trees, a version of Merkle trees that supports both membership and non-membership proofs
-
safe_paillier_rust
Paillier cryptosystem with homomorphic properties, leveraging Rust's type system and safety guarantees
-
hfile
command-line interface (CLI) tool for generating hash values of files
-
bnum
Arbitrary, fixed size numeric types that extend the functionality of primitive numeric types
-
nuts-container
A secure storage library
-
legogroth16
Legosnark variant of Groth16 zkSNARK proof system
-
nuts-archive
A tar like archive on top of the nuts-container
-
lakers-shared
EDHOC crypto library constants crate
-
nuts-tool
A cmdline utility for the nuts container
-
dock_crypto_utils
Common code for Dock's crypto libraries
-
lakers-crypto-rustcrypto
EDHOC crypto library backend based on the RustCrypto crates
-
nuts-backend
A secure storage library
-
rops
SOPS-like library in pure Rust
-
bbs_plus
BBS and BBS+ signatures and protocols for proof of knowledge of signature
-
saver
SNARK-friendly, Additively-homomorphic, and Verifiable Encryption and decryption with Rerandomization
-
dock_merlin
Composable proof transcripts for public-coin arguments of knowledge
-
schnorr_pok
Schnorr protocol for proof of knowledge of one or more discrete logs
-
smc_range_proof
Range proofs based on set-membership check and sumsets
-
rops-cli
SOPS CLI alternative in pure Rust
-
bessie
an authenticated, chunked cipher based on BLAKE3
-
nuts-directory
A backend implementation for nuts
-
nuts-memory
A backend implementation for nuts
-
secret_sharing_and_dkg
Secret sharing schemes and DKGs
-
oblivious_transfer_protocols
Oblivious Transfer (OT), Oblivious Transfer Extensions (OTE)
-
bessie_bin
a demo/test CLI for the Bessie cipher, NOT FOR PRODUCTION USE
-
mcl_rust
a wrapper class/function of a pairing library; https://github.com/herumi/mcl
-
short_group_sig
Short group signatures - BB and weak-BB
-
bulletproofs_plus_plus
Bulletproofs++
-
crypto-rsl
A (mostly) pure-Rust implementation of various common cryptographic algorithms
-
asn1
ASN.1 (DER) parser and writer for Rust
-
ockam_macros
End-to-end encryption and mutual authentication for distributed applications
-
clipperd
-
padding-oracle
exploit CBC-PKCS7 padding oracles
-
lair_keystore
secret lair private keystore
-
cryptoy
Toy implementations of cryptographic protocols for educational purposes
-
lair_keystore_api
secret lair private keystore API library
-
playfair_cipher
Playfair, Two square and Four square cipher
-
sshd-openpgp-auth
Command-line tool for creating and managing OpenPGP based trust anchors for SSH host keys
-
rust_keylock
A password manager with goals to be Secure, Simple to use, Portable and Extensible
-
slip-10
SLIP10 implementation in Rust
-
paillier-zk
ZK-proofs for Paillier encryption scheme
-
ssh-openpgp-auth
Command-line tool that provides client-side functionality to transparently verify the identity of remote SSH hosts
-
iokcloud-crypto
AES lightweight encryption and decryption
-
tongsuo-src
Source of Tongsuo and logic to build it
-
clevis
A preliminary Rust implementation of the clevis protocol
-
generic-ec-zkp
ZK-proofs and primitives built on top of
generic-ec
crate -
tlock
Rust encryption library for practical time-lock encryption
-
tlock_age
Rust encryption library for hybrid time-lock encryption
-
sealed-secrets
lib to encrypt and decrypt secrets using Sealed Secrets
-
bls12_381_plus
BLS12-381 pairing-friendly elliptic curve construction. This is a fork from zkcrypto/bls12_381 but adds hash to curve and multiexponentiation methods as well as enables multi-pairing without the allocator requirement
-
scryptenc-wasm
Wasm bindings for scryptenc
-
rgp
Enabling E2EE for a broad range of applications
-
abcrypt-wasm
Wasm bindings for abcrypt
-
blstrs_plus
High performance implementation of BLS12 381
-
sequoia-wot
OpenPGP's web of trust
-
getrandom-runtime-seeded
A collection of standardized messages, state structs, and helper functions a contract can use to implement contract migration
-
x509-parser
Parser for the X.509 v3 format (RFC 5280 certificates)
-
EZDB
Easy little database
-
scal3
Verify that systems operate under your sole control (prototype, patent pending)
-
seguid-rust
Seguid algorithm in Rust
-
cloudfront_sign
module for AWS CloudFront to generate signed URLs and cookies
-
zshuffle
Encrypt and shuffle cards, resulting in a randomly ordered deck
-
gcm-sst
TODO
-
rustls-cert-read
A certificate chain and private key reading abstraction for rustls
-
fractus
Cryptographic attack library for Rust and Python
-
webcryptobox
Convenient opiniated wrappers around OpenSSL to use WebCrypto compatible cryptography
-
multihash-codetable
Default multihash code-table with cryptographically secure hash implementations
-
solitaire_cypher
The playing card based cypher created by Bruce Schneier and featured in Neal Stephenson’s Cryptonomicon
-
aes-gcm-sst
TODO
-
az-snp-vtpm
vTPM based SEV-SNP attestation for Azure Confidential VMs
-
az-cvm-vtpm
Package with shared code for Azure Confidential VMs
-
openssl
bindings
-
az-tdx-vtpm
vTPM based TDX attestation for Azure Confidential VMs
-
ordinal_crypto
Moved to RGP crate
-
DBeaverPasswordViewer
viewing DBeaver Community Edition passwords
-
webrtc-srtp
A pure Rust implementation of SRTP
-
tpm-box
Temporary secret encryption using TPM
-
webrtc-dtls
A pure Rust implementation of DTLS
-
blitzar
High-Level Rust wrapper for the blitzar-sys crate
-
m10-signing
M10 utility library for request signing
-
br-crypto
crypto
-
frost-core
Types and traits to support implementing Flexible Round-Optimized Schnorr Threshold signature schemes (FROST)
-
libcryptsetup-rs-sys
Low level bindings for libcryptsetup
-
frost-secp256k1
A Schnorr signature scheme over the secp256k1 curve that supports FROST
-
plonky2_util
used by Plonky2
-
frost-ed25519
A Schnorr signature scheme over Ed25519 that supports FROST
-
frost-p256
A Schnorr signature scheme over the NIST P-256 curve that supports FROST
-
frost-ristretto255
A Schnorr signature scheme over the prime-order Ristretto group that supports FROST
-
frost-ed448
A Schnorr signature scheme over Ed448 that supports FROST
-
frost-rerandomized
Types and traits to support implementing a re-randomized variant of Flexible Round-Optimized Schnorr Threshold signature schemes (FROST)
-
ring
Safe, fast, small crypto using Rust
-
tor-client-lib
A client library for the Tor API
-
assemblyline-models
Data models for the Assemblyline malware analysis platform
-
sigma_fun
A framework for making Sigma protocols fun!
-
wkd-server
A WKD server
-
yage
manage encrypted secrets in YAML files with age encryption
-
mach-siegbert-vogt-dxcsa
Mach Siegbert Vogt DXCSA signing algorithm
-
curve25519-dalek-ml
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
ed448-goldilocks-plus
A pure-Rust implementation of Ed448 and Curve448 and Decaf
-
soda_resource_tools_lib
soda resource tools lib
-
shelter
ROP-based sleep obfuscation to evade memory scanners
-
p12_polyfill
Allows to use pkcs12 generated by openssl v1 in rustls and native-tls (vendored openssl-src v3)
-
ecies_25519
Elliptic Curve Integrated Encryption Scheme with X25519 curve
-
biscuit-auth
an authorization token with decentralized verification and offline attenuation
-
authenticode-parser
Bindings to the authenticode-parser library
-
openpgp-card-sequoia
Wrapper of openpgp-card for use with Sequoia PGP
-
t-rust-less-lib
Password manager library
-
ucipher
uci
-
mbedtls
Idiomatic Rust wrapper for MbedTLS, allowing you to use MbedTLS with only safe code while being able to use such great Rust features like error handling and closures. Building on MbedTLS's focus on embedded use…
-
icicle-core
GPU ZK acceleration by Ingonyama
-
authenticode-parser-sys
Raw FFI bindings to the authenticode-parser library
-
unknown_order
working with finite fields where the modulus is of unknown order, typtical for RSA, Paillier, Hyperelliptic curves, etc
-
libpaillier
The Paillier cryptosystem is a public key crytosystem based on composite degree residuosity classes. Paillier ciphertexts are homorphic in that the can be added
-
steam-machine-id
For generating Steam machine IDs
-
ministark-gpu
GPU optimized primitives commonly used by STARK/SNARK provers
-
p12_q3
pure rust pkcs12 tool
-
openssl-src
Source of OpenSSL and logic to build it
-
blastkids
Derive BLS12-381 child keys using Blastkids
-
sppark
Zero-knowledge template library
-
cryptographic_primitives
that provides cryptographic primitives
-
blowfish-mbed-c
interface for the deprecated mbedtls implementation of Blowfish cipher
-
blowfish-mbed-sys
Lean bindings for the deprecated mbedtls implementation of Blowfish cipher
-
pbkdf2
Generic implementation of PBKDF2
-
xwing-kem
Xwing hybrid combiner KEM utilizing MLKEM/Kyber and X25519. See https://eprint.iacr.org/2024/039.
-
mmkv-parser
A readonly MMKV implementation (parser) with encryption support
-
password-hash
Traits which describe the functionality of password hashing algorithms, as well as a
no_std
-friendly implementation of the PHC string format (a well-defined subset of the Modular Crypt Format a.k.a. MCF) -
scrypt
password-based key derivation function
-
rustls-acme
TLS certificate management and serving using rustls
-
wow_srp
Server and client library for the World of Warcraft flavor of SRP6 with support for reconnection
-
grammers-crypto
Several cryptographic utilities to work with Telegram's data
-
blake2
hash functions
-
fire-stream
A more or less simple communication protocol library
-
bcrypt-pbkdf
password-based key derivation function
-
aes-prng
Pseudo-random number generator based on AES
-
crypt_guard_sign
CryptGuardLib is a comprehensive Rust library designed for strong encryption and decryption, incorporating post-quantum cryptography to safeguard against quantum threats. It's geared…
-
neo-crypto
An encryption algorithm library written in Rust
-
curve25519-dalek
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
rsacracker
Powerful RSA cracker for CTFs. Supports RSA, X509, OPENSSH in PEM and DER formats.
-
password-auth
Password authentication library with a focus on simplicity and ease-of-use, including support for Argon2, PBKDF2, and scrypt password hashing algorithms
-
crypt_guard_kyber
CryptGuardLib is a comprehensive Rust library designed for strong encryption and decryption, incorporating post-quantum cryptography to safeguard against quantum threats. It's geared…
-
halo2curves
Elliptic curve implementations and wrappers for halo2 library
-
rsa
Pure Rust RSA implementation
-
qudoku
Shamir Secret Sharing implementation, including a novel nested threshold secret system to complement existing SSS groups
-
minotp
Dead simple OTP library for Rust
-
paysec
related to payment security standards
-
ed25519-dalek
Fast and efficient ed25519 EdDSA key generations, signing, and verification in pure Rust
-
x25519-dalek
X25519 elliptic curve Diffie-Hellman key exchange in pure-Rust, using curve25519-dalek
-
cose-rust-plus
COSE Rust implementation
-
stark-curve
Stark curve implementation
-
rust-pake
An alternative implementation in rust for @schollz's pake library
-
nostrkeytool
A command-line tool for NOSTR key operations
-
gst-plugin-sodium
GStreamer plugin for libsodium-based file encryption and decryption
-
ed25519-compact
A small, self-contained, wasm-friendly Ed25519 implementation
-
balloon-hash
Pure Rust implementation of the Balloon password hashing function
-
argon2
Pure Rust implementation of the Argon2 password hashing function with support for the Argon2d, Argon2i, and Argon2id algorithmic variants
-
sha-crypt
Pure Rust implementation of the SHA-crypt password hash based on SHA-512 as implemented by the POSIX crypt C library
-
vodozemac
Olm and Megolm
-
soft-aes
A Rust-based software library for AES
-
double-ratchet-signal
Reexport the Signal provider of double-ratchet: Double Ratchet key management for exchanging encrypted messages between two parties
-
double-ratchet-signal-cbc-aes256-pkcs7-compact
See the crate double-ratchet-signal
-
wrapper-argon2
argon
-
age
[BETA] A simple, secure, and modern encryption library
-
noir_grumpkin
grumpkin curve
-
age-plugin
[BETA] API for writing age plugins
-
sha2
Pure Rust implementation of the SHA-2 hash function family including SHA-224, SHA-256, SHA-384, and SHA-512
-
ecdsa
Pure Rust implementation of the Elliptic Curve Digital Signature Algorithm (ECDSA) as specified in FIPS 186-4 (Digital Signature Standard), providing RFC6979 deterministic signatures as well as support for added entropy
-
hkdf
HMAC-based Extract-and-Expand Key Derivation Function (HKDF)
-
digest
Traits for cryptographic hash functions and message authentication codes
-
sha3
Pure Rust implementation of SHA-3, a family of Keccak-based hash functions including the SHAKE family of eXtendable-Output Functions (XOFs), as well as the accelerated variant TurboSHAKE
-
signature
Traits for cryptographic signature algorithms (e.g. ECDSA, Ed25519)
-
sha1
SHA-1 hash function
-
elliptic-curve
General purpose Elliptic Curve Cryptography (ECC) support, including types and traits for representing various elliptic curve forms, scalars, points, and public/secret keys composed thereof
-
hmac
Generic implementation of Hash-based Message Authentication Code (HMAC)
-
fhe
Fully Homomorphic Encryption in Rust
-
md-5
MD5 hash function
-
fhe-math
Mathematical utilities for the fhe.rs library
-
lockstitch
incremental, stateful cryptographic primitive for symmetric-key cryptographic operations in complex protocols
-
rfc6979
Pure Rust implementation of RFC6979: Deterministic Usage of the Digital Signature Algorithm (DSA) and Elliptic Curve Digital Signature Algorithm (ECDSA)
-
fhe-traits
Traits for the fhe.rs library
-
rustls-channel-resolver
single-cert channel-ish rustls resolver for live-reloading certificate files
-
block-buffer
Buffer type for block processing of data
-
age-core
[BETA] Common functions used across the age crates
-
binstalk-types
The binstall toolkit that contains basic types for binstalk crates
-
fhe-util
fhe.rs library
-
sm3
SM3 (OSCCA GM/T 0004-2012) hash function
-
wasmsign2-cli
CLI tool to sign and verify WebAssembly modules
-
wasmsign2
WebAssembly modules signatures proposal
-
streebog
(GOST R 34.11-2012) hash function
-
rage
[BETA] A simple, secure, and modern encryption tool
-
belt-hash
BelT hash function (STB 34.101.31-2020)
-
crypto-common
Common cryptographic traits
-
kestrel-crypto
Cryptography backend for Kestrel
-
xwt-cert-utils
Useful utils for working with certificates, provided by and for xwt. Not directly required to use xwt, but can be helpful. Also usable without xwt. Inteded to work with both wasm and native.
-
dapol
DAPOL+ Proof of Liabilities protocol
-
falcon-rust
Falcon post-quantum digital signature scheme
-
fawkes-crypto-zkbob-pairing_ce
Pairing-friendly elliptic curve library
-
oauth-certs
The project fetches oauth certificates from providers during runtime and stores them in static Read / Write lock
-
bbjwt
well documented JWT validation library, mainly for validating OpenID Connect ID Tokens
-
rustic_core
fast, encrypted, deduplicated backups that powers rustic-rs
-
cargo-packager-updater
Rust executable updater
-
dsa
Pure Rust implementation of the Digital Signature Algorithm (DSA) as specified in FIPS 186-4 (Digital Signature Standard), providing RFC6979 deterministic signatures as well as support for added entropy
-
ark-linear-sumcheck
efficient sumcheck protocols
-
mbedtls-sys-auto
Rust bindings for MbedTLS. This version generates the correct bindings at compile time using bindgen
-
sdjwt
SD-JWT support for Issuers, Holders, and Verifiers
-
askar-crypto
Hyperledger Aries Askar cryptography
-
delsum
Reverse Engineer's Toolbox for Checksums
-
text_hidden
text hidden tool
-
askar-storage
Hyperledger Aries Askar secure storage
-
openpgp-ca
OpenPGP CA is a tool for managing and certifying OpenPGP keys
-
paper-age
Easy and secure paper backups of secrets
-
ldwm
signature parsing and verifying library
-
snow
A pure-rust implementation of the Noise Protocol Framework
-
tls_codec
A pure Rust implementation of the TLS (de)serialization
-
hawk
Hawk Implementation for Rust
-
group-math
Group (mathematics) interface and implementations
-
fss-types
Common types used in the crate fss
-
openpgp-ca-lib
OpenPGP CA is a tool for managing and certifying OpenPGP keys
-
ironcore-alloy
IronCore Labs SDK for all your different Application Layer Encryption needs
-
rpm-sequoia
RPM PGP interface using Sequoia
-
pqcrypto-kyber
Post-Quantum Key-Encapsulation Mechanism kyber
-
dusk-hades
Hades252 permutation algorithm over the Bls12-381 Scalar field
-
df1t-cyph
minimal rust encryption algorithm made by a solid structured sequential algorithms without any external cryptographic crates
-
ece
Encrypted Content-Encoding for HTTP Rust implementation
-
argon2-kdf
Intuitive Rust bindings for Argon2
-
crypto-wasi
wasi-crypto wrapper with nodejs’s
crypto
style -
encryptodon
Pachyderm Goes Private 🐘🕶️
-
homestar-workspace-hack
workspace-hack package, managed by hakari
-
wardenx-core
core system and functionalities
-
hancock
Implementation-agnostic HTTP Signature helper
-
babyjubjub-rs
BabyJubJub elliptic curve implementation
-
p256
Pure Rust implementation of the NIST P-256 (a.k.a. secp256r1, prime256v1) elliptic curve as defined in SP 800-186, with support for ECDH, ECDSA signing/verification, and general purpose curve arithmetic
-
ark-relations-zkhub
rank-one constraint systems
-
encrypt_config
manage, persist and encrypt your configurations
-
primeorder
Pure Rust implementation of complete addition formulas for prime order elliptic curves (Renes-Costello-Batina 2015). Generic over field elements and curve equation coefficients
-
secure_layer
A mechanism to secure server client communication
-
whirlpool
hash function
-
frostore
Schnorr Threshold Signature Database
-
k8s-crds-cert-manager
Kubernetes CRDs for cert-manager 1.14.4
-
rusty_paseto
A type-driven, ergonomic alternative to JWT for secure stateless PASETO tokens
-
fides
cryptographic primitives
-
wrapper-bcrypt
argon
-
crypto-bigint
Pure Rust implementation of a big integer library which has been designed from the ground-up for use in cryptographic applications. Provides constant-time, no_std-friendly implementations…
-
caprand
RP2040 secure random number generator by timing capacitor pullup
-
challenge-bypass-ristretto
implemention of the privacy pass cryptographic protocol using the Ristretto group (WIP)
-
halo2-ecc
In-circuit elliptic curve library for halo2
-
fsc
file store client
-
keccak
Pure Rust implementation of the Keccak sponge function including the keccak-f and keccak-p variants
-
sha2-const-stable
const fn implementation of the SHA-2 family of hash functions. Based on sha2-const, but updated to use only stable rust
-
envx
Interact with envx servers via CLI
-
craftls
Rustls is a modern TLS library written in Rust
-
sha_256_scratch
SHA-256 from-scratch implementation
-
lock_box
A command-line tool for generating and managing passwords
-
sha256sum_from_scratch
sha256sum from-scratch implementation in Rust
-
async-tls
Asynchronous TLS/SSL streams using Rustls
-
secmem-proc
Process hardening through system APIs
-
trust-graph
trust graph
-
sm4-gcm
SM4-GCM Library
-
elliptic_curve_cryptography_tools
elliptic curve cryptography with ECDSA
-
sapio-secp256k1-sys
FFI for Pieter Wuille’s
libsecp256k1
library -
ns-protocol
Name & Service Protocol in Rust
-
healm
Heap allocated merkle tree
-
sec1
Pure Rust implementation of SEC1: Elliptic Curve Cryptography encoding formats including ASN.1 DER-serialized private keys as well as the Elliptic-Curve-Point-to-Octet-String encoding
-
ysfed
encrypting and decrypting files using a password
-
nucypher-core
Nucypher network core datastructures
-
block-padding
Padding and unpadding of messages divided into blocks
-
sosistab2
An obfuscated datagram transport for horrible networks
-
jwt-simple-no-nbf-fork
Easy to use, secure, non opinionated JWT (JSON Web Tokens) implementation for Rust
-
secp256k1-zkp
Rust bindings for the
libsecp256k1-zkp
library -
terrars-hashicorp-tls
Pre-generated Terrars TLS bindings
-
k256
secp256k1 elliptic curve library written in pure Rust with support for ECDSA signing/verification/public-key recovery, Taproot Schnorr signatures (BIP340), Elliptic Curve Diffie-Hellman (ECDH)…
-
dbl
Double operation in Galois Field GF(2^128) as used by e.g. CMAC/PMAC
-
pkcs8
Pure Rust implementation of Public-Key Cryptography Standards (PKCS) #8: Private-Key Information Syntax Specification (RFC 5208), with additional support for PKCS#8v2 asymmetric key packages (RFC 5958)
-
sm9_core
SM9, identity-based cryptography
-
cross-krb5
Safe cross platform Kerberos v5 interface
-
pkcs1
Pure Rust implementation of Public-Key Cryptography Standards (PKCS) #1: RSA Cryptography Specifications Version 2.2 (RFC 8017)
-
cms
Pure Rust implementation of the Cryptographic Message Syntax (CMS) as described in RFC 5652 and RFC 3274
-
spki
X.509 Subject Public Key Info (RFC5280) describing public keys as well as their associated AlgorithmIdentifiers (i.e. OIDs)
-
pem-rfc7468
PEM Encoding (RFC 7468) for PKIX, PKCS, and CMS Structures, implementing a strict subset of the original Privacy-Enhanced Mail encoding intended specifically for use with cryptographic keys…
-
ohttp
Oblivious HTTP
-
pkcs5
Pure Rust implementation of Public-Key Cryptography Standards (PKCS) #5: Password-Based Cryptography Specification Version 2.1 (RFC 8018)
-
rust-argon2
Argon2 password hashing function
-
kyber-kem
Kyber IND-CCA2 KEM in Rust
-
ore-rs
Order-revealing encryption library used by the CipherStash searchable encryption platform
-
x509-verify
Pure Rust library that verifies X.509 signatures based on the algorithm identifiers
-
envelopers
A very simple envelope encryption library using aes-gcm
-
x509-ocsp
Pure Rust implementation of the X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP formats as described in RFC 6960
-
gnostr-types
Types for nostr protocol handling
-
gnip44
nostr NIP-44 encryption code
-
message_verifier
Rust Message Verifier library compatible with Rails' MessageVerifier and MessageEncryptor
-
embedded-tls
TLS 1.3 client with no_std support and no allocator
-
matrix-sdk-crypto
Matrix encryption library
-
matrix-sdk-store-encryption
Helpers for encrypted storage keys for the Matrix SDK
-
bign256
Pure Rust implementation of the Bign P-256 (a.k.a. bign-curve256v1) elliptic curve as defined in STB 34.101.45-2013, with general purpose curve arithmetic
-
memsecurity
Securely hold secrets in memory and protect them against cross-protection-boundary readout via microarchitectural, via attacks on physical layout, and via coldboot attacks
-
serdect
Constant-time serde serializer/deserializer helpers for data that potentially contains secrets (e.g. cryptographic keys)
-
cylinder
high-level cryptographic signing library
-
sha256
crypto digest
-
decrypt
efficient and secure decryption
-
pkcs12
Pure Rust implementation of Public-Key Cryptography Standards (PKCS) #12: Personal Information Exchange Syntax v1.1 (RFC7292)
-
cyl
high-level cryptographic signing CLI tool
-
passivized_htpasswd
Generate htpasswd files
-
const-sha1
A sha1 implementation for use in const contexts
-
const-oid
Const-friendly implementation of the ISO/IEC Object Identifier (OID) standard as defined in ITU X.660, with support for BER/DER encoding/decoding as well as heapless no_std (i.e. embedded) support
-
async-rustls
Asynchronous TLS/SSL streams using Rustls
-
envault
managing secrets
-
dusk-schnorr
A pure-Rust implementation of Schnorr signatures with a PLONK circuit module additionally
-
ferric_crypto_lib
Ferric Crypto
-
wring-twistree
Whole-message cipher and tree hash
-
kms-aead
KMS/AEAD envelope encryption for GCP/AWS KMS and Ring AEAD encryption
-
sm9
SM9, identity-based cryptography
-
ncryptf-rs
Secure API authentication and end to end encryption
-
safe_pqc_kyber
Fork of pqc_kyber with some safety fixes
-
my_encryption_lib
various encryption and decryption algorithms
-
kestrel-cli
Kestrel file encryption program
-
chamber-cli
The CLI for Chamber, the self-hostable SecretOps service
-
crypto-primes
Random prime number generation and primality checking library
-
dnapi-rs
client for the Defined Networking API
-
kytz
Soaring in the Cloud, but you pull the strings
-
nebula-config
client for the Defined Networking API
-
proof-of-history
A naive, minimalist, demo implementation of Proof of History
-
crypto-seal
A small utility designed to securely "package" or seal serde-compatible data type that can passed around in an uncompromised manner
-
libsm
China's Standards of Encryption Algorithms (SM2/3/4)
-
keccak-asm
wrappers for SHA-3 algorithms written in assembly
-
x509-cert
Pure Rust implementation of the X.509 Public Key Infrastructure Certificate format as described in RFC 5280
-
inspect-cert-chain
OpenSSL-like text output for debugging certificate chains
-
kyberlib
A Robust Rust Library for CRYSTALS-Kyber Post-Quantum Cryptography
-
ppaass-codec
The codec part for ppaass application
-
rail_fence_cipher
that provides functions to encrypt and decrypt strings using the rail fence cipher
-
web-push-native
Generic Event Delivery Using Http Push (web-push) components implemented according to RFC8030
-
ece-native
Encrypted Content-Encoding (ECE) encryption and decryption implemented according to RFC8188
-
tongsuo
OpenSSL bindings
-
tokio-rustls-wasi
Asynchronous TLS/SSL streams for Tokio using Rustls
-
tongsuo-sys
FFI bindings to Tongsuo/OpenSSL
-
noncrypto-digests
Implement Digest trait for non-cryptographic hashing functions like fnv and xxhash
-
lhash
Minimal hashing library
-
sigh
HTTP signature generation and verification for ActivityPub, using OpenSSL
-
ncm_core
core decoder for ncmc
-
async-hash
Traits and helper functions for SHA256 hashing of async data types
-
chksum-cli
checksum calculator
-
secured
A lightweight, easy-to-use Rust package for file encryption and decryption, suitable for both CLI and library integration in Rust applications
-
secured-enclave
Ergonomic library for secure encryption and decryption of data in Rust
-
secured-cipher
Pure Rust implementation of the ChaCha cipher family
-
secured-cipher-key
An helper to generate generic encryption keys from a password
-
risc0-sppark
Zero-knowledge template library
-
superboring
A reimplementation of the 'boring' crate in pure Rust
-
minisign
sign files and verify signatures
-
sev_attest_tool
SEV-SNP attestation verification
-
bananapeel
A darn-slippery obfuscator algorithm!
-
yacme
ACME client
-
arecibo
Recursive zkSNARKs without trusted setup
-
pake-cpace
CPace, a balanced PAKE
-
wpa_passphrase
Generate a WPA PSK from a SSID and passphrase
-
literate-crypto
Literate Cryptography by 12hbender
-
krill
Resource Public Key Infrastructure (RPKI) daemon
-
neuedu-cryptos
包含国密算法的密码库。 A library include SM3, SM4 (Chinese ShangMi) crypto algos
-
dusk-bls12_381
Fork of the implementation of the BLS12-381 pairing-friendly elliptic curve construction with some extra tooling needed by the Dusk team
-
brsl2
Cayley hashing as in 'Navigating in the Cayley Graph of SL₂(𝔽ₚ)'
-
libhydrogen
A modern and easy to use cryptography library
-
pasetors
PASETO: Platform-Agnostic Security Tokens (in Rust)
-
tokio-openssl
SSL streams for Tokio backed by OpenSSL
-
sha1_hab
SHA-1 Hash
-
dusk-bls12_381-sign
BLS signatures using the BLS12-381 curve
-
sosistab2-obfsudp
obfuscated UDP transport for sosistab2
-
russh-cryptovec
A vector which zeroes its memory on clears and reallocations
-
cipher_blend
cipher blend
-
signway-server
A gateway for redirecting authentic signed URLs to the requested API
-
capycrypt
An academic exercise in cryptographic algorithm design, pairing NIST FIPS 202 with a variety of Edwards curves
-
spaghettinuum
The future of the internet is al dente
-
tokio-tongsuo
SSL streams for Tokio backed by Tongsuo/OpenSSL
-
dryoc
Don't Roll Your Own Crypto: pure-Rust, hard to misuse cryptography library
-
aruna-file
component for encrypting / compressing .aruna files, including specification
-
schnorrkel
Schnorr VRF, signatures, etc. using the Ristretto group
-
monoio-rustls-fork-shadow-tls
Asynchronous TLS streams wrapper for Monoio based on Rustls
-
rsa-openssl-format
Parse and encode RSA public keys in the format that OpenSSL uses for authorized_keys
-
cosmian_findex
Symmetric Searchable Encryption
-
libpep
PEP primitives, offering pseudonimization and encryption interfaces
-
neuedu-cryptos-wasm
包含国密算法的密码库。 A library include SM3, SM4 (Chinese ShangMi) crypto algos
-
stegano
The ultimate steganography swiss knife army CLI tool
-
synedrion
Threshold signing library based on Canetti-Gennaro-Goldfeder-Makriyannis-Peled '21 scheme
-
mas-iana
IANA registry data for JOSE and OAuth 2.0
-
mas-jose
JSON Object Signing and Encryption (JWT & co) utilities
-
jaws
JSON Algorithms and Web Signing
-
softaes
Fast software implementation of the AES round function in pure Rust
-
drand-verify
A drand verification library
-
certeef
A small certificate manager
-
hyper-openssl
Hyper TLS support via OpenSSL
-
tls-cert-expiration
A small client of certeef, the simple certificate manager
-
monocypher
Bindings for the monocypher C library
-
shadowsocks-crypto
Shadowsocks Crypto
-
ya-relay-core
Golem relay base functionality
-
pc1
cipher
-
fluent-hash
A lightweight library which provides a fluent interface for generating SHA-1 and SHA-2 digests
-
hpke-rs
HPKE Implementation
-
monocypher-sys
Bindgen generated bindings to the monocypher C library
-
signify
Command-line implementation of the signify signature scheme
-
bertie
Minimal TLS 1.3 implementation
-
steganographyrs
Steganography
-
hpke-rs-rust-crypto
Crypto backend for HPKE using native Rust crypto
-
rustls-native-certs
allows rustls to use the platform native certificate store
-
libcrux
The Formally Verified Cryptography Library
-
hpke-rs-crypto
Traits and types for HPKE crypto backends
-
umbral-rs
A pure-Rust implementation of the Umbral threshold Proxy Re-encryption scheme
-
libsignify
Create cryptographic signatures for files and verify them
-
aegis
authenticated ciphers (AEGIS-128, AEGIS-256, AEGIS-128X, AEGIS-256X)
-
libcrux-platform
Platform detection crate for libcrux
-
criticaltrust
Digital signatures implementation for criticalup
-
aes-gcm-stream
AES GCM stream encrypt and decrypt library, supports AES128/192/256 bit keys
-
libcrux-hacl
hacl sys crate of libcrux
-
royalguard
Secure Ergonomic Command Line Password Manager. Free Forever. Made with ❤️ using 🦀
-
libjade-sys
Rust bindings for libjade, a formally verified cryptographic library written in jasmin
-
libhydrogen-sys
Low-level bindings for the Hydrogen cryptography library
-
kuznechik
Synchronous encryption algorithm "Kuznechik" (GOST R 34.12-2015, GOST R 34.13-2015)
-
pdf
PDF reader
-
sha256-rs
SHA256 hash made using Rust
-
wcb
WebCrypto compatible encryption CLI
-
Engima
A command line interface for an Enigma machine simulator. Configurable with any reflector, number of rotors, and plugboard pairs.
-
hohibe
Hierarchical Identity Based Encryption (HIBE) for Rust
-
star-constellation
Nested threshold aggregation built on the STAR protocol
-
authenticator
interacting with CTAP1/2 security keys for Web Authentication. Used by Firefox.
-
sta-rs
Distributed Secret-Sharing for Threshold Aggregation Reporting
-
psp_security
PSP Security Protocol
-
xoofff
Farfalle with Xoodoo: Parallel Permutation-based Cryptography
-
multimixer-128
Universal Keyed Hashing Based on Integer Multiplication
-
turboshake
A family of extendable output functions based on keccak-p[1600, 12] permutation
-
feistel-permutation-rs
Constant time, constant space permutations with Feistel Network ciphers
-
tag_password
An advanced Rust library leveraging the type system to statically determine password hashing status for enhanced security
-
sequoia-net
Network services for OpenPGP
-
udigest
Unambiguously digest structured data
-
fast-paillier
Optimized Paillier encryption scheme
-
lox-library
Main Lox library with protocols and functions that that make up Lox
-
secapi
bindings
-
lox-zkp
A toolkit for auto-generated implementations of Schnorr proofs
-
cast6
block cipher
-
sm2
Pure Rust implementation of the SM2 elliptic curve as defined in the Chinese national standard GM/T 0003-2012 as well as ISO/IEC 14888. Includes support for the SM2DSA Digital Signature Algorithm.
-
getrandom_or_panic
Implements a RngCore which panics unless getrandom exists
-
hashell
MRSL's hashing function ported to rust
-
d3xs-protocol
Physical access control (protocol)
-
secapi-sys
FFI bindings to SecAPI
-
flexiber
Encoding and decoding of BER-TLV as described in ISO 7816-4, without allocations
-
rosenpass
Build post-quantum-secure VPNs with WireGuard!
-
x509-certificate
X.509 certificate parser and utility functionality