-
curve25519-dalek
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
rustls
modern TLS library written in Rust
-
blake3
hash function
-
sha2
Pure Rust implementation of the SHA-2 hash function family including SHA-224, SHA-256, SHA-384, and SHA-512
-
rsa
Pure Rust RSA implementation
-
webpki-roots
Mozilla's CA root certificates for use with webpki
-
openssl
bindings
-
sequoia-openpgp
OpenPGP data types and associated machinery
-
rcgen
Rust X.509 certificate generator
-
pem
Parse and encode PEM-encoded data
-
bcrypt
Easily hash and verify passwords using bcrypt
-
secrecy
Wrapper types and traits for secret management which help ensure they aren't accidentally copied, logged, or otherwise exposed (as much as possible), and also ensure secrets are securely wiped from memory when dropped
-
security-framework
Security.framework bindings for macOS and iOS
-
snow
A pure-rust implementation of the Noise Protocol Framework
-
aes
Pure Rust implementation of the Advanced Encryption Standard (a.k.a. Rijndael)
-
subtle
Pure-Rust traits and utilities for constant-time cryptographic implementations
-
constant_time_eq
Compares two equal-sized byte strings in constant time
-
base64ct
Pure Rust implementation of Base64 (RFC 4648) which avoids any usages of data-dependent branches/LUTs and thereby provides portable "best effort" constant-time operation and embedded-friendly no_std support
-
coset
Set of types for supporting COSE
-
aws-lc-rs
cryptographic library using AWS-LC for its cryptographic operations. This library strives to be API-compatible with the popular Rust library named ring.
-
blst
Bindings for blst BLS12-381 library
-
group
Elliptic curve group traits and utilities
-
vsss-rs
Verifiable Secret Sharing Schemes for splitting, combining and verifying secret shares
-
cryptoki
Rust-native wrapper around the PKCS #11 API
-
ct-codecs
Constant-time hex and base64 codecs from libsodium reimplemented in Rust
-
hmac-sha256
A small, self-contained SHA256, HMAC-SHA256, and HKDF-SHA256 implementation
-
fiat-crypto
generated Rust
-
schannel
bindings for rust, allowing SSL/TLS (e.g. https) without openssl
-
hpke
hybrid encryption standard (RFC 9180) in pure Rust
-
asn1
ASN.1 (DER) parser and writer for Rust
-
tfhe
TFHE-rs is a fully homomorphic encryption (FHE) library that implements Zama's variant of TFHE
-
boring
BoringSSL bindings
-
pgp
OpenPGP implementation in Rust
-
der
Pure Rust embedded-friendly implementation of the Distinguished Encoding Rules (DER) for Abstract Syntax Notation One (ASN.1) as described in ITU X.690 with full support for heapless
no_std/no_alloctargets -
aws-sigv4
SigV4 signer for HTTP requests and Event Stream messages
-
crypto-primes
Random prime number generation and primality checking library
-
tiny-keccak
Keccak derived functions
-
pairing
Pairing-friendly elliptic curve library
-
sha256
crypto digest
-
libcrux-ml-kem
Libcrux ML-KEM & Kyber implementations
-
light-poseidon
Poseidon hash implementation in Rust
-
ring
An experiment
-
ed25519-compact
A small, self-contained, wasm-friendly Ed25519 implementation
-
rustls-platform-verifier
supports verifying TLS certificates in rustls with the operating system verifier
-
authenticator
interacting with CTAP1/2 security keys for Web Authentication. Used by Firefox.
-
gridiron
Rust finite field library with fixed size multi-word values
-
pasetors
PASETO: Platform-Agnostic Security Tokens (in Rust)
-
x509-certificate
X.509 certificate parser and utility functionality
-
secret-vault
secure vault to store securely application secrets in memory from Google/AWS/K8S and environment variables
-
cryptoxide
pure implementation of various common modern cryptographic algorithms, WASM compatible
-
matrix-sdk-crypto
Matrix encryption library
-
ed25519-dalek
Fast and efficient ed25519 EdDSA key generations, signing, and verification in pure Rust
-
hmac-sha512
A small, self-contained SHA512, HMAC-SHA512, HKDF-SHA512, SHA384, HMAC-SHA384, and HKDF-SHA384 implementation
-
curve25519-dalek-ml
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
tss-esapi
Rust-native wrapper around TSS 2.0 Enhanced System API
-
tor-keymgr
Key management for the Arti Tor implementation
-
digest
Traits for cryptographic hash functions and message authentication codes
-
w3f-bls
Aggregate BLS-like signatures
-
opaque-ke
OPAQUE password-authenticated key exchange protocol
-
picky-asn1-x509
ASN1 types defined by X.509 related RFCs
-
openssl-probe
helping to find system-wide trust anchor (“root”) certificate locations based on paths typically used by
openssl -
mls-rs
Messaging Layer Security (RFC 9420)
-
sequoia-sq
Command-line frontends for Sequoia
-
openmls
Messaging Layer Security (MLS) protocol, as defined in RFC 9420
-
sha1_smol
Minimal dependency-free implementation of SHA1 for Rust
-
hashguard
Command-Line tool for ensuring the integrity of files using hash sums
-
kbs2
A secret manager backed by age
-
rusty_paseto
A type-driven, ergonomic alternative to JWT for secure stateless PASETO tokens
-
ppv-lite86
Cross-platform cryptography-oriented low-level SIMD library
-
age
[BETA] A simple, secure, and modern encryption library
-
self_encryption
Self encrypting files (convergent encryption plus obfuscation)
-
cryptographic-message-syntax
A pure Rust implementation of Crypographic Message Syntax (RFC 5652)
-
paper-age
Easy and secure paper backups of secrets
-
cosmian_crypto_core
Cosmian base cryptographic library
-
napa
secure command line password manager
-
ap-relay
activitypub relay
-
libpep
polymorphic encryption and pseudonymization
-
g2p
create types that implement fast finite field arithmetic
-
tokio-openssl
SSL streams for Tokio backed by OpenSSL
-
halo2curves
Elliptic curve implementations and wrappers for halo2 library
-
sshkeys
parsing OpenSSH certificates and public keys
-
keccak-hash
keccak-hashis a set of utility functions to facilitate working with Keccak hashes (256/512 bits long) -
djpass
A command-line tool to generate and verify passwords used in Django project
-
sigstore
An experimental crate to interact with sigstore
-
rustls-pki-types
Shared types for the rustls PKI ecosystem
-
rufendec
lightweight CLI tool for AES-256 encryption and decryption, preserving file names and directory structure. With support for ECB/GCM modes, it simplifies securing and restoring files with ease, all powered by Rust.
-
mbedtls
Idiomatic Rust wrapper for MbedTLS, allowing you to use MbedTLS with only safe code while being able to use such great Rust features like error handling and closures. Building on MbedTLS's focus on embedded use…
-
nkeys
NATS nkeys library
-
orion
Usable, easy and safe pure-Rust crypto
-
fips204
FIPS 204: Module-Lattice-Based Digital Signature
-
delsum
Reverse Engineer's Toolbox for Checksums
-
hakanai
CLI client for Hakanai, a secure secret sharing service
-
vrf
Fast and extensible Verifiable Random Function (VRF) library; currently supporting secp256k1, secp256r1 and sect163k1 curves
-
recrypt
A pure-Rust implementation of Transform Encryption, a Proxy Re-encryption scheme
-
rabbitmq_http_client
RabbitMQ HTTP API client
-
zipsign-api
Sign and verify
.zipand.tar.gzfiles with an ed25519 signing key -
mla
Multi Layer Archive - A pure rust encrypted and compressed archive file format
-
lrwn
encoding / decoding LoRaWAN frames
-
apr
Rust bindings for Apache Portable Runtime
-
prolock
securely storing secrets like passwords and plain text snippets in a password-protected file
-
qrc-opensource-rs
The free opensource version of the Quantum Secure Cryptographic library in Rust (QRC)
-
sframe
pure rust implementation of SFrame (RFC 9605)
-
keccak-asm
wrappers for SHA-3 algorithms written in assembly
-
dusk-poseidon
Poseidon hash algorithm over the Bls12-381 Scalar field
-
zkryptium
Rust crypto library for zero-knowledge proofs
-
gf256
containing Galois-field types and utilities
-
c2pa
Rust SDK for C2PA (Coalition for Content Provenance and Authenticity) implementors
-
openpgp-card-tools
inspecting, configuring and using OpenPGP cards
-
dryoc
Don't Roll Your Own Crypto: pure-Rust, hard to misuse cryptography library
-
vnc-rs
An async implementation of VNC client side protocol
-
aws-lc-fips-sys
AWS-LC is a general-purpose cryptographic library maintained by the AWS Cryptography team for AWS and their customers. This is the FIPS validated version of AWS-LC.
-
threema-gateway
A client library for the Threema Gateway
-
safecloset
Secret Keeper
-
wdcrypt
CLI to encrypt the current working directory with Fernet encryption
-
boring2
BoringSSL bindings
-
gpg-tui
Manage your GnuPG keys with ease!
-
saorsa-pqc
Post-Quantum Cryptography library for Saorsa Labs projects
-
s2n-tls
A C99 implementation of the TLS/SSL protocols
-
jaz
Find secrets hidden in commits
-
openssl-sys
FFI bindings to OpenSSL
-
p12-keystore
Convenient API to work with PKCS#12 files
-
rbw
Unofficial Bitwarden CLI
-
p2panda-core
Extensible data-types for secure, distributed and efficient exchange of data
-
opa-wasm
OPA policies compiled to WASM
-
rsop
SOP CLI tool based on rPGP and rpgpie
-
pqcrypto-traits
Shared traits for post-quantum cryptographic primitives
-
ecb
Electronic Codebook (ECB) block cipher mode of operation
-
zff
interact with zff, a file format for forensic images
-
product-os-security
Product OS : Security provides a suite of helper tools to easily perform cryptograhpic operations including generating hashes, encrypting and decryting content
-
frost-core
Types and traits to support implementing Flexible Round-Optimized Schnorr Threshold signature schemes (FROST)
-
arq-restore
A program to restore backups created with Arq 6 and 7
-
fips203
FIPS 203: Module-Lattice-Based Key-Encapsulation Mechanism
-
classic-mceliece-rust
Pure rust implementation of the PQC scheme Classic McEliece
-
aws-esdk
implementing client side encryption
-
tor-hscrypto
Basic onion service cryptography types used by Aerti
-
quichash
High-performance cryptographic hash utility with SIMD optimization
-
crypt_guard
CryptGuard is a post-quantum cryptography library with support for Kyber, Falcon, Dilithium in combination with AES and XChaCha20
-
shadowsocks-crypto
Shadowsocks Crypto
-
dimpl
DTLS 1.2 implementation (Sans‑IO, Sync)
-
nethsm-cli
A CLI for the Nitrokey NetHSM
-
encrypt_config
manage, persist and encrypt your configurations
-
blsful
BLS signature implementation according to the IETF spec on the BLS12-381 curve
-
ieee80211
A parser for IEEE 802.11 frames
-
libcrux-ml-dsa
Libcrux ML-DSA implementation
-
rust_keylock_shell
Shell access to the rust-keylock. rust-keylock is a password manager with goals to be Secure, Simple to use, Portable and Extensible.
-
inspect-cert-chain
OpenSSL-like text output for debugging certificate chains
-
gix-validate
Validation functions for various kinds of names in git
-
x25519-dalek
X25519 elliptic curve Diffie-Hellman key exchange in pure-Rust, using curve25519-dalek
-
openssh-keys
read and write OpenSSH public keys
-
p12
pure rust pkcs12 tool
-
rattler_digest
used by rattler crates to compute different hashes from different sources
-
apple-cryptokit-rs
wrapper around Apple's native CryptoKit framework for App Store compliant cryptography
-
b3sum
a command line implementation of the BLAKE3 hash function
-
ensync
A flexible ENcrypted file SYNChroniser suitable for uses where the central location is not fully trusted
-
openssl-src
Source of OpenSSL and logic to build it
-
pqcrypto-hqc
Post-Quantum Key-Encapsulation Mechanism hqc
-
cosmian_cover_crypt
Key Policy attribute encryption based on subset cover
-
giant-spellbook
cryptographic multi-tool with file analysis, encoding, bitflipping, splitting, hashing, encryption, signing, and more
-
crtshmon
Monitor crt.sh for new certificates
-
yara-x
A pure Rust implementation of YARA
-
bulletproofs
A pure-Rust implementation of Bulletproofs using Ristretto
-
shad3
App for hashing entries in blocklists
-
midnight-curves
BLS12 381 and Jubjub curves
-
rgp
Enabling E2EE for a range of applications
-
ece
Encrypted Content-Encoding for HTTP Rust implementation
-
aegis_vm
Advanced Rust code virtualization and obfuscation framework
-
ssh-agent-client-rs
Pure rust implementation of the ssh-agent protocol. It can be used to write clients that interact with the ssh agent.
-
prople-did-core
A set of core libraries to manage the DID data and objects based on Prople system requirements
-
dnssec-prover
allows for the creation and validation of transferrable proofs of entries in the DNS
-
jaws
JSON Algorithms and Web Signing
-
sha1
SHA-1 hash function
-
kylix-ml-kem
ML-KEM (FIPS 203) implementation for the Kylix post-quantum cryptography library
-
signify-rs
OpenBSD-compatible file signing & verification tool
-
generic-ec
General elliptic curve cryptography
-
blind-rsa-signatures
RSA blind signatures in pure Rust
-
rooster
password manager
-
kms-aead
KMS/AEAD envelope encryption for GCP/AWS KMS and Ring AEAD encryption
-
sigstore-verification
Sigstore, Cosign, and SLSA attestation verification library
-
enc_file
Password-based file encryption tool with a versioned header, AEAD, Argon2id KDF, and streaming mode. Library + CLI + GUI.
-
nuts-container
A secure storage library
-
tindercrypt
Data encryption with symmetric cryptographic keys or passwords/passphrases, and self-contained encryption metadata
-
red_asn1
A little library to encode/decode ASN1 DER
-
oqs
interface to Open-Quantum-Safe's liboqs
-
wycheproof
test vectors
-
curve25519-dalek-ng
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
ort-openrouter-cli
Open Router CLI
-
winter-rand-utils
Random value generation utilities for Winterfell crates
-
fluxencrypt
A high-performance, secure encryption SDK for Rust applications
-
internal-russh-forked-ssh-key
Pure Rust implementation of SSH key file format decoders/encoders as described in RFC4251/RFC4253 and OpenSSH key formats, as well as "sshsig" signatures and certificates (including…
-
pgen
Passphrase Generator
-
nest-data-source-api
NEST Data Source API Service
-
picky
Portable X.509, PKI, JOSE and HTTP signature implementation
-
circom-witness-rs
Fast witness generator for Circom circuits
-
lakers
EDHOC (RFC 9528)
-
minisign-verify
A small, zero-dependencies crate to verify Minisign signatures
-
x509-verify
Pure Rust library that verifies X.509 signatures based on the algorithm identifiers
-
dbus-secret-service
interface with Secret Service API over DBUS
-
moq-token
Media over QUIC - Token Generation and Validation
-
cross-krb5
Safe cross platform Kerberos v5 interface
-
biscuit-cli
a CLI to manipulate biscuit tokens
-
news-backend
Personalized article recommendations without profiling or cookies
-
sd-jwt-payload
Selective Disclosure JWTs (SD-JWT)
-
ypass
A secure password manager using YubiKey HMAC-SHA1 challenge-response
-
strobe-rs
Strobe protocol framework in pure Rust
-
shiguredo_srt
SRT (Secure Reliable Transport) library
-
rust-argon2
Argon2 password hashing function
-
tdigests
An efficient Rust implementation of the t-digest algorithm
-
nu_plugin_nw_ulid
Production-grade ULID (Universally Unique Lexicographically Sortable Identifier) utilities plugin for Nushell with cryptographically secure operations, enterprise-grade security, and streaming support
-
sentinel-crypto
Cryptographic utilities for Cyberpath Sentinel, including hashing and signing
-
qp-rusty-crystals-dilithium
Pure Quantus RUST implementation of CRYSTALS-Dilithium digital signature scheme
-
dumpy
A web frontend to Suricata full packet capture
-
verifysign
cargo used to verify digital code signature on files
-
fhe
Fully Homomorphic Encryption in Rust
-
l-s
Summary any file‘s meta
-
ristretto_classfile
reading, writing and verifying Java classfiles
-
kcr_kyverno_io
Kubernetes Custom Resource Bindings
-
jubjub-plus
Jubjub elliptic curve group
-
paq
Hash file or directory recursively
-
secrets
Protected-access memory for cryptographic secrets
-
kestrel-cli
Kestrel file encryption program
-
playfair_cipher
Playfair, Two square and Four square cipher
-
rescue_poseidon
Sponge construction based Algebraic Hash Functions
-
elf2tab
Compiles from ELF to TAB (a Tock Application Bundle using the Tock Binary Format)
-
sequoia-chameleon-gnupg
Sequoia's reimplementation of the GnuPG interface
-
mwa_giant_squid
Alternative MWA ASVO client code
-
cose-rust
COSE Rust implementation
-
udigest
Unambiguously digest structured data
-
c5store
A comprehensive Rust library for unified configuration and secret management, supporting various sources, typed access, and local encryption
-
matrix-sdk-store-encryption
Helpers for encrypted storage keys for the Matrix SDK
-
rustls-webpki
Web PKI X.509 Certificate Verification
-
gxt-cli
Minimal, encrypted, signed and copy-pasteable tokens for manual data exchange between games
-
pq-oid
OID constants for all PQ algorithms (ML-KEM, ML-DSA, SLH-DSA)
-
ruscrypt
⚡ Lightning-fast cryptography toolkit built with Rust - A comprehensive CLI tool for classical and modern cryptographic operations
-
cryptostream
Transparent encryption and decryption for Read and Write streams
-
novovault
An encrypted store for notes
-
ascon-core
Pure Rust implementation of the Ascon permutation
-
odoh-rs
Oblivious DNS over HTTPS (ODoH) protocol version 1
-
product-os-random
Product OS : Random provides a suite of random generator tools for different contexts. This includes random text, number and key generators including cryptographically secure random generation.
-
grammers-crypto
Several cryptographic utilities to work with Telegram's data
-
hyper-openssl
Hyper TLS support via OpenSSL
-
witnet-bn
Pairing cryptography with the Barreto-Naehrig curve
-
compass-cli
Interactive README runner and onboarding guide
-
embedded-tls
TLS 1.3 client with no_std support and no allocator
-
fheanor
that provides fast implementations of rings commonly used in homomorphic encryption, built on feanor-math
-
noise-protocol
Noise Protocol Framework implementation
-
dnsimple
API client for Rust
-
mls-spec
repository of MLS / RFC9420-related data structures
-
hpke-dispatch
runtime algorithmic selection for hybrid public key encryption
-
fatoora-core
Rust Fatoora/ZATCA SDK with C ABI and multi-language bindings
-
lockstitch
incremental, stateful cryptographic primitive for symmetric-key cryptographic operations in complex protocols
-
fernet
in Rust
-
tangy
Tang server implementation
-
voprf
verifiable oblivious pseudorandom function (VOPRF)
-
tectonic-fn-dsa-kgen
FN-DSA signature scheme
-
tough
The Update Framework (TUF) repository client
-
confidential-ml-transport
Attestation-bound encrypted tensor transport for confidential ML inference
-
az-cvm-vtpm
Package with shared code for Azure Confidential VMs
-
pkix
TLS Certificate encoding and decoding helpers
-
sequoia-wot
OpenPGP's web of trust
-
frost-ed25519
A Schnorr signature scheme over Ed25519 that supports FROST
-
keygen-rs
Unofficial Rust SDK for integrating with the keygen.sh licensing service
-
secure-gate
Zero-cost secure wrappers for secrets — heap for dynamic, stack for fixed
-
printwell-pdf
PDF manipulation features (forms, signing) for Printwell
-
aef
An encrypted file archiver
-
yimi-rutool
A comprehensive Rust utility library inspired by Hutool
-
libp2p-noise
Cryptographic handshake protocol using the noise framework
-
magic-crypt
MagicCrypt is a Java/PHP/NodeJS/Rust library to encrypt/decrypt strings, files, or data, using Data Encryption Standard(DES) or Advanced Encryption Standard(AES) algorithms. It supports CBC block cipher mode…
-
Mademoiselle_Entropia
Extremely strong, stupidly simple and relatively fast symmetric cipher.. check out the Readne for explanation. Have a great day, Dear User 💯❤️
-
minio-rsc
minio, api is compliant with the Amazon S3 protocol
-
kanidm-hsm-crypto
easily interacting with a HSM or TPM
-
aws-sdk-paymentcryptography
AWS SDK for Payment Cryptography Control Plane
-
rustgenhash
generate hashes from the command line
-
secure-crypt
Ultra secure encryption/decryption tool using Rust + libsodium with zero secret leakage
-
webpki
Web PKI X.509 Certificate Verification
-
crabapple
iOS backup decryption and encryption
-
turboshake
A family of extendable output functions (XOFs) based on 12-rounds Keccak[1600] permuation
-
sketches
Probabilistic data structures for scalable approximate analytics
-
readable-hash
Human-readable hash representations for easy verification and data obfuscation
-
arcanum-primitives
Native cryptographic primitives for Arcanum
-
sigstore-trust-root
Sigstore trusted root management and parsing
-
mpvss-rs
Publicly Verifiable Secret Sharing Library
-
sphinx-packet
A Sphinx packet implementation in Rust
-
flexible-transcript
transcript trait definition, along with viable options
-
certradar-cli
Certificate transparency and SSL/TLS security analysis CLI tool
-
rshc
compile shell script(or expect script) to Rust code and binary
-
clatter
no_std compatible implementation of Noise protocol framework with Post-Quantum extensions
-
jwt-hack
Hack the JWT (JSON Web Token) - A tool for JWT security testing and token manipulation
-
ssh-vault
encrypt/decrypt using ssh keys
-
libcrux-hmac
Libcrux HMAC implementation
-
tfhe-zk-pok
zero-knowledge proofs of encryption for TFHE
-
cryptocol
cryptographic library that includes big number arithmetic operations, hash algorithms, symmetric-key cryptographic encryption/decryption algorithms, asymmetric-key (public-key) cryptographic…
-
dcrypt-params
Constant values for dcrypt library
-
biscuit-parser
Datalog parser used in the biscuit-auth and biscuit-quote crates
-
paas-client
PEP Authorization API Service client
-
claim169-core
MOSIP Claim 169 QR Code decoder library
-
promocrypt-core
Core library for cryptographically secure promotional code generation
-
fract
A Hyperchaotic, Quantum-Resistant, Minimalist Cryptographic Hash
-
rops
SOPS-like library in pure Rust
-
qatsi
Stateless secret generation via hierarchical memory-hard key derivation using Argon2id
-
dcap-qvl-webpki
Fork of rustls-webpki to support single cert CRL check
-
polytune
Maliciously-Secure Multi-Party Computation (MPC) Engine using Authenticated Garbling
-
bdrck
Generic common foundational utilities
-
aws-db-esdk
implementing client side encryption with DynamoDB
-
multihash-codetable
Default multihash code-table with cryptographically secure hash implementations
-
elastic-elgamal
ElGamal encryption and related zero-knowledge proofs with pluggable crypto backend
-
deterministic-hash
Create deterministic hashes regardless of architecture
-
muddy
literal string obfuscation library
-
ssss
Shamir's Secret Sharing Scheme
-
vmprotect
Unofficial VMProtect SDK for Rust
-
img4-dump
Extracts payloads and metadata from IMG4/IM4P/IM4M; decrypts with user-supplied IV+Key; optional LZFSE/LZSS decompress
-
ironhide
easily encrypt and decrypt files to users and groups. Similar to GPG, but usable at scale.
-
json-proof-token
based on the new JOSE Working Group draft specifications: JSON Web Proof (JWP), JSON Proof Token (JPT) and JSON Proof Algorithm (JPA)
-
omnibor
Reproducible software identity and fine-grained build dependency tracking
-
instant-acme
Async pure-Rust ACME client
-
rust_helpers
help with projects
-
jubjub-schnorr
A pure-Rust implementation of Schnorr signatures with a PLONK circuit module additionally
-
c2patool
displaying and creating C2PA manifests
-
fynx-proto
Production-ready SSH and IPSec/IKEv2 protocol implementations with comprehensive testing and high-level APIs
-
debian-watch
parser for Debian watch files
-
vodozemac
Olm and Megolm
-
binstalk-types
The binstall toolkit that contains basic types for binstalk crates
-
minisign
sign files and verify signatures
-
cert-dump
High-performance X.509 certificate scanner and extractor for binary files
-
zfuel
types used for a mutual credit accounting system
-
ms-offcrypto-writer
Encrypting ECMA376/OOXML files with agile encryption as described in MS-OFFCRYPTO
-
kitty-rc
controlling kitty terminal emulator via its remote control protocol
-
pq-jwt
Post-Quantum JWT implementation using ML-DSA (FIPS 204) signatures for quantum-resistant authentication
-
pf8
encoding and decoding artemis PF8 archive files
-
cryptovec
A vector which zeroes its memory on clears and reallocations
-
breakmancer
Drop a breakpoint into any shell
-
devolutions-crypto
An abstraction layer for the cryptography used by Devolutions
-
rust_ev_crypto_primitives
Crypto Primitives necessary for E-Voting Applications
-
cognitum-gate-tilezero
Native arbiter for TileZero in the Anytime-Valid Coherence Gate
-
pqc-binary-format
Standardized binary format for post-quantum cryptography encrypted data interchange
-
bl4
Borderlands 4 save editor library - encryption, decryption, and parsing
-
safehold
A secure cross-platform environment variable manager with CLI and optional GUI for encrypted storage of secrets and config
-
s3-simple
fast and efficient s3 client for bucket operations
-
tacet
Detect timing side channels in cryptographic code
-
adaptive-pipeline-domain
Domain layer for optimized, adaptive pipeline - pure reusable business logic, entities, value objects, and domain services following DDD principles
-
aranya-daemon-api
IPC API between the Aranya client and daemon
-
aranya-afc-util
using Aranya Fast Channels
-
paseto-pq
Post-quantum PASETO tokens with RFC-compliant footer authentication using ML-DSA signatures
-
clock-hash
ClockHash-256: Consensus hash function for ClockinChain
-
vitaminc-password
Secure password generator. Part of the Vitamin-C cryptographic suite.
-
tss-esapi-sys
FFI wrapper around TSS 2.0 Enhanced System API
-
djangohashers
port of the password primitives used in Django project
-
saorsa-gossip-groups
MLS group management wrapper for Saorsa Gossip (RFC 9420 compliant)
-
libherokubuildpack
Opinionated common code for buildpacks implemented with libcnb.rs
-
enva
CLI client for enva - environment variable management
-
cryptotensors
extension of safetensors that adds encryption, signing, and access control (Rego-based policy engine) while maintaining full backward compatibility with the safetensors format. It…
-
datasynth-fingerprint
Privacy-preserving synthetic data fingerprinting for DataSynth
-
pqc_kyber
post-quantum Kyber KEM algorithm
-
russh-keys
Deal with SSH keys: load them, decrypt them, call an SSH agent
-
rust_tokio_kcp
A kcp implementation for tokio
-
xmlsec
Wrapper for xmlsec1 library
-
paks
A light-weight encrypted archive inspired by the Quake PAK format
-
qasa
Post-quantum cryptography implementation using CRYSTALS-Kyber and CRYSTALS-Dilithium for quantum-safe communications
-
smpl_jwt
Very simple JWT generation lib
-
challenge-bypass-ristretto
implemention of the privacy pass cryptographic protocol using the Ristretto group (WIP)
-
cocoon
protected container with strong encryption and format validation
-
webrtc-dtls
A pure Rust implementation of DTLS
-
sha3sum
compute and check SHA3 message digest
-
async-hash
Traits and helper functions for SHA256 hashing of async data types
-
sha1collisiondetection
SHA-1 hash function with collision detection and mitigation
-
hkdf
HMAC-based Extract-and-Expand Key Derivation Function (HKDF)
-
tdx-quote
Parses and verifies Intel TDX quotes
-
t-rust-less-lib
Password manager library
-
jacs
JACS JSON AI Communication Standard
-
yubikey-signer
YubiKey code signing utility
-
oboron
Encryption and encoding library for developer ergonomics: prefix entropy, compact outputs, high performance
-
geneos-toolkit
building Geneos Toolkit compatible applications
-
merkle-search-tree
A data structure for efficient state-based CRDT replication and anti-entropy
-
cipherstash-client
The official CipherStash SDK
-
zipsign
Sign and verify
.zipand.tar.gzfiles with an ed25519 signing key -
yubirs-tools
Command line tools for interacting with YubiKeys, based upon yubirs
-
age-plugin-xwing
X-Wing plugin for age clients
-
secrets-tweaked
Protected-access memory for cryptographic secrets
-
cesride
Cryptographic primitives for use with Composable Event Streaming Representation (CESR)
-
ruma-common
Common types for other ruma crates
-
klave
SDK for the Klave platform
-
mitoo
toolkit library that encapsulates methods such as configuration reading, file operations, encryption and decryption, transcoding, regular expressions, threading, collections, trees…
-
byte-array-ops
no_std-compatible library for security-by-default byte array operations. Includes automatic memory zeroization, constant-time utilities, multiple input formats (hex, binary, UTF-8)…
-
scryptenc
scrypt encrypted data format
-
qfall-schemes
Collection of prototype implementations of lattice-based cryptography
-
pkcs11-sys
Generated bindings for pkcs11.h. Useful for building PKCS#11 modules in rust.
-
secret-tree
Hierarchical secret derivation with Blake2b
-
aes_crypto
A platform-agnostic library for the AES cipher (Rijndael)
-
reishi-handshake
Pure, sans-IO implementation of the Noise IK handshake with optional post-quantum hybrid mode
-
shield-core
EXPTIME-secure encryption library - Rust core implementation
-
darkbio-crypto
Cryptography primitives and wrappers
-
secapi
bindings
-
atlas-common
Common functionality for Atlas ML provenance system
-
hanko
Keeps your Git allowed signers file up to date with signing keys configured on software development platforms like GitHub and GitLab
-
prollytree
A prolly (probabilistic) tree for efficient storage, retrieval, and modification of ordered data
-
sm9
SM9 (OSCCA GM/T 0044-2016), identity-based cryptography
-
affinidi-secrets-resolver
Common utilities for Affinidi Trust Development Kit
-
caesar_cipher_enc_dec
can easily use caesar cipher
-
rusty_paserk
Platform Agnostic Serializable Keys (PASERK) is an extension on PASETO for key management
-
ejson
Manage encrypted secrets using public key encryption
-
isomdl
ISO mDL implementation in Rust
-
bizinikiwi-bn
Pairing cryptography with the Barreto-Naehrig curve
-
gst-plugin-sodium
GStreamer plugin for libsodium-based file encryption and decryption
-
auths_verifier
Minimal-dependency attestation verification library for Auths - supports FFI and WASM
-
saorsa-fec
Quantum-safe erasure coding with post-quantum cryptography using saorsa-pqc
-
ssi-vc-jose-cose
Securing Verifiable Credentials using JOSE and COSE with the
ssilibrary -
datafusion-postgres-cli
Command-line tool for DataFusion's Postgres Protocol frontend
-
kangarootwelve_xkcp
An FFI wrapper for the XKCP implementation of the KangarooTwelve hash function
-
ret2script
Checker script runner for Ret2Shell - A feature-riches CTF challenge platform
-
chacha
stream ciphers
-
rns-core
Wire protocol, transport routing, and link/resource engine for the Reticulum Network Stack
-
why2
Lightweight, fast, secure, and easy to use encryption system
-
wasmsign2
WebAssembly modules signatures proposal
-
botan
Rust wrapper for Botan cryptography library
-
shelter
ROP-based sleep obfuscation to evade memory scanners
-
atproto-plc
did-method-plc implementation for ATProto with WASM support
-
dotenvage
Dotenv with age encryption: encrypt/decrypt secrets in .env files
-
wasefire-stub
Stubs for the Wasefire applet API
-
exaf-rs
Extensible archiver format
-
lorawan
structures and tools for reading and writing LoRaWAN messages from and to a slice of bytes
-
salty
Small, sweet, swift Ed25519 signatures for microcontrollers
-
shamirsecretsharing
Shamir secret sharing library for Rust
-
bls48581
BLS signature implementation using the BLS48-581 curve with KZG commitments
-
mbedtls-smx
Idiomatic Rust wrapper for MbedTLS, allowing you to use MbedTLS with only safe code while being able to use such great Rust features like error handling and closures. Building on MbedTLS's focus on embedded use…
-
aws-lc-sys
AWS-LC is a general-purpose cryptographic library maintained by the AWS Cryptography team for AWS and their customers. It іs based on code from the Google BoringSSL project and the OpenSSL project.
-
akd
auditable key directory
-
fastmurmur3
Fast non-cryptographic hash, with the benchmarks to prove it
-
nam-blstrs
High performance implementation of BLS12 381
-
rskit
rust kit
-
krill
Resource Public Key Infrastructure (RPKI) daemon
-
sigstore-tsa
RFC 3161 Time-Stamp Protocol client for Sigstore
-
physjitter
Proof-of-process primitive using timing jitter for human authorship verification
-
pact_verifier_cli
Standalone pact verifier for provider pact verification
-
wechat-oa-sdk
WeChat Official Account API SDK for Rust
-
anyhide
Hide any data in any file(s) - steganography tool with hybrid encryption and plausible deniability
-
acme-redirect
Tiny http daemon that answers acme challenges and redirects everything else to https
-
argon2-kdf
Intuitive Rust bindings for Argon2
-
symcrypt
Friendly and Idiomatic Wrappers for SymCrypt
-
gun-rs
A realtime, decentralized, offline-first, graph data synchronization engine (Rust port)
-
tongsuo-src
Source of Tongsuo and logic to build it
-
jks
Java KeyStore (JKS) and PKCS12 encoder/decoder for Rust
-
web-bot-auth
Web Bot Authentication using HTTP Message Signatures
-
tor-cert
Non-standard certificate formats used by Tor
-
pg_ecdsa_verify
A PostgreSQL extension for ECDSA signature verification
-
xor_cryptor
A encryption/decryption library using bitwise xor
-
httpsig
IETF RFC 9421 of http message signatures
-
happy-cracking
A fast, comprehensive CTF toolkit for cryptographic encoding/decoding, classic ciphers, hash operations, and analysis tools
-
assemblyline-models
Data models for the Assemblyline malware analysis platform
-
fastcert
zero-config tool for making locally-trusted development certificates
-
ifd-jcecard
PC/SC IFD Handler for jcecard virtual OpenPGP and PIV smart card
-
c2-chacha
The ChaCha family of stream ciphers
-
wolfssl-wolfcrypt
Rust wrapper for wolfssl C library cryptographic functionality
-
gstp
A secure, authenticated, transport-agnostic data exchange protocol with distributed state management via Encrypted State Continuations (ESC)
-
tauri-plugin-secure-element
Tauri plugin for secure element use on iOS (Secure Enclave) and Android (Strongbox and TEE)
-
sare-cli
Command-line interface for the SARE encryption standard
-
coz-cli
CLI for Coz cryptographic JSON messaging
-
nabla-cli
An OSS tool for reverse engineering and binary composition analysis
-
rsecure
file encryption and decryption tool using AES-GCM
-
ngdp-crypto
Salsa20 and ARC4 encryption/decryption with key management for Blizzard's TACT files
-
apns-h2
Async HTTP/2 APNs client based on hyper
-
zsign-rs
Cross-platform iOS code signing library - Rust port of zsign
-
cosmian_findex
Symmetric Searchable Encryption
-
sgx_types
Rust SGX SDK provides the ability to write Intel SGX applications in Rust Programming Language
-
ytdlp-ejs
ejs
-
ciphersuite
Ciphersuites built around ff/group
-
edgee-cli
Edgee CLI to play with AI Gateway, tools, components
-
okid
generating double clickable ids
-
eenv
Encrypted Env Manager: encrypts .env files, manages examples, and enforces safety via git hooks
-
win-crypto-ng
Safe bindings to Windows Cryptography API: Next Generation
-
ironcore-alloy
IronCore Labs SDK for all your different Application Layer Encryption needs
-
openssl_provider_forge
FFI binding for the
CoreandProviderAPIs ofOpenSSL 3.2+ -
polyhash
POLYVAL and GHASH per RFC 8452
-
etebase
client library for Etebase
-
nacl
Rust version of NaCl Cryptographic library with Scrypt added
-
sunscreen_math
contains GPU implementations that support the Sunscreen compiler
-
kcr_argoproj_io
Kubernetes Custom Resource Bindings
-
xllm-proxy
TCP proxy server with AES-256-GCM encryption for xllm
-
light-openid
Lightweight OpenID primitives & client
-
bjorn-acme
Building blocks for an ACME server
-
opentalk-roomserver-types
Opentalk RoomServer Types
-
ssri
Various utilities for handling Subresource Integrity
-
fips204_rs
FIPS 204: Module-Lattice-Based Digital Signature
-
phala-tee-deploy-rs
Rust client for deploying and managing Docker containers on Phala TEE Cloud (dstack)
-
amll-lyric
一个歌词解析/生成模块,着重于歌词内容解析,支持多种格式
-
tnid
A UUID compatible ID with static type checking
-
yacme
ACME client
-
roc-cert
A Rust-based CLI tool for automatic SSL certificate renewal
-
ash-core
ASH (Application Security Hash) - RFC 8785 compliant request integrity verification with server-signed seals, anti-replay protection, and zero client secrets
-
crypto-async-rs
High-performance pure Rust cryptographic library with async streaming support
-
mozilla/neqo-crypto
Neqo, an implementation of QUIC written in Rust
-
tuf
Update Framework (TUF)
-
librnxengine
implement robust software licensing, activation, and validation systems
-
crypto_bastion
Hardened post-quantum cryptographic primitives with zero-trust architecture
-
crypt-keeper
A cli helper for managing, encrypting and decrypting files
-
hana-vault
used by the Hana SSH client for storing user data securely in encrypted SQLite
-
parsec-service
A language-agnostic API to secure services in a platform-agnostic way
-
appstoreconnect
client
-
graviola
modern, fast cryptography library
-
vitaminc
cryptographic suite by CipherStash
-
tf-registry
A high-performance, asynchronous implementation of the Terraform Provider Registry protocol, powered by Tokio and Axum
-
psp_security
PSP Security Protocol
-
srp6
A safe implementation of the secure remote password authentication and key-exchange protocol - SRP version 6 and 6a
-
accumulators
Complete package of multiple Accumulators with Stores and hashing functions (Hashers)
-
mlar
A wrapper around the MLA library for common use cases
-
voa-openpgp
using OpenPGP verifiers in VOA
-
citadel_pqcrypto
Lower-level cryptographic library for the Citadel Protocol
-
fips205
FIPS 205: Stateless Hash-Based Digital Signature Standard
-
hayro
A rasterizer for PDF files
-
bbjwt
well documented JWT validation library, mainly for validating OpenID Connect ID Tokens
-
eidetica
Decentralized DB. Remember Everything. Everywhere. All At Once.
-
nuts-archive
A tar like archive on top of the nuts-container
-
autoschematic
Command-line tools for Autoschematic
-
rustls-mbedpki-provider
Implements rustls PKI traits using mbedtls
-
clog_rs
A cryptographically secure content storing library. Provides simple APIs to create, read, and edit files without compromising security.
-
atlas-rs
attested TLS (aTLS) core library for verifying TEE attestations over TLS connections
-
iroh-blake3
the BLAKE3 hash function
-
simple-cookie
Functions for creating and parsing signed & encrypted cookies
-
schemapin
Cryptographic schema integrity verification for AI tools - Rust implementation
-
chbs
providing secure passphrase generation based on a wordlist
-
rustls-cng
Windows CNG API bridge for rustls
-
deno_crypto
Web Cryptography API implementation for Deno
-
libsui
A injection tool for executable formats (ELF, PE, Mach-O) that allows you to embed files into existing binary and extract them at runtime
-
ockam_command
End-to-end encryption and mutual authentication for distributed applications
-
blake2ya
The BLAKE2 cryptographic hash and message authentication code
-
chuchi-crypto
Crypto library providing encryption and signing
-
mpc-relay
Noise protocol websocket relay for MPC/TSS applications
-
rust_jarm
JARM fingerprinting in native Rust
-
nu_plugin_secret
Production-grade secret handling plugin for Nushell with secure CustomValue types that prevent accidental exposure of sensitive data
-
laicrypto
Lemniscate-AGM Isogeny (LAI) Encryption – quantum‑resistant cryptography
-
lupin
A blazing-fast, lightweight steganography tool for concealing secret data within normal files
-
kafkang
Rust client for Apache Kafka
-
flexiber
Encoding and decoding of BER-TLV as described in ISO 7816-4, without allocations
-
prople-crypto
A set of libraries and function helpers to maintain cryptography data based on Prople system requirements
-
gpgme
bindings for Rust
-
memo128
encoding and decoding 128-bit data as mnemonic sentences
-
herolib-crypt
secure asymmetric cryptography: signing and encryption using Ed25519
-
xcqa
Dictionary-based cryptosystem with zero-knowledge proof signatures
-
tiny-encrypt
tiny file encrypt tool
-
saorsa-gossip-identity
Post-quantum identity management for Saorsa Gossip: ML-DSA-65 keypairs and PeerId derivation
-
kcr_fluentd_fluent_io
Kubernetes Custom Resource Bindings
-
tink-streaming-aead
Streaming AEAD functionality for Rust port of Google's Tink cryptography library
-
bitwark
Empowering secure digital interactions with robust binary token management and dynamic rolling keys
-
nitro-tpm-attest
Retrieve a signed attestation document from the NitroTPM
-
zopp-storage
Storage abstraction layer for zopp secrets manager
-
ezcheck
lightweight, cross-platform, and high-performance tool for calculating, comparing, and verifying hash of strings and files
-
crypto-auditing-event-monitor
Event monitor for crypto-auditing project
-
zbus-lockstep
Keep types in lockstep with DBus XML definitions
-
rustup-mirror
Setup a local rustup mirror
-
jose
A JSON Object Signing and Encryption implementation
-
schnorr-rs
Schnorr Protocols
-
rdedup
Data deduplication with compression and public key encryption. - binary
-
rana
Nostr public key mining tool
-
sslenum
SSL certificate Extractor
-
rpgm-asset-decrypter-lib
decrypting/encrypting RPG Maker MV/MZ audio and image assets
-
filecoin-hashers
Hashers used in filecoin and their abstractions
-
libvault-core
the libvault is modified from RustyVault
-
tollway-core
Post-quantum cryptographic primitives with forward secrecy and authentication
-
efficient-sm2
China's Standards of Signature Algorithms (SM2)
-
thash
A terminal program for hashing with many algorithms and many output formats, and recursive hashing support
-
rustls-channel-resolver
single-cert channel-ish rustls resolver for live-reloading certificate files
-
dkimdo
DKIM command-line tool
-
icefast
A optimized parallel ICE encryption implementation with auto-dispatching logic and auto-vectorization
-
hashtree-core
content-addressed merkle tree with KV storage
-
dtls
A pure Rust implementation of DTLS
-
shashasha
SHA3
-
frost-secp256k1-tr
A Schnorr signature scheme over the secp256k1 curve that supports FROST and Taproot
-
siguldry
Sigul protocol
-
donut-cli
CLI tool for libdonut-rs
-
pam-ssh-agent
A PAM module that authenticates using the ssh-agent
-
hfile
command-line interface (CLI) tool for generating hash values of files
-
crypt-ro
Blazing-fast matrix-based encryption library with configurable transformations
-
libcrux-secrets
Libcrux utilities for working with secrets
-
avx-nucleus
Atomic-level operations - Foundation of avx cryptography stack
-
pmv_encryption_rs
PersonalMediaVault encrypted storage model. This library allows to encrypt and decrypt data, and also read ans write files in the same format PersonalMediaVault uses.
-
rustcube
Multi-password, order-dependent, streaming encryption/decryption tool with secure memory handling
-
pngyou
high-performance CLI tool to hide secret messages in a PNG file using steganography
-
cocoon-tpm-crypto
Cocoon TPM project - cryptographic primitives
-
oracle_omen_patches
Self-evolution patch system with gates for oracle.omen
-
qssl
Patent-free post-quantum TLS with SPHINCS+ KEM, Falcon signatures, and traffic analysis resistance. NIST FIPS 203/204/205 compliant.
-
clear_on_drop
Helpers for clearing sensitive data on the stack and heap
-
secp
A flexible and secure secp256k1 elliptic curve math library with constant-time support and superb ergonomics
-
totpyx
Minimal, dependency-free RFC 6238 TOTP implementation
-
pkcs8
Pure Rust implementation of Public-Key Cryptography Standards (PKCS) #8: Private-Key Information Syntax Specification (RFC 5208), with additional support for PKCS#8v2 asymmetric key packages (RFC 5958)
-
tsumiki-cli
Command-line tool for X.509 certificate inspection and PKCS handling
-
mls-rs-crypto-hpke
HPKE implementation based on mls-rs-crypto-traits used by mls-rs
-
aws-nitro-enclaves-cose
aims to provide a safe Rust implementation of COSE, with COSE Sign1 currently implemented
-
wormsign
Dilithium5 signature tool
-
jsonwebtoken-aws-lc
Create and decode JWTs in a strongly typed way
-
pkcrack
Known-plaintext attack against PkZip encryption
-
cipherrun
A fast, modular, and scalable TLS/SSL security scanner written in Rust
-
holecard-cli
A secure CLI password manager with dual-key encryption and TOTP support
-
ferrocrypt-cli
Command-line interface for Ferrocrypt (installs the 'ferrocrypt' binary)
-
dev-tool
dev-tool(变更为mitoo)是一个Rust工具包类库,对文件、加密解密、转码、正则、线程池、sqlite等方法进行封装,组成各种Util工具类。
-
rust-secure-logger
Memory-safe security logging for financial systems and critical infrastructure with encryption, log forwarding, and compliance automation
-
rama-boring
BoringSSL bindings for Rama
-
fnox
A flexible secret management tool supporting multiple providers and encryption methods
-
secra-pluginctl
生产级插件打包工具 - 安全可信的插件产物管理(支持加密、签名、并发处理)
-
dhsd
SCION endhost SDK observability utilities
-
msoffice_crypt
msoffice-crypt bindings for the Rust programming language
-
hcl
high level cryptography library ready for production use
-
p256
Pure Rust implementation of the NIST P-256 (a.k.a. secp256r1, prime256v1) elliptic curve as defined in SP 800-186, with support for ECDH, ECDSA signing/verification, and general purpose curve arithmetic
-
identity_ecdsa_verifier
JWS ECDSA signature verification for IOTA Identity
-
SaltPass
A deterministic password generator based on cryptographic algorithms
-
sha3-circuit
Lookup based midnight-proofs (halo2 fork) implementation of keccak-f[1600] permutation and gadgets for the sha3-256 and keccak-256 hash functions
-
ncm_core
core decoder for ncmc
-
blake2
hash functions
-
secretsharing_shamir
Hardened Rust cryptographic library for Shamir's Secret Sharing with support for multiple prime sizes
-
flp-saml2
SAML2 for Rust
-
vrf-rfc9381
VRFs (Verifiable Random Functions) as described in RFC9381
-
payload-loader
Production-ready Rust loader with cryptography, configuration, and security features
-
dugout
Git-native secrets manager for development teams, written in Rust
-
antimatter
antimatter.io Rust library for data control
-
tap-agent
Transaction Authorization Protocol (TAP)
-
light-poseidon-nostd
Poseidon hash implementation in Rust with no_std support (fork of light-poseidon)
-
zymic_cli
Encrypt and decrypt files using the Zymic format
-
arcis-compiler
A framework for writing secure multi-party computation (MPC) circuits to be executed on the Arcium network
-
rust_code_obfuscator
easily obfuscate strings and control-flow using cryptify lib
-
cryptan
crypto playground (Caesar, Morse, ...)
-
cmn
accessing a collection of mathematical and cryptographic constants
-
oxitoken
Fastest and most secure JWT encoding/validation library for Rust. Fully supports custom header/claims structs, an extendable validation pipeline, and is crypto-backend agnostic (built-in…
-
hpke-rs
HPKE Implementation
-
openapi-rs
A type-safe Rust client library for building, signing, and sending API requests with minimal boilerplate
-
libkeri
KERI (Key Event Receipt Infrastructure)
-
shamir-vault
Shamir's Secret Sharing algorithm
-
dcrypt-api
Public API traits and types for the dcrypt library
-
json_atomic
The Cryptographic Atom — JSON✯Atomic: canonicalization + BLAKE3 content addressing + DV25-Seal (Ed25519) for Signed Facts
-
tenuo
Agent Capability Flow Control - Rust core library
-
blsttc
Pairing threshold cryptography
-
xor-cipher
reusable and optimized XOR ciphers in Rust
-
tls-api
TLS API without implementation
-
chip_as_code
Semantic Chips — deterministic boolean circuits as text DNA. Parse, evaluate, evolve, and prove policy gates with No-Guess constitutional checkpoints.
-
voidio
VOID I/O - High-performance Cross-platform I/O for Rust
-
authenticated-pseudonyms
anonymous credentials
-
acme2-eab
A Tokio and OpenSSL based ACMEv2 client
-
zbx_sender
Zabbix Sender Client
-
crrl
cryptographic research
-
rswidevine
Widevine CDM (Content Decryption Module) implementation in Rust
-
mxlink
connecting (linking) to the Matrix Client Server API (for building bots, etc.)
-
rs_tfhe
A high-performance Rust implementation of TFHE (Torus Fully Homomorphic Encryption) with advanced programmable bootstrapping capabilities
-
wsc-cli
CLI tool to sign and verify WebAssembly modules
-
opensecret
Rust SDK for OpenSecret - secure AI API interactions with nitro attestation
-
debsign-rs
Sign Debian packages with GPG
-
arx-kw
ARX-KW-8-2-4 Key Wrap constructions
-
cipherscope
A high-performance, language-aware tool for scanning source code to detect cryptographic libraries and algorithms usage
-
n01d-forge
Secure Cross-Platform Image Burner with AES-256 Encryption - Write ISOs to USB drives with optional encryption
-
altcha-lib-rs
Community implementation of the Altcha library in Rust for your own server application to create and validate challenges and responses
-
nats-io-jwt
Generate JWTs signed using NKEYs for use with https://nats.io
-
sifredb
Field-level encryption library with envelope encryption and blind indexes
-
bab_rs
Bab family of hash functions, and its WILLIAM3 instantiation
-
sodalite
Tweetnacl in pure rust with no std dependency
-
rust_ev_verifier_lib
Main library for the E-Voting system of Swiss Post
-
garage_model
Core data model for the Garage object store
-
axial
All in One web framework for Rust
-
capycrypt
An advanced cryptographic suite for secure message exchange
-
cfun
Tidy up common functions
-
wechat-pay-rust-sdk-wf
微信支付 © Wechat Pay SDK Official (标准库)
-
cryptid-rs
encrypt and decrypt integer IDs to URL safe strings
-
crabgraph
A safe, ergonomic, high-performance cryptographic library for Rust built on audited primitives
-
meshtnc
Host tool for interacting with MeshTNC hardware
-
symphony
Eclipse Symphony Target Provider Rust binding
-
tink-aead
AEAD functionality for Rust port of Google's Tink cryptography library
-
cait_sith_keplr
Threshold ECDSA via Triples
-
jmix-rs
JMIX (JSON Medical Interchange) format - secure medical data exchange with cryptographic features
-
argentum_encryption_business
Business layer of encryption
-
polygraphia
A comprehensive library for classical and modern cryptographic algorithms
-
rasn-cms
Data types for handling Cryptographic Message Syntax
-
parasol_cpu
contains the Parasol CPU, which runs programs over a mix of encrypted and plaintext data
-
pkcs12cracker
High-performance, multi-threaded PKCS#12 password cracker supporting dictionary, pattern-based, and brute force attacks
-
ockam
End-to-end encryption and mutual authentication for distributed applications
-
codive-tunnel
Shared types and cryptography for secure tunneling
-
saferet
Secure types for handling sensitive data in Rust with automatic memory cleanup and protection against accidental exposure
-
edgee-proxy
Edgee proxy
-
libsodium-rs
A comprehensive, idiomatic Rust wrapper for libsodium, providing a safe and ergonomic API for cryptographic operations
-
atrium-crypto
Cryptographic library providing basic helpers for AT Protocol
-
vwh
Cryptographic accountability tool for verifying digital presence
-
rns-crypto
Cryptographic primitives for the Reticulum Network Stack
-
pasta-msm
Optimized multiscalar multiplicaton for Pasta moduli for x86_64 and aarch64
-
chamber-tui
A secure, local-first secrets manager with encrypted storage and zero-knowledge architecture
-
kylix-ml-dsa
ML-DSA (FIPS 204) implementation for the Kylix post-quantum cryptography library
-
const-oid
Const-friendly implementation of the ISO/IEC Object Identifier (OID) standard as defined in ITU X.660, with support for BER/DER encoding/decoding as well as heapless no_std (i.e. embedded) support
-
localsend-rs
LocalSend protocol - cross-platform file transfer tool
-
sc_drbg
Subset Counter-Based Deterministic Random Bit Generator
-
tuftool
creating and signing The Update Framework (TUF) repositories
-
yamid
Machine ID
-
mogh_server
Configurable axum server including TLS, Session, CORS, common security headers, and static file hosting
-
health-backend
Daily wellness check‑in that handles PHI securely
-
spake2-conflux
The SPAKE2 password-authenticated key-exchange algorithm
-
libcrux-ml-tkem
Libcrux ML-KEM & Kyber & tkem implementations
-
boring-sys
FFI bindings to BoringSSL
-
noise-rust-crypto
Wrappers of dalek and RustCrypto crates for noise-protocol
-
sm-crypto
China's Standards of Encryption Algorithms(SM2/SM3/SM4)
-
orbis-pkg
parsing and extracting PlayStation 4 PKG files
-
feistelnet
Symetric block split Feistel Network
-
sentrystr
Core library for publishing Sentry-like events to Nostr network
-
jtm
Just The Math Crypto Library
-
trust_pdf
Verifies signed PDFs against the originals, checking for sneaky modifications
-
deno_native_certs
deno-native-certs loads native certificate store into rustls
-
jdt_activity_pub
ActivityPub is a set of structs and enums used to facilitate the operations of ActivityPub servers and clients
-
blake2b-rs
Rust bindings for the official Blake2b C implementation
-
kmip-protocol
KMIP protocol object (de)serialization
-
cargocrypt
Zero-config cryptographic operations for Rust projects with HIVE MIND collective intelligence
-
kuska-handshake
Secure Scuttlebutt handshake + boxstream library
-
chachacha
SIMD optimized implementations of the Chacha stream cipher
-
cryptr
encrypted (streaming) values
-
aescrypt-rs
AES Crypt (v0-v3) Rust encryption/decryption library
-
bromberg_sl2
Cayley hashing as in 'Navigating in the Cayley Graph of SL₂(𝔽ₚ)'
-
pqc-fips
Imported pqc-combo v0.1.0
-
staticrypt
Static encryption for string literals and binary data
-
corevpn-crypto
Cryptographic primitives for CoreVPN - secure key exchange, encryption, and certificate handling
-
kiwavi
A secure TOTP-based key derivation system using user salts
-
mnm
Mnemonic sentences for BitTorrent info-hashes
-
freezeout-core
Freezeout Poker core types
-
csrf
CSRF protection primitives
-
backblaze-b2-client
Backblaze B2 Client for Rust
-
xaman
CLI tool for Aman integrity system
-
sigma_fun
A framework for making Sigma protocols fun!
-
ntdb_unwrap
Decrypt/decoded NTQQ database files
-
ligerito-reed-solomon
Reed-Solomon erasure coding for Ligerito over binary fields
-
pubky-messenger
private messaging using Pubky
-
glome
Generic low-overhead message exchange with cryptographic integrity protection
-
sshx
A secure web-based, collaborative terminal
-
ps3decrs
PS3 ISO decryption tool
-
datapipe
Stream data from here to there
-
spartan
High-speed zkSNARKs without trusted setup
-
ed25519-dalek-hpke
HPKE encryption/decryption using
ed25519-dalekkeys via automatic X25519 conversion -
safe_pqc_kyber
Fork of pqc_kyber with some safety fixes
-
redoubt-aead
AEGIS-128L and XChaCha20-Poly1305 AEAD with zeroization
-
rsa-magic-public-key
Converting between the Magic Public Key format and a RustCrypto RSA type
-
bupstash
Easy and efficient encrypted backups
-
tink-ffi
Safe Rust bindings to Google Tink cryptography library
-
keeper-secrets-manager-core
Rust SDK for Keeper Secrets Manager
-
gcm_rs
AES-256 GCM
-
rswxpay
WeChat Pay V3 API SDK for Rust — pure Rust crypto, no OpenSSL
-
cubehash
(rev2/rev3) hashing with SIMD acceleration and portable fallback
-
cargo-sealed
CLI for storing encrypted environment variables in .env files
-
chacha20
stream cipher (RFC 8439) implemented in pure Rust using traits from the RustCrypto
ciphercrate, with optional architecture-specific hardware acceleration (AVX2, SSE2). Additionally provides the ChaCha8… -
fi-digital-signatures
Cryptography library for rust and WASM
-
rotorix-core
Enigma-inspired transformation pipeline with explicit state and pluggable components
-
prisma-decrypt
CLI tool for super fast prisma-field-encryption column decryption (clock decryption)
-
keyhive_core
Core Beehive types and functions
-
commucat-federation
Federation event signing and verification for CommuCat domains
-
libreofficekit
in Rust
-
jwk_kit
JSON Web Keys (JWK)
-
shippo_git
Git helpers for Shippo
-
thrussh-libsodium
Straightforward bindings to libsodium
-
encodex
cryptanalysis tool for legacy and modern codes, ciphers and hashes
-
confidential-ml-pipeline
Multi-enclave pipeline orchestration for confidential ML inference
-
hmac-sha1
wrapper around the RustCrypto hmac and sha1 crates for simple HMAC-SHA1 generation
-
symbi-channel-adapter
Chat channel adapters for the Symbi platform — Slack, Teams, Mattermost
-
sigstore-verify
Sigstore signature verification
-
kerberos_crypto
Cryptography algorithms for Kerberos
-
prosa-utils
ProSA utils
-
cert-helper
A helper library for managing certificates using OpenSSL, including support for generating CSRs and CRLs
-
hmac
Generic implementation of Hash-based Message Authentication Code (HMAC)
-
jubjub-elgamal
ElGamal encryption scheme implemented on the JubJub curve with support for zero-knowledge circuits
-
superboring
A reimplementation of the 'boring' crate in pure Rust
-
arachnid
aims to be a complete offensive security suite written for Rust
-
dog-auth-local
Local (username/password) authentication strategy for DogRS
-
mozilla-root-ca
Mozilla Root CA list from https://curl.se/ca/cacert.pem
-
short-crypt
ShortCrypt is a very simple encryption library, which aims to encrypt any data into something random at first glance
-
native-pkcs11
Cross-platform PKCS#11 module written in rust. Can be extended with custom credential backends.
-
glass_pumpkin
A cryptographically secure prime number generator based on rust's own num-bigint and num-integer
-
aruna-file
component for encrypting / compressing .aruna files, including specification
-
better-blockmap
Generate better blockmap files for electron-builder
-
ps-datachunk
Chunk-based data encrypter
-
rommer
A powerful tool designed to customize Android ROM ZIP files without building from source
-
signedshot-validator
Validator for SignedShot media authenticity proofs
-
webrtc-srtp
A pure Rust implementation of SRTP
-
sharrd
A secure seed phrase manager using Shamir's Secret Sharing
-
openfhe
Rust package of the OpenFHE Fully Homomorphic Encryption Library
-
age-plugin-gpg
Age plugin that uses recipients/identities from gpg-agent, making it possible to use gpg smartcards
-
equix
Asymmetric function for client puzzle protocols
-
rust-padbuster
It's a port of python-paddingoracle (https://github.com/mwielgoszewski/python-paddingoracle)
-
subtle-encoding
Encoders and decoders for common data encodings (base64, bech32, hex) which avoid data-dependent branching/table lookups and therefore provide "best effort" constant time. Useful for encoding/decoding…
-
enchantress
AES-256 file encryption tool
-
bark-dev
bark(receive notify on IOS devices)
-
bl4-cli
Command-line tool for Borderlands 4 save editing
-
interactsh-rs
client library for working with Interact.sh servers
-
abhedya-kem
Key Encapsulation Mechanism (KEM) for Abhedya PQC
-
ciphercore-utils
Convenience functions and wrappers used by CipherCore crates
-
roughenough-keys
Roughenough key material handling with multiple secure storage backends
-
self_crypto_key
self-modifying encrypted key storage in binaries
-
vigenere-demo
优雅的维吉尼亚密码实现,采用泛型设计,支持自定义字符集
-
ds-rom
extracting/building Nintendo DS ROMs
-
libkrimes
A pure rust, minimal kerberos library
-
sad-rsa
Hardened pure Rust RSA implementation with Marvin attack mitigation
-
xcalgo
XCA: Topological Data Analysis Cryptosystem - Novel encryption based on graph homomorphisms and persistent homology
-
tesser-broker
Broker abstraction and execution client interfaces for Tesser
-
fpe
Format-preserving encryption
-
aws-sdk-paymentcryptographydata
AWS SDK for Payment Cryptography Data Plane
-
sl-mpc-mate
secure multi-party computation
-
libtls
Rust bindings for LibreSSL's libtls
-
aes-wasm
AES-GCM, AES-OCB, AEGIS, AES-CTR, CMAC-AES for WebAssembly
-
sssui-mpc-rs
shamir-secret-sharing for SUI chain
-
dcrypt-hybrid
Hybrid cryptography schemes for the dcrypt library
-
prefix-file-tree
Predictable file directory structures
-
uesugi-rs
Uesugi cipher implementation using the iroha table
-
wstep-rs
[MS-WSTEP] WS-Trust X.509v3 Token Enrollment Extensions protocol
-
rustic_cdc
performing Content-Defined Chunking (CDC) on data streams
-
gxt
Minimal, encrypted, signed and copy-pasteable tokens for manual data exchange between games
-
rustcrypt
Macro-first encryption and obfuscation library for Rust
-
sha3-utils
SHA-3 utilities
-
custom-utils
Provide customized tools based on features
-
nostr-double-ratchet
Nostr double ratchet library for Rust
-
chalamet_pir
Stateful, Single-Server Private Information Retrieval for Key-Value Databases
-
prompt-store
Prompt Store is a secure, encrypted CLI and Rust library for managing, deploying, and orchestrating AI prompts using workspaces and Git-based workflows
-
app-utils
modules for application logic (YAML, audit, timestamps)
-
palcrypto-rs
A crypto lib
-
marsupial
safe bindings to the xkcp/k12 implementation of the kangarootwelve hash function
-
pqready
A cross-platform CLI tool to test for quantum-secure TLS/HTTPS encryption support
-
monerochan-recursion-gnark-ffi
Monero-Chan, The Open-Source Privacy Platform (OSPP)
-
slhdsa-c-rs
FFI bindings for the slhdsa-c SLH-DSA implementation
-
enigma-simulator
An absurdly fast and highly flexible Enigma machine simulation, encryption, and decryption library
-
faest
Pure Rust implementation of the FAEST post-quantum secure digital signature scheme
-
fast-paillier
Optimized Paillier encryption scheme
-
libslug
Cryptography Intended For Slug20 That Supports X59 Certificate Format and Post-Quantum Cryptography
-
logline
full stack bundle (TDLN + JSON✯Atomic + LogLine core + LLLV) with CLI
-
taceo-groth16-material
A collection of utilities for generating witnesses and proofs for Groth16 circuits. Supports Circom circuits for now.
-
boring-vendit
BoringSSL bindings
-
tor-client-lib
A client library for the Tor API
-
hashsum
CLI to print or verify cryptographic checksums (md5, sha1, sha2, belt-hash)
-
signature_bbs_plus
The Ockam BBS+ signature impementation
-
rust-kpdb
reading/writing KeePass 2 and KeePassX databases
-
in-toto
Library for in-toto
-
yunli
Additional utilities for working with Yunli
-
shamir_share
A secure and efficient Rust library for Shamir's Secret Sharing
-
printwell
HTML to PDF conversion using Chromium's rendering libraries
-
fog-crypto
signing & encryption easier for small, independent blocks of bytes. Primary use-case is the fog-pack crate.
-
tropic01
An embedded-hal driver for the TROPIC01 chip by TropicSquare
-
bbs-accum
accumulator commitment scheme by Jutla et al
-
card-cli
FIDO(U2F, WebAuthn), YubiKey, OpenPGP command line tool
-
ecies_25519
Cross-platform Elliptic Curve Integrated Encryption Scheme (ECIES) using X25519, AES-256-GCM, and HKDF-SHA256
-
strong-box
Strong, ergonomic encryption for non-cryptographers
-
crypt4gh
Encryption and decryption implementation of the Crypt4GH encryption format
-
serde-encrypted-value
A Serde Deserializer wrapper which transparently decrypts encrypted values
-
a2
A native, asynchronous Apple push notification client
-
regitry-code
是一个使用 SM2、SM3 国密算法进行加密、解密和生成注册码、任务号、密码的类库
-
parco-ws-security
Parco Web Services Security
-
oniongen-rs
A v3 .onion vanity URL generator written in Rust
-
sigserlic
Combine serde with signify
-
hashtree-cli
Hashtree daemon and CLI - content-addressed storage with P2P sync
-
snippet-agent
Codebase parsing tool. It aggregates code (i.e. RAG) as an input to LLMs
-
aws-mpl-legacy
aws-mpl-rs is a low level library for implementing client side encryption
-
reqtls
A tls lib
-
libsignal-dezire
signal protocol
-
macarunes
macaroons
-
encryptable-tokio-fs
A drop-in, API-identical replacement for
tokio::fswith transparent opt-in, non-framing stream cipher encryption -
dco3_crypto
Symmetric and asymmetric encryption for DRACOON in Rust
-
jwt-encde
GUI JWT encoder / decoder - Local, private, easy
-
neuedu-cryptos
包含国密算法的密码库。 A library include SM3, SM4 (Chinese ShangMi) crypto algos
-
blueprint-engine-eval
Async evaluator for Blueprint3
-
qubip_aurora
A framework to build OpenSSL Providers tailored for the transition to post-quantum cryptography
-
neocities-sync
Sync files to neocities while doing the least amount of API requests
-
oma-repo-verify
Handle APT repository verify library
-
rust-native-obf
advanced native obfuscation library for rust
-
rustls-mbedtls-provider-utils
code used in mbedtls based provider for rustls
-
turtls
A TLS library
-
relay-agent-migration
Migrations for the Relay Mail Agent
-
oneseed
Deterministic cryptographic keys from a single seed
-
xdid
DID library
-
blake2-rfc
A pure Rust implementation of BLAKE2 based on RFC 7693
-
gen-key
Small CLI tool for generating RSA and HMAC keys
-
hashmoney
hashcash implementation, with wasm support, variable date width and multiple minting strategies
-
ecdsa
Pure Rust implementation of the Elliptic Curve Digital Signature Algorithm (ECDSA) as specified in FIPS 186-4 (Digital Signature Standard), providing RFC6979 deterministic signatures as well as support for added entropy
-
secret-vault-value
secure and serializable type to store and control secret/sensitive values
-
p2panda-encryption
Decentralised data- and message encryption for groups with post-compromise security and optional forward secrecy
-
lambdaworks-gpu
Modular math library for cryptography - GPU implementation
-
sigh
HTTP signature generation and verification for ActivityPub, using OpenSSL
-
blackrock2
port of the Blackrock2 cipher
-
soil
A generic framework
-
decryptor_s2
cli for decrpting and encrpting S2 10th Anniversary assets
-
shosha256
A sha256 previewer I made just for fun
-
truelayer-signing
Produce & verify TrueLayer API requests signatures
-
ghostkey
A command-line tool for Freenet Ghost Key operations
-
frost-dkg
Frost Distributed Key Generation protocol
-
sentc
Encryption and group/user management sdk. Easy-to-use encryption with post quantum cryptography.
-
pwhash
A collection of password hashing routines in pure Rust
-
paseto-core
Core traits and encodings for PASETO/PASERK
-
ntrulp
Pure implementation of high-security prime-degree large-Galois-group inert-modulus ideal-lattice-based cryptography
-
dechdev_rs
by DECHDEV
-
safeguard
Secure file and credential management CLI with collections and tags
-
star-constellation
Nested threshold aggregation built on the STAR protocol
-
tectonic-fn-dsa-sign
FN-DSA signature scheme
-
ez-hash
Ergonomic hashing helpers with a simple Hashable API and optional algorithm features
-
arcanum-zkp
Zero-knowledge proofs: Bulletproofs, Schnorr proofs, commitments
-
sct
Certificate transparency SCT verification library
-
cutil
A complete internal PKI toolkit for Rust
-
git-mine
Mine your favorite git commit hashes
-
cypheron-core
Post-quantum cryptography library with NIST-standardized quantum-resistant algorithms
-
omit
Omit allows you to securely share environment variables and secrets using a single key
-
eolib
A core rust library for writing applications related to Endless Online
-
pqmagic-sys
FFI Bindings to PQMagic
-
abcrypt
encrypted data format
-
crypto-permutation
Permutation based cryptography framework; core traits
-
fss-rs
Function secret sharing including distributed comparison & point functions
-
ssi-bbs
The BBS Signature Scheme implementation for SSI
-
cryptic
encryption/decryption application. You can use this to encrypt and decrypt files using a password
-
qfe
Experimental protocol for quantum-secure communications
-
cipher_identifier
identifying classical ciphers based on statistical analysis
-
az-snp-vtpm
vTPM based SEV-SNP attestation for Azure Confidential VMs
-
why2-chat
Lightweight, fast and secure chat application powered by WHY2 encryption
-
lifx-rs
A synchronous + asynchronous library for communicating with the official LIFX-API and the unoffical offline API
-
nam-ec-gpu-gen
Code generator for field and elliptic curve operations on the GPUs
-
olm-sys
Low level binding for libolm
-
pkcs11-bindings
Rust bindings for the PKCS#11 specification
-
keetanetwork-account
Account management and cryptographic identities for Keetanetwork
-
enigma-identity
Enigma Identity: local identity + X3DH bundle + shared secret derivation
-
nu_plugin_hmac
A HMAC sealing plugin for Nushell
-
crab-cryptor
file cryptor
-
acme-lib
requesting certificates from an ACME provider
-
pqcrypto
Post-Quantum cryptographic primitives
-
google/ctap2
OpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards
-
redoubt-hkdf
HKDF-SHA512 implementation with secure memory handling
-
recs_lib
A confusing library for encrypting files and text
-
ltk_pki
Support code for verifying League Toolkit mod signatures
-
crypto2
cryptographic algorithms
-
tokio-boring-vendit
SSL streams for Tokio backed by BoringSSL
-
squint
Encode sequential integer ids as random looking strings
-
barbacane
data plane — spec-driven API gateway
-
sodix
CLI tool providing libsodium-compatible cryptographic operations. Uses Ed25519 for signing and Curve25519 for encryption, with hex-encoded keys for easy scripting. SH/BASH friendly and user friendly vith -v and -h flags.
-
oxidite-security
Security utilities for Oxidite (CSRF, XSS protection, encryption)
-
chewie-crypto-gcp
Cryptographic primitives and secret management for Rust applications
-
deoxysii
Deoxys-II-256-128 MRAE primitives for Rust
-
rzbackup
RZBackup
-
wolfssl
High-level bindings for WolfSSL
-
taceo-eddsa-babyjubjub
An EdDSA signature scheme implementation over the Baby Jubjub elliptic curve using Poseidon2, useful for SNARK-friendliness
-
xrc_cli
A cli for multi-threaded encryption/decryption of files/folder using bitwise xor
-
sosistab2
An obfuscated datagram transport for horrible networks
-
aranya-policy-text
The Aranya Policy Language textual types
-
gpg-error
Libgpg-error bindings for Rust
-
prefixed-api-key
module for generating a Prefixed API Key
-
lb-rs
interacting with your lockbook
-
azure_svc_keyvault
generated REST API bindings
-
informalsystems-malachitebft-signing-ed25519
Ed25519 signing scheme for the Malachite BFT consensus engine
-
libsm
China's Standards of Encryption Algorithms (SM2/3/4)
-
chacha20poly1305
Pure Rust implementation of the ChaCha20Poly1305 Authenticated Encryption with Additional Data Cipher (RFC 8439) with optional architecture-specific hardware acceleration. Also contains…
-
mdf
MDFive, simple md5 tool
-
dexios
Secure, fast and authenticated command-line encryption of files with modern algorithms and an audited encryption backend
-
rejson
A command line utility for managing secrets
-
hawk
Hawk Implementation for Rust
-
sigmate
A modern, developer-focused CLI for cryptographic file signing and verification
-
scromble
A no-nonsense single-file encryptor with data authentication
-
aegis
authenticated ciphers (AEGIS-128, AEGIS-256, AEGIS-128X, AEGIS-256X)
-
midnight-circuits
Circuit and gadget implementations for Midnight zero-knowledge proofs
-
s5_core
types and traits shared by all S5 crates
-
tokio-nats
Async-await ready NATS library
-
syft-crypto-cli
Command-line interface for SyftBox cryptographic operations
-
libqabu
A auditable and versitile Rust cryptography library
-
shaha
Hash database builder and reverse lookup tool
-
ec-gpu-gen
Code generator for field and eliptic curve operations on the GPUs
-
fp2
An efficient, flexible and constant time Rust implementation of the extension field Fp^2 with modulus x^2 + 1
-
vanity-age-keygen
Generate vanity Age keys
-
runar_node
Runar Node implementation
-
qux-pqc
Post-Quantum Cryptography library implementing NIST FIPS 203 (ML-KEM) and FIPS 204 (ML-DSA)
-
http-sig
IETF draft 'Signing HTTP Messages'
-
tls-friend
A friendly library to make dealing with TLS easier
-
crypter
A AES-GCM 256 encryption and decryption library
-
attestation-doc-validation
attesting enclaves according to the Evervault Attestation scheme. This crate is used to generate ffi bindings.
-
commucat-crypto
Noise handshake helpers and Ed25519 tooling for CommuCat
-
pkce-std
Handling Proof Key for Code Exchange
-
racme
Rust 庫,提供與 ACME 協議互動的功能,支援自動化憑證管理,適用於 Let's Encrypt 等 CA。
-
kotoba-cid
Content ID (CID) system for Kotoba graph processing
-
atlas-token-confidential-transfer-proof-extraction
Atlas Program Library Confidential Transfer Proof Extraction
-
bandersnatch-ffi
C FFI bindings for Bandersnatch VRF - ring signatures and ticket ID computation
-
arcanum-agile
Cryptographic agility framework for the Arcanum cryptographic engine
-
hanzo-pqc
Post-quantum cryptography primitives (ML-KEM, ML-DSA, SLH-DSA) for Hanzo ecosystem
-
keetanetwork-crypto
Cryptographic primitives and operations for Keetanetwork
-
locker-backend
Self-hosted digital encrypted vault with immutable consent receipts for personal documents
-
shamir-algorithm
Shamir's Secret Sharing algorithm using Galois Field arithmetic over GF(256)
-
r1cs
building R1CS gadgets
-
adiantum
cipher, a fast encryption scheme optimized for mobile and embedded devices, designed by Google
-
librustysigs
Signatures: A Secure Code Signing System
-
dgc
A parser and validator for the EU Digital Green Certificate (dgc) a.k.a. greenpass
-
nspm
A password manager i made for fun and learning (don't use this for real and not guaranteed to work)
-
ysc1
YSC1 (Yeun's Stream Cipher 1) based on the Amaryllis-1024 specification
-
k12sum
A command line implementation of the KangarooTwelve hash function
-
irox-cryptids
IROX Cryptographic Primitives - probably very hazardous
-
nginx-src
Source of NGINX
-
classical-ciphers
Classical cipher implementations: Caesar, Vigenère, Atbash, XOR
-
iron_secret
Secret management and secure storage for iron agent framework with encryption
-
ovunto-security
secure end-to-end communication between clients through a server
-
monocypher
Bindings for the monocypher C library
-
envlp-cli
CLI tool for AEAD envelope encryption
-
rust-bottle
Bottle protocol - layered message containers with encryption and signatures
-
bao1x-api
Baochip-1x API Crate
-
hypercore_handshake
Used for establishing an encrypted connection between hypercore peers
-
ndr
CLI for encrypted Nostr messaging using double ratchet
-
r-license
An industrial-grade offline software licensing system with hardware binding and anti-rollback protection
-
rasn-ocsp
Data types for Online Certificate Status Protocol
-
weapay
SDK for Alipay and WeChat Pay based on v3
-
aes-prng
Pseudo-random number generator based on AES
-
async-openssl
SSL streams for async IO backed by OpenSSL
-
turnkey_api_key_stamper
Generate signatures over Turnkey API requests using a P-256 key
-
lets-encrypt-warp
letsencrypt.org with warp
-
sm4-ff1
SM4 FF1 implementation
-
rpgmad-lib
decrypting/encrypting RPG Maker
rgssarchives -
super_simple_jwt
A super simple implementation of JWTs in rust!
-
mnemossh
CLI tool for generating and managing Ed25519 SSH keys using BIP-39 mnemonic phrases
-
securepass
A password generator and balancer library in Rust
-
omnibor-cli
CLI for working with OmniBOR Identifiers and Manifests
-
rpgpie
Experimental high level API for rPGP
-
const-siphasher
SipHash-2-4, SipHash-1-3 and 128-bit variants in pure Rust
-
xs_curve25519-dalek
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
http-signature-normalization-actix-extractor
An HTTP Signatures library that leaves the signing to you
-
fhe-traits
Traits for the fhe.rs library
-
soft-fido2-crypto
Cryptographic utilities for the soft-fido2 FIDO2/WebAuthn authenticator
-
sha2raw
SHA-2 hash function
-
wots-rs
Winternitz One-time Signature Scheme made using Rust
-
yara-sys
Native bindings to the libyara library
-
hsh
Quantum-Resistant Cryptographic Hash Library for Password Encryption and Verification in Rust
-
crypter_project_sk
A secure file encryption tool using AES-GCM and Argon2
-
sha2-const-stable
const fn implementation of the SHA-2 family of hash functions. Based on sha2-const, but updated to use only stable rust
-
kcr_kustomize_toolkit_fluxcd_io
Kubernetes Custom Resource Bindings
-
keystore-rs
securely generating, storing, and managing cryptographic keys with support for macOS and Linux keychain integration
-
false-bottom
A deniable encryption scheme
-
varsig
signature metadata
-
gitoid
Git Object Identifiers in Rust
-
moose
Encrypted learning and data processing framework
-
rust-crypto-utils
Memory-safe cryptographic utilities for secure key handling, encryption, and post-quantum readiness
-
envio
A Modern And Secure CLI Tool For Managing Environment Variables
-
rsfn-file
Utilitário para arquivos que trafegam na RSFN (Rede do Sistema Financeiro Nacional)
-
seal-crypto
providing pure cryptographic capability abstractions (traits) and implementations for the seal-kit ecosystem
-
rekrypt
Professional proxy re-encryption library based on Curve25519 for Rust and WebAssembly
-
bls-signatures-evm
BLS signatures in Rust for the EVM
-
aft-crypto
Cryptography library for aft
-
avila-primitives
Big integer primitives (U256, U512, U1024, U2048, U4096) - Built on avila-nucleus
-
decaf377-rdsa
randomizable signature scheme using the decaf377 group
-
dalek-ff-group
ff/group bindings around curve25519-dalek
-
ecdh-omr
ECDH based Oblivious Message Retrieval
-
hbs-lms
Pure Rust implementation of the Leighton Micali Signature scheme with support for key generation, signature generation and verification
-
stigmerge_fileindex
stigmerge file indexing
-
brass-aphid-wire-decryption
do runtime decryption of TLS conversations, and helpers for popular TLS libraries
-
hop-relay
Hop-Corr relay (batch apply + optional HTTP endpoint)
-
mozilla/jwcrypto
Firefox Application Services
-
ncmdump
Some copyright protection file dump
-
lmrc-vault
HashiCorp Vault management library for the LMRC Stack - comprehensive library for managing Vault installations and secrets on K3s/Kubernetes clusters
-
pwkit
A secure CLI password generator with template support for environment files
-
paillier-common
paillier over bigint traits provided by rust-bigint
-
ps-cypher
Chacha-based data cypher
-
rustfs-crypto
Cryptography and security features for RustFS, providing encryption, hashing, and secure authentication mechanisms
-
xitca-tls
tls utility for xitca
-
webbuf_aescbc
WebBuf AES-CBC library
-
uniaz
Unify the Unicode chars into A-Z sequence
-
oss-sdk-rs
Aliyun OSS SDK
-
gpg-expire-warner
Prints a warning when GPG keys are about to expire
-
cryprot-ot
Oblivious Transfer extension protocols
-
atomic-id
Very fast and unique id generation
-
fitgirl-decrypt
decrypt torrents from fitgirl-repacks
-
balanced-tree-index
constant-time manipulation of a complete binary tree with a flat in-memory representation
-
ntied-server
stable messenger
-
quantacore-sdk
Rust bindings for the QUAC 100 Post-Quantum Cryptographic Accelerator
-
rustls-jls
Rustls is a modern TLS library written in Rust
-
spqr-syft
Vendored spqr crate for syft
-
rift-core
Core types, identity, cryptography, and invites for the Rift P2P protocol
-
reishi-quinn
Noise IK handshake integration for quinn with QUIC key derivation
-
strx
A powerful string manipulation tool with JWT, hash, encoding, and crypto support
-
object-rainbow
distributed object model
-
paas-api
Common API for PAAS server and client
-
kassandra-client
Interact with an FMD service
-
aucpace-conflux
AuCPace protocol implementation
-
xdid-method-key
xdid implementation of did:key
-
abhedya-ffi
C/FFI Bindings for Abhedya PQC
-
itsdangerous
Rust port of the popular itsdangerous python library for signing strings and sending them over untrusted channels
-
easydes
Encrypt with DES easily in Rust
-
relay-lib
The Relay library
-
si-crypto-hashes
reusable functionality for working with typical cryptographic hashes
-
fast_chacha
CPU-optimized ChaCha20 implementation with rust fallbacks
-
crown
A cryptographic library
-
lsmtree
Implements a Sparse Merkle tree for a key-value store. The tree implements the same optimisations specified in the libra whitepaper, to reduce the number of hash operations required per tree operation to O(k)…
-
rasn-pkix
Data types for handling Public Key Infrastructure (PKIX) objects
-
lafs
Least-Authority File Store utils
-
sha256-rs
SHA256 hash made using Rust
-
fastn-id52
fastn ID52 identity and cryptographic key management
-
edgee-server
The full-stack edge platform for your edge oriented applications (server part)
-
bhx5chain
TBTL's library for handling X.509 certificate chains
-
enva-shared
Shared types and utilities for enva
-
kzen-paillier
Efficient pure-Rust library for the Paillier partially homomorphic encryption scheme
-
viadkim
DomainKeys Identified Mail (DKIM) specification
-
acmer-server
ACME TLS certificates proxy server
-
yourevalid
Validation type and trait. For internal use in polyproto-related crates, currently
-
foa
An experimental IEEE 802.11 (WLAN) stack for rust on the ESP32
-
openadp-ocrypt
Rust SDK for OpenADP - Distributed secret sharing and advanced data protection
-
rsacracker
Powerful RSA cracker for CTFs. Supports RSA, X509, OPENSSH in PEM and DER formats.
-
ssskit
Fast, small and secure Shamir's Secret Sharing library crate
-
rndc
BIND9 RNDC protocol implementation for Rust
-
rustfs-utils
functions and data structures for RustFS, providing essential features like hashing, compression, and network utilities
-
fractus
Cryptographic attack library for Rust and Python
-
isideload
Sideload iOS/iPadOS applications
-
rfc2289-otp
One Time Passwords (OTP) per IETF RFC 2289
-
tor-checkable
Types to ensure that signed or time-bound data is validated before use
-
vex-core
Core types for VEX: Agent, ContextPacket, MerkleNode, Evolution
-
abrute
AESCrypt Brute force attempter
-
simple-rijndael
Pure Rust, simple implementation of the rijndael-cbc algorithm for osu! score decryption or encryption
-
nix-base32
nix (as in NixOS) compatible base32 encoding
-
tdx_workload_attestation
generating attestations about virtual machine (VM) workloads using Intel Trust Domain Extensions (Intel TDX)
-
hotboot
Secure private data with a weak secret, using as a protection access control of the system and defense especially designed against cold-boot attacks
-
parrotssugar
Software only implementations with no additional dependencies
-
trojan-cert
Certificate generation utilities for trojan-rs
-
winternitz-ots
Interacting With Winternitz One-Time Signatures, a Hash-Based, Post-Quantum Digital Signature Scheme Based On Lamport Signatures. This implementation uses the hash function Blake2b for all hashing…
-
mlspp-sys
Messaging Layer Security system bindings crate in Rust
-
native-pkcs11-keychain
native-pkcs11 backend for macos keychain
-
scramblr
Obfuscation for Ordinary
-
flowerpassword
Flower Password implementation for Rust - Deterministic password generator using HMAC-MD5
-
agentpin
Domain-anchored cryptographic identity protocol for AI agents
-
dcrypt-symmetric
Symmetric encryption algorithms for the dcrypt library
-
vitaminc-protected
Protected type wrappers for handling sensitive data. Part of the VitaminC cryptographic suite.
-
gen-bls-key
A command-line tool for generating BLS12-381 keys and deriving public keys from private keys
-
git-simple-encrypt
Encrypt/decrypt files in git repo using one password
-
dleq
single and cross-curve Discrete Log Equality proofs
-
comprehensive_tls
A harness for creating consistently-shaped servers will less boilerplate
-
df1t-cyph
minimal rust encryption algorithm made by a solid structured sequential algorithms without any external cryptographic crates
-
cx448
A pure-Rust implementation of Ed448 and Curve448 and Decaf. This crate also includes signing and verifying of Ed448 signatures, and x448
-
ctf_party
CTF Party is a tool that provides various cryptographic and network utilities for CTF (Capture The Flag) competitions. It is written in Rust and offers a command-line interface for easy usage…
-
hanzo-identity
Crypto Identities for Hanzo AI platform
-
black-bagg
Secure password manager with RAM-only execution, fixed contact display, and post-quantum cryptography
-
plexi
A flexible auditor companion client
-
cretrit
Flexible Order-Revealing Encryption library
-
mogh_encryption
encrypt and decrypt data
-
rust-rsa-tool
sophisticated encryption utility employing a hybrid cryptographic system. It integrates RSA and AES algorithms, supports both CBC and ECB operational modes, and utilizes Base64-encoded…
-
veilid_duplex
Full-duplex encrypted communication between 2 nodes
-
affinidi-crypto
Cryptographic primitives and JWK types for Affinidi TDK
-
defendor
A secure file encryption tool with AES-GCM and Argon2 for password hashing
-
fpass
CLI Password Manager
-
benaloh-challenge
Implements the Benaloh Challenge (also known as an Interactive Device Challenge), a crytographic technique to ensure the honesty of an untrusted device
-
paillier-zk
ZK-proofs for Paillier encryption scheme
-
libsrtp
a pure rust implementation of SRTP
-
tidepool-version-manager
Version management for Tidepool toolkit
-
sustenet-shared
Sustenet shared library that contains the common code used by all modules
-
gatewarden
Hardened Keygen.sh license validation infrastructure
-
cryprot-core
Core primitives for cryptographic protocol implementations
-
tpm2-crypto
TPM 2.0 cryptographic routines
-
crypto-auditing
Client library for crypto-auditing project
-
anothertls
TLS implementation, but written from scratch (including the crypto) in pure Rust - of course
-
abao
BLAKE3 verified streaming
-
keysmith
Create keys, uuid's, timestamps, and more
-
pq-msg
Pure Rust abstractions for higher-level implementations of post-quantum cryptography in secure messaging protocols
-
nuts-memory
A backend implementation for nuts
-
dcrypt
pure-Rust, software-only cryptography library providing both classical and post-quantum primitives with a focus on security, hybrid KEMs/signatures, and memory-safe, no-FFI design
-
ark-ed-on-bw6-761
A Twisted Edwards curve defined over the scalar field of the BW6-761 curve
-
feistel-permutation-rs
Constant time, constant space permutations with Feistel Network ciphers
-
libsignify-rs
OpenBSD-compatible file signing & verification library
-
rscryptodome-bctf
A cryptography library for Rust
-
opentalk-roomserver-types-e2ee
Opentalk RoomServer E2EE Types
-
decds
A CLI for Distributed Erasure-Coded Data Storage System
-
keycrypt
AES-256-GCM encryption helpers backed by the OS keychain (auto-init key on encrypt, strict decrypt, Zeroize in-memory keys)
-
sf-cli
Secure file encryption CLI/TUI tool with password protection
-
anubis-rage
Post-quantum secure file encryption tool with hybrid X25519+ML-KEM-1024. Defense-in-depth security.
-
ssh-packet
implementing SSH packet reading/writing using
binrw -
routex-settlement
routex settlement
-
thrussh-keys
Deal with SSH keys: load them, decrypt them, call an SSH agent
-
turnstile
One-way encryption
-
vme-pkix
TLS Certificate encoding and decoding helpers for the Fortanix VME environment
-
ppaass-codec
The codec part for ppaass application
-
smcrypto
China's Standards of Encryption Algorithms(SM2/SM3/SM4)
-
filecoin-f3-merkle
Merkle tree implementation matching go-f3's merkle package
-
wacore-libsignal
Signal Protocol implementation for the WhatsApp platform
-
ghost-tfhe
TFHE (Torus Fully Homomorphic Encryption) implementation for computing on encrypted data
-
external-command-rs
External tool in Rust
-
quantum-sign
post-quantum signatures, format, policy, and CLI in one crate
-
spwn
A language for Geometry Dash triggers
-
logcrypt
CLI tool for encrypting private data in log files
-
sunscreen
A Fully Homomorphic Encryption (FHE) compiler supporting the Brakerski/Fan-Vercauteren (BFV) scheme
-
turbomcp-dpop
DPoP (RFC 9449) implementation for TurboMCP with HSM support
-
nettext
A text-based data format for cryptographic network protocols
-
aranya-internal-rustls
Fork of rustls with PSK support for internal usage
-
str_crypter
A macro library for XOR encryption and decryption of strings at compile time, meaning no cleartext strings will be in your release binary (when using the macro). The encrypted strings will be decoded at runtime.
-
pqc-combo
Pure Rust ML-KEM-1024 + ML-DSA-65 + AES-256-GCM for no_std
-
s3etag
Calculate S3 ETag for multipart uploads
-
tokio-rustls-acme2
TLS certificate management and serving using rustls (for use with Tokio)
-
tor-metrics-datamodel
Shared data model with entities and migrations
-
cocoonfs-cli
Cocoon TPM project - CLI utility for accessing CocoonFs images
-
saorsa-mls
Experimental Message Layer Security (MLS)-inspired library for P2P secure group communication
-
negentropy
set-reconciliation protocol
-
rosenpass
Build post-quantum-secure VPNs with WireGuard!
-
test-cert-gen
generate certificates for tests (e. g. for TLS)
-
jpki
Read certificates, sign and verify documents using your JPKI card
-
shadow-crypt
Secure password-based file encryption with filename obfuscation
-
http-signature-directory
Validate if your JWKS directories meet web-bot-auth standards
-
pinenut-log
An extremely high performance logging system for clients (iOS, Android, Desktop), written in Rust
-
aes-gcm
Pure Rust implementation of the AES-GCM (Galois/Counter Mode) Authenticated Encryption with Associated Data (AEAD) Cipher with optional architecture-specific hardware acceleration
-
rage
[BETA] A simple, secure, and modern encryption tool
-
dudect-bencher
DudeCT constant-time function tester
-
auths_nostr
Nostr protocol integration for Auths - NIP-01 event signing with secp256k1/BIP340
-
ps-hkey
defines the hashkey format and provides methods for resolving them
-
emixcrypto
Cryptographic utilities for EssentialMix, providing encryption, hashing, encoding, and random number generation
-
pwgen-x
A feature-rich password generator with pronounceable, secure, passphrase, and PIN modes
-
cryptos
All cryptographic in one, make crypto easy
-
ssh-tresor
Encrypt and decrypt secrets using SSH agent keys
-
libcrux-platform
Platform detection crate for libcrux
-
vrf-mod
An extensible rust library for building VRF functionality with support for Elliptical Curve VRFs (secp256k1, secp256r1 curves)
-
envcipher
Encipher .env files to make accidental leaks harmless
-
clubcard-crlite
An instantiation of Clubcard for use in CRLite
-
bevy_assets_bundler
Assets Bundler for bevy, with content encryption support
-
filecoin-f3-certs
Data structures and utilities for handling F3 finality certificates
-
thieves-cant
Solitaire Cipher designed by Bruce Schneier
-
sqisign-rs
Core types and traits for SQIsign post-quantum signature scheme
-
anypki
fully customizable PKI tool that allows your project to have a customized CA trust chain, blacklist/whitelist filtering root CAs by Country Code, Serial Number, SHA-1/SHA-256 fingerprint, or Issuer Name
-
ufile-rus3
UFile Rust SDK
-
torrosion
A Tor library for Rust
-
xwt-cert-fingerprint
Certificate fingerprint computation algorithms related to WebTransport. Not directly required to use xwt, but can be helpful. Also usable without xwt. Intended to work with both wasm and native.
-
gen_pass
Secure password generation library and CLI
-
sigstore-bundle
Bundle format handling for Sigstore
-
const-sha1
A sha1 implementation for use in const contexts
-
polyfuzzy
Fuzzy message detection with randomized and compact keys
-
base_custom
Use any characters as your own numeric base and convert to and from decimal
-
fsextra
collection of extensions to simplify working with Unix-based filesystems. With support for cryptographic operations (encryption, hashing)
-
fn-dsa
signature scheme
-
sfio-rustls-config
Configuration routines for Rustls used in libraries from Step Function I/O
-
flamethrower
Deterministic cognition ledger using power_house (and optional pent_house)
-
botan-src
Sources of Botan cryptography library
-
enigma-double-ratchet
Standalone Signal-style double ratchet focused on deterministic, reusable async messaging primitives
-
ascon-hash
Ascon-Hash256 and Ascon-XOF128
-
kryptos
various older, insecure, cryptographic ciphers
-
bls24-curves
A pure Rust framework for pairing-based cryptography using BLS24 curves
-
securestore
API for creating or decrypting user secrets
-
spatial-hasher
deterministic encryption and decryption using 3D spatial parameters with secure authenticated encryption
-
ossl
OpenSSL version 3+ bindings to modern EVP APIs
-
gxt-extism-types
Minimal, encrypted, signed and copy-pasteable tokens for manual data exchange between games
-
avila-nucleus
Atomic-level operations - Foundation of Avila cryptography stack
-
rs_sha512
rs_sha512is a Rust implementation of the SHA-512 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA-512 hashing functionality in a standalone manner… -
pent_house
Pent-House resonance ledger engine built atop power_house cognition primitives
-
signify
Command-line implementation of the signify signature scheme
-
crypto-seal
A small utility designed to securely "package" or seal serde-compatible data type that can passed around in an uncompromised manner
-
rustpad
Multi-threaded Padding Oracle attacks against any service
-
rzfile
handle RZ game data parsing and name decoding
-
ice
CTF tool store
-
quantumcryptlib
Post-quantum secure communication primitives using Kyber KEM and AEAD
-
wecanencrypt
OpenPGP library for encryption, signing, and key management (includes rpgp)
-
nekohash
A multifaceted hashing library for Rust
-
sam_encrypt
that provides a set of cryptographic primitives for building a proxy self re-encryption scheme
-
guts-types
Common types used throughout Guts - a decentralized GitHub alternative
-
libsodium-sys-stable
Maintained FFI bindings for libsodium stable
-
zks
Zero Knowledge Swarm - Post-quantum secure networking SDK with built-in anonymity
-
brass-aphid-wire-messages
structs and constants for TLS message and IANA constants
-
klave-connector
Module allowing easy connection to deployed Klave apps
-
canaad-cli
CLI tool for AAD canonicalization per RFC 8785
-
northroot-proof-engine
Core proof computation and validation library for PoSH (Proof of Shape) and PoX (Proof of Execution)
-
azalea-crypto
Cryptography features used in Minecraft
-
bitchat-tui
A terminal user interface (TUI) chat application using Bluetooth and modern cryptography
-
scicrypt
Lightweight cryptographic building blocks for proof of concept implementations in multi-party computation
-
enigma-cli
A command-line interface for an Enigma machine simulator. Configurable with any reflector, number of rotors, and plugboard pairs.
-
ockam_transport_websocket
WebSocket Transport for the Ockam Routing Protocol
-
passay-rs
A password validation library inspired by the Java Passay library
-
tink-daead
Deterministic AEAD functionality for Rust port of Google's Tink cryptography library
-
simplepir
A fast and efficient implementation of SimplePIR in Rust
-
authenticator-ctap2-2021
interacting with CTAP1/2 security keys for Web Authentication. Used by Firefox.
-
message_verifier
Rust Message Verifier library compatible with Rails' MessageVerifier and MessageEncryptor
-
ferrocrypt
Core Ferrocrypt library: symmetric (XChaCha20-Poly1305 + Argon2id) and hybrid (RSA-4096) encryption utilities
-
li2utils
signer/verifier for FIPS 204 / CRYSTALS-Dilithium post quantum cryptography (PQC). Not verified / audited (WIP)!
-
coz-rs
Coz cryptographic JSON messaging specification
-
sl-oblivious
OT protocols
-
abhedya-core
Core library for Abhedya: Sanskrit-Encoded Post-Quantum Cryptography
-
chromium-crypto
Chromium crypt
-
boo-rs
Compile-time literal obfuscation that encrypts strings, numbers, arrays and tuples to protect binaries from static analysis and reverse engineering
-
aingle-argon2
Pure Rust Argon2 password hashing - optimized for AIngle
-
variant-ssl
Bindings for OpenSSL variants such as BoringSSL / AWS-LC / Tongsuo
-
zipher
Cryptography utilities and implementations including Argon2, bcrypt, post-quantum algorithms and JWT support
-
rustpq
Pure Rust post-quantum cryptography suite - ML-KEM, ML-DSA, and more
-
sorted-iter
Typesafe extensions for sorted iterators, including set and relational operations
-
iori-ssa
Decrypt MPEG-TS encrypted using SAMPLE-AES
-
enchanter
XChaCha20Poly1305 AEAD file encryption tool
-
did-key
did:key method
-
stfx
Sovereign Trust Framework: top-level crate wrapping stfx-crypto for initial release
-
apksig
Decoding the APK Signing Block
-
ruipmi
An asynchronous IPMI client library implemented in Rust using Tokio
-
hbsx
file encryption tool with compression support
-
cross-authenticode
Cross-platform implementation of Authenticode signature verification
-
lfsr-fibo
Efficient pure Rust implemention of LFSR using Fibonacci representation
-
ecsimple
Elliptic Curve Cryptography
-
astra-num
A wrapper lib around num_bigint, num_integer, and num_traits with extra utilities for handling incredibly large (astronomical) values
-
tonelli-rs
Tonelli-Shanks algorithm for computing square roots modulo a prime
-
kylix-pqc
Post-quantum cryptography library implementing NIST FIPS standards
-
spacetimedb-jsonwebtoken
Create and decode JWTs in a strongly typed way
-
libdelve
interacting with the DelVe standard
-
vector_sdk
Rust SDK for building Vector bots
-
zymic_core
Core library providing the primitives and streaming APIs for the Zymic authenticated encryption format
-
lox-extensions
A reputation-based bridge distribution system that provides privacy protection to users and their social graph while remaining open to all users
-
tweetnacly
Bindings for TweetNaCl, with a couple of additions: flexible SHA2-512 hash, detached mode
-
ciphern
Enterprise-grade cryptographic library
-
hypercore-protocol
Replication protocol for Hypercore feeds
-
cosmian_pkcs11_module
Cross-platform PKCS#11 module written in rust, originally forked from Google/native_pkcs11
-
lox-zkp
A toolkit for auto-generated implementations of Schnorr proofs
-
jwtk
JWT signing (JWS) and verification, with first class JWK and JWK Set (JWKS) support
-
otrr
otrr — OTR protocol version 3 and 4
-
ockam_multiaddr
multiformats.io/multiaddr
-
aes-gcm-stream
AES GCM stream encrypt and decrypt library, supports AES128/192/256 bit keys
-
deno_tls
TLS for Deno
-
keylib-sys
FFI bindings for keylib C API
-
symbi-runtime
Agent Runtime System for the Symbi platform
-
secure-string
A data type suitable for storing sensitive information such as passwords and private keys in memory, featuring constant time equality, mlock and zeroing out
-
dcf
Distributed comparison function implementation
-
signal-backup-decode
decode signal backups
-
x402-kit-signer
X402 rust sdk
-
appimage
creating and signing appimages
-
test-curve25519-dalek
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
concrete-csprng
Cryptographically Secure PRNG used in the TFHE-rs library
-
ritualistic
nostr library
-
naixi-key-encryptor
Naixi dedicated cross-language encryption core
-
frost-secp256k1
A Schnorr signature scheme over the secp256k1 curve that supports FROST
-
paseto-rs
A minimal, learning-focused PASETO v4 implementation in Rust
-
pqc_dilithium
A post-quantum cryptographic signature scheme based on the hardness of lattice problems over module lattices
-
serde-encrypt
Encrypts all the Serialize
-
nethsm
A high-level library to interact with the API of a Nitrokey NetHSM
-
shippo_core
Core models and planning logic for Shippo
-
cifra
Console command to crypt and decrypt texts using classic methods
-
icmptunnel-rs
Tunnel ip packets through icmp pings
-
pqcrypto-sphincsplus
Post-Quantum Signature Scheme sphincsplus
-
commucat-media-types
Shared media codec descriptors for CommuCat
-
br-crypto
crypto
-
envcrypt
Encrypt environment variables at compile-time and decrypt them at runtime
-
conhash-ring
A consistent hashing ring implementation in Rust
-
ocsp
encoding/decoding lib for Rust
-
tiny_ed448_goldilocks
A lean, high performance, pure rust implementation of Ed448-Goldilocks for easy signatures and key exchange
-
debian-packaging
Debian packaging primitives
-
vade-didcomm
DIDComm communication helper for vade
-
kosalt
This package allows for quick encoding and decoding text
-
akv-cli
Azure Key Vault CLI (unofficial) can read secrets from Key Vault, securely pass secrets to other commands or inject them into configuration files, encrypt and decrypt secrets, and managed keys and secrets in Key Vault
-
esdm-tool
small tool to query and use ESDM
-
reed-solomon
BCH encoder and decoder with support of no_std environment
-
anse2
custom cipher for dumb messenger
-
minivault
Local-only, light-weight Encryption as a Service
-
vusi
ECDSA signature vulnerability analysis library and CLI
-
encrypto_rsa
stunning-encrypto is cross platform end-to-end encryption dependency
-
swift-secure-enclave-tool-rs
Swift secure enclave tool in Rust
-
nstack
Arity 4 stack for the kelvin merkle toolkit
-
helpers
self use helper library
-
parmesan
Parallel ARithMEticS over ENcrypted data
-
sequoia-octopus-librnp
Reimplementation of RNP's interface using Sequoia for use with Thunderbird
-
kcapi
Official high-level rust bindings for libkcapi
-
redact-client
Receives request for private data and decrypts it to display securely in browser
-
kyberauth
Enable AES keys transfer on unsecure channel using quantum-resistant Kyber
-
saorsa-seal
Threshold sealing for group data in the Saorsa network
-
king
short cut functions
-
qp-plonky2-field
Finite field arithmetic
-
openpgp-card-state
Experimental storage mechanism for openpgp-card device state
-
jrn
a journal app
-
apple-security-framework
Apple
Security.frameworkbindings for macOS and iOS -
pem-rfc7468
PEM Encoding (RFC 7468) for PKIX, PKCS, and CMS Structures, implementing a strict subset of the original Privacy-Enhanced Mail encoding intended specifically for use with cryptographic keys…
-
libthemis-sys
FFI binding to libthemis
-
josers
JavaScript Object Signing and Encryption
-
forge-pfx
Forge is a cli tool for converting PFX/P12 certificate files to PEM format
-
subtle-ng
Pure-Rust traits and utilities for constant-time cryptographic implementations
-
gitclaw
Official GitClaw SDK for Rust - The Git Platform for AI Agents
-
tholos-pq
Pure post-quantum multi-recipient encryption: Kyber-1024 + Dilithium-3 + XChaCha20-Poly1305 with a stable, versioned wire format
-
shared-aes-enc
A shared AES encryption library providing secure encryption and decryption functionality
-
wascap
wasmCloud Capabilities. Library for extracting, embedding, and validating claims
-
rusty_secrets
threshold Shamir's secret sharing in the Rust programming language
-
hctr2-rs
HCTR2 and HCTR3 length-preserving encryption with format-preserving variants
-
sare-lib
Hybrid post-quantum encryption library providing SARE standard primitives and APIs
-
witnet-bls-signatures
Open source implementation of Bonneh-Lynn-Shacham (BLS) signatures written in Rust
-
lean-imt
A lightweight incremental Merkle tree library
-
calimero-server-primitives
Core Calimero infrastructure and tools
-
jokoway-acme
ACME (Let's Encrypt) extension for Jokoway
-
hush-spine
Aegis Spine protocol for ClawdStrike — envelope signing, checkpoints, trust bundles, and NATS transport
-
ciphercore-base
The base package of CipherCore: computation graphs API, Secure MPC Compiler, utilities for graph evaluation and inspection
-
yadacha
symmetric cipher that combines chacha20 and very large private keys
-
object-rainbow-encrypted
encryption for object-rainbow
-
syncstate
A global synchronization library built for synchronizing states reliably, incrementally and fast
-
hashkitten
A purrfect hashing companion
-
tink-hybrid
Hybrid encryption functionality for Rust port of Google's Tink cryptography library
-
seedpass
A secure password generation tool based on a single master key using Argon2 and BIP-39
-
ultra
Cryptanalysis of the Engima
-
rust-cryptoauthlib
Rust wrappers for CryptoAuthentication Library bindings
-
i0
thei.rs/i0 reference implementation written in rust
-
double-ratchet-2
Double Ratchet as specified by Signal
-
gm-rs
China's Standards of Encryption Algorithms(SM2/SM3/SM4)
-
libsignal-rust
Complete and Powerful Rust implementation of libsignal protocol
-
portable-rustls
fork of rustls: a modern TLS library written in Rust
-
greenpass
parse EU Digital Green Certificates for COVID-19
-
stfx-crypto
Core cryptographic primitives for the Sovereign Trust Framework (STFx)
-
sequoia-cert-store
A certificate database interface
-
rust_ev_system_library
E-Voting system library functionalities for the Verifier
-
sigma-proofs
A toolkit for auto-generated implementations of Σ-protocols
-
cipha-cli
CLI for classical ciphers
-
classified
High-assurance Operations for Number-theoretic Extension Sets and Theorems (Galois Fields)
-
pqc_bridge
A lightweight Rust library for post-quantum cryptography providing secure key management, encryption, and digital signatures using NIST-standardized algorithms
-
ntied
stable messenger
-
zsign
ipa sign
-
libsm_stzhang
China's Standards of Encryption Algorithms (SM2/3/4)
-
wring-twistree
Whole-message cipher and tree hash
-
gni
create a GPU Node ID
-
basic-jwt
Basic JWT signing and verification library
-
opentalk-types-signaling-e2ee
Signaling types for the OpenTalk e2ee module
-
mls-rs-crypto-traits
Crypto traits required to create a CryptoProvider for mls-rs
-
scream_cypher
A CLI tool and library for encrypting and decrypting messages using the scream cypher
-
ntrust-native
Pure rust implementation of the PQC scheme Saber
-
minimal-ed448
Unaudited, inefficient implementation of Ed448 in Rust
-
enprot
command line tool for Engyon
-
ppoprf
Puncturable Partially-Oblivious Pseudo-Random Function
-
aeonflux
Composable, lightweight, fast attribute-based anonymous credentials with infinite (aeon) rerandomised (flux) presentations using algebraic message authentication codes (aMACs), symmetric verifiable encryption…
-
enc_rust
A pure rust implementation of the Module-Lattice-based standards ML-KEM and (soon) ML-DSA, also known as the PQC scheme Crystals Kyber and Dilithium
-
pumpkin
A cryptographically secure prime number generator
-
lazy-locker
A secure local secrets manager with TUI interface and SDK support
-
signcryption
implementing the Toorani-Beheshti signcryption scheme instantiated over Ristretto255 or Ed25519
-
fng_api_wrapper
Crypto Fear and Greed API wrapper
-
ts-token
JSON web token library for my projects
-
encrypted_images
Encrypt Text to Images and decrypt text from images
-
oilelpqt
Post-quantum socks5 proxy that uses Kyber1024 and triple AES
-
trelent-hyok
implementing Hold Your Own Key (HYOK) encryption patterns with support for multiple cloud providers
-
pk11-uri-parser
A zero-copy library to parse and (optionally) validate PKCS#11 URIs in accordance to RFC7512 specifications
-
cralgebra
A fast crypto algebra library
-
keyutils
Rust interface to the Linux keyring
-
streambed-confidant-cli
A CLI for a file-system-based secret store that applies streambed-crypto to data
-
libcrux-p256
Formally verified P-256 implementation
-
pdf2john
Extract a hash from an ecrypted PDF for cracking with John the Ripper or Hashcat
-
dotenvx
A secure environment variable management tool with built-in encryption
-
bacon-cipher
Bacon's cipher
-
cas-lib
A function wrapper layer for RustCrypto and Dalek-Cryptography. Intended to be used in FFI situations with a global heap deallactor at the top level project.
-
sha_file_hashing
computing and validating SHA-1 file hashes with a clean, trait-based API
-
laza
Kanari Network Cryptographic Hashing Library
-
mc-oblivious-map
Oblivious Hash Map data structures on top of Oblivious RAM
-
nam-blst
Bindings for blst BLS12-381 library
-
poly1305-nostd
Pure-Rust Poly1305 MAC implementation for no_std/bare-metal targets (avoids LLVM SIMD issues)
-
janus_messages
Distributed Aggregation Protocol message definitions used in Janus, the server powering ISRG's Divvi Up
-
ssb-multiformats
Key, feed id, and message hash types used by Secure Scuttlebutt
-
rust-kbkdf
SP800-108 Key Based Key Derivation Using Pseudorandom Functions
-
steganographyrs
Steganography
-
frost-secp256k1-evm
A Schnorr signature scheme over the secp256k1 curve that supports FROST and EVM
-
evpkdf
OpenSSL EVP_bytesToKey function
-
x25519-nostd
Pure-Rust X25519 (Curve25519) ECDH implementation for no_std/bare-metal targets (avoids LLVM SIMD issues)
-
mushi
Point-to-point QUIC networking with application-defined mutual authentication
-
bp-pp
Bulletproofs++ - range-proof protocol in discret loggarithm setting
-
tibba-crypto
crypto for tibba
-
surrealdb-jsonwebtoken
Temporary
jsonwebtokenfork with Wasm support -
apple_srp_client
Apple Secure Remote Password Client
-
find_hash
A high-performance, offline hash type identification tool
-
halite-sys
Unsafe Rust bindings for libsodium stable
-
protozoa-cryptography
Cryptography library for Protozoa
-
ppvss
An implmentation of Pre-constructed Publicly Verifiable Secret Sharing
-
libcrux-aesgcm
Libcrux AES-GCM implementation
-
mas-jose
JSON Object Signing and Encryption (JWT & co) utilities
-
rand-esdm
interface to ESDM RNG server
-
databoxer
Fast and easy to use CLI-based file encryption program
-
rustls-fork-shadow-tls
Rustls is a modern TLS library written in Rust
-
azure_mgmt_maps
generated REST API bindings
-
async-acme
async ACME client for tls-alpn-01 challenge
-
encrypt-me
Encrypt and encrypt files by shifting bytes
-
chksum-cli
checksum calculator
-
nova-scotia
Middleware to compile Circom circuits to Nova zkSNARK scheme
-
rialo-s-secp256r1-program
Precompile implementation for the secp256r1 elliptic curve
-
trivium
Small Rust implementation of the Trivium stream cipher
-
purecrypt
Minimal, readable, dependency-free implementations of modern cryptographic primitives in pure Rust
-
test-dalek-docs
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
mbedtls-platform-support-smx
support library for the
mbedtlscrate, providing platform and target specific implementations of all necessary functions. By separating this logic into a separate crate, multiple… -
qcert
generating test key/certificate pairs
-
oram
Oblivious RAM
-
crypt3_rs
Unix crypt(3) reimplemented in pure rust
-
snowstorm
A minimalistic encryption protocol based on Noise protocol (snow)
-
fluent-hash
A lightweight library which provides a fluent interface for generating SHA-1 and SHA-2 digests
-
spideroak-crypto
SpiderOak's cryptography library
-
pq-transport-gateway
Post-Quantum secure proxy for QKD infrastructure, addressing vendor TLS vulnerabilities
-
enocoro128v2
Safe, embedded-friendly Enocoro-128 (Version 2) stream cipher. Verified using Hitachi's official test vectors.
-
theca
fully featured, command line note taking tool
-
rivven-core
Core library for Rivven distributed event streaming platform
-
quinn-noise
quinn noise implementation
-
gimli-hash
The Gimli-permutation based Hash
-
qslib
QuantStudio qPCR machine library
-
pake-kem
password-authenticated key exchange (PAKE) based from a key encapsulation mechanism (KEM)
-
gel-jwt
JWT implementation for the Gel database
-
rust-keylock-ui
A password manager with goals to be Secure, Simple to use, Portable and Extensible
-
redoubt-rand
Cross-platform cryptographic random number generation
-
acme-client
Easy to use ACME client library to issue, renew and revoke TLS certificates
-
bunker
Dead simple, secure password management
-
syft-crypto-protocol
Post-quantum cryptographic protocol implementation for SyftBox using Signal's PQXDH
-
ironoxide
A pure-Rust SDK for accessing IronCore's privacy platform
-
stout-mirror
Offline mirror creation and serving for stout
-
kuska-sodiumoxide
Fast cryptographic library for Rust (bindings to libsodium), with conversion from ed25519 to curve25519
-
aranya-id
Aranya ID types
-
osshkeys
read and write OpenSSH public and private keys
-
dataparser_core
A flexible and efficient binary parsing and serialization library for Rust
-
desfire
interfacing with Mifare Desfire cards
-
ksi-double-ratchet
Double Ratchet key management for exchanging encrypted messages between two parties
-
akd_client
Client verification companion for the auditable key directory with limited dependencies
-
monerochan-recursion-compiler
Monero-Chan, The Open-Source Privacy Platform (OSPP)
-
web-push-native
Generic Event Delivery Using Http Push (web-push) components implemented according to RFC8030
-
anubis-wormhole
A post-quantum secure file transfer tool based on the Magic Wormhole protocol
-
klukai-agent
Agent component for Klukai Corrosion
-
sdjwt
SD-JWT support for Issuers, Holders, and Verifiers
-
pointerguard
Pointer encryption library in rust
-
lightspeed_hash
Hash functions
-
gimli-permutation
Gimli: a cross-platform permutation
-
arcanum-pqc
Post-quantum cryptographic algorithms for the Arcanum engine
-
umbral-pre
Umbral proxy reencryption algorithm
-
lea
Lightweight Encryption Algorithm (LEA)
-
zero_pass_backend
The Zero Pass Project brain
-
sha3
Pure Rust implementation of SHA-3, a family of Keccak-based hash functions including the SHAKE family of eXtendable-Output Functions (XOFs), as well as the accelerated variant TurboSHAKE
-
certbot-dns01-hook
Hook for certbot to serve the DNS01 challenge secret TXT record
-
runkr
Bunkr client
-
permitry
Pluggable license management SDK with anti-rollback guarantees
-
sl-verifiable-enc
Verifierable encryption
-
universe_sync
Synchronizes the global state of the entire universe. Do not modify this crate unless you are the Prime Minister of England.
-
sapphire-hash
A recursive, performant file hash calculator
-
rustfuscator
A text obfuscation library using AES-GCM encryption
-
himmelblau_kerberos_asn1
Parse/Build Kerberos ASN1 DER To/From Rust structs
-
xkcp-rs
Safe wrappers to the XKCP library
-
wecom-crypto
企业微信API数据加解密库。
-
chamber-core
The core for Chamber, the self-hostable SecretOps service
-
relay-agent-entity
Enitity definitions for the Relay Mail Agent
-
this-me
Encrypted identity store CLI tool (this.me)
-
oml-cryptokit-rs
A very lightweight wrapper around Apple's CryptoKit for Swift
-
kyberlib
A Robust Rust Library for CRYSTALS-Kyber Post-Quantum Cryptography
-
otplus-core
Core cryptographic library for OTPlus - A secure one-time password and key derivation system
-
covidcotra
A covid-19 contract tracing experiment
-
chacha12-blake3
Secure, Simple and Fast encryption for any CPU
-
ffsend-api
A fully featured Firefox Send API client
-
tsumiki-asn1
ASN.1 object representation and parser for X.509 certificates
-
kcr_jetstream_nats_io
Kubernetes Custom Resource Bindings
-
blastkids
Derive BLS12-381 child keys using Blastkids
-
zk-aluvm
AluVM ISA extension for Galois fields
-
sl-messages
Message exchange for MPC protocols
-
s_nor
A Very Simple To Use Encryption Algorithm * Not Ment For Professional Use
-
mal_dev_core
Core cryptographic and transport utilities for loader
-
json-read
json-read是一个json读取工具,可以直接通过
x.y.z.w方式读取json中的内容,不用逐层解析 -
cryptoys
a cryptographic library filled with cryptographic toys(mostly historical ciphers)
-
poseidon-rs
Poseidon hash implementation
-
shadowsocks-rs
personal port of shadowsocks in rust
-
sha3-rust
Keccak (SHA-3) cryptographic hash function family
-
simplestcrypt
Simplest way to perform a symmetric encryption, using a preshared key. Very small wrapper around aes-siv crate, with randomly generated nonces, for anything more advanced, use aes-siv instead
-
vgnr
Le Chiffre Indéchiffrable
-
EasyCrypto
crypto crate aim at usability
-
roughenough-merkle
SHA-512 Merkle tree implementation
-
rsa_heapless
Pure Rust RSA implementation - heapless version
-
ring_signature_verifier
ring signatures generated by an Alice's Ring library
-
nipdf
A PDF library written in Rust
-
firecloud-core
Core types and traits for FireCloud distributed storage
-
vmadm
Administer virtual machines in local libvirt
-
snowflake-jwt
Snowflake JWT token generator
-
mpc-protocol
Multi-party computation framework using the noise protocol for end-to-end encryption
-
shadowrocks
Shadowsocks port in pure async/.await Rust
-
lamport_sigs
Lamport one-time signature scheme
-
boring-sys2
FFI bindings to BoringSSL
-
criticaltrust
Digital signatures implementation for criticalup
-
e2eel
end-to-end encryption library for key management
-
enigmify
program to encrypt and decrypt text using the Enigma machine
-
rustls-symcrypt
rustls crypto provider model for SymCrypt
-
tibba-util
util for tibba
-
stout-index
SQLite index management for stout
-
secret-service-server-rs
A server for the Secret Service API implemented in Rust
-
xts-mode
XTS block mode implementation in rust
-
rcrypt
A compact hashing/salting library based on bcrypt with smaller hashes
-
rpm-sequoia
RPM PGP interface using Sequoia
-
compio-boring2
SSL streams for Compio backed by BoringSSL
-
totp-sm-rs
A TOTP (Time-based One-Time Password) implementation in Rust with SM3 support
-
mini-sign
minisign in rust
-
ringspace
Trusted webring management
-
ibe
Identity Based Encryption schemes on the BLS12-381 pairing-friendly elliptic curve
-
awol2005ex_kerberos_asn1
Parse/Build Kerberos ASN1 DER To/From Rust structs
-
codesign-verify
Bindings to the OS utilites for code signature validation
-
rsub
A high-performance message broker with QUIC transport and pub/sub messaging patterns
-
gmsm
China's Standards of Encryption Algorithms (SM2/3/4)
-
ratchet-x2
Pure Rust Double Ratchet protocol implementation
-
hkd32
HMAC-based Hierarchical Key Derivation: deterministically derive a hierarchy of symmetric keys from initial keying material through repeated applications of the Hash-based Message Authentication Code…
-
soft-aes
A Rust-based software library for AES
-
drawbridge-jose
JOSE implementation
-
bessie
an authenticated, chunked cipher based on BLAKE3
-
encrypted_id
Encryption and Decryption
-
c4id
C4 ID implementation for SMPTE ST 2114:2017
-
tripcode
generating tripcodes on imageboards and textboards
-
embedded-mbedtls
no_std Rust wrapper for Mbed TLS
-
fiffy
intended for simple file processing
-
taceo-groth16
Groth16 zkSNARK proof system
-
pkgar
Redox Package Archive
-
az-tdx-vtpm
vTPM based TDX attestation for Azure Confidential VMs
-
rust-license-key
A production-grade Rust library for creating and validating offline software licenses using Ed25519 cryptography
-
did-scid
did:scid in Rust
-
redact-crypto
Crypto abstractions for the Redact framework
-
gimli-crypto
A no_std implementation of Gimli AEAD cipher and hash function
-
ristretto_cli
A Java Virtual Machine (JVM) CLI
-
mkv128-kw
NIST 800-38F MKV128 Key Wrap (KW) and Key Wrap with Padding (KWP) modes
-
tough-ssm
Implements AWS SSM as a key source for TUF signing keys
-
libcryptsetup-rs-sys
Low level bindings for libcryptsetup
-
lusl
Lossless Uncompressed Serializer Library
-
scion-sdk-common-types
SCION endhost SDK common types
-
ts-crypto
Cryptography abstraction for my projects
-
sentc-crypto-common
Common shared values between sentc server api and the sentc client sdk
-
credibil-infosec
Credibil information security utilities
-
ansible-vault
encrypt and decrypt ansible vault
-
cliff3-util
SHA(256/512) hash, AES/RSA 암복화, 한글, I/O 및 날짜 관련 함수 모음 입니다
-
circomkit-rs
A Circom testing & development environment for Rust
-
abe_gpsw
ABE GPSW scheme for BLS pairing implemented in rust
-
argentum_encryption_infrastructure
The infrastructure layer of encryption
-
secret-store-sdk
Rust SDK for XJP Secret Store Service
-
tink-ffi-sys
Raw FFI bindings to Google Tink via C shim
-
tink-mac
MAC functionality for Rust port of Google's Tink cryptography library
-
parsec-tool
Parsec Command Line Interface
-
digestible
A more dynamic Hash and Hasher trait for Rust
-
httpsig-hyper
Hyper extension for http message signatures (RFC9421)
-
module-lwe
Implements the module learning-with-errors public key encrpytion scheme
-
acme_commander
一个全面的ACME客户端,用于SSL/TLS证书管理
-
tsp-http-client
HTTP client for requesting timestamps from a timestamp authority (TSA) using the RFC 3161 standard
-
rusty_vault
RustyVault is a powerful identity-based secrets management software, providing features such as cryptographic key management, encryption as a service, public key cryptography, certificates management…
-
argon2rs
The pure Rust password hashing library that runs on Argon2
-
ed25519_to_curve25519
Convert ed25519 keys and sign to curve25519
-
libsumatracrypt-rs
Cryptography
-
sgx_pkix
TLS Certificate encoding and decoding helpers for the SGX environment
-
gencrypt
Personal usage hashing utility
-
ksign
OpenWRT’s
usignutility rewritten in Rust. The crate provides both the executable and the library. -
num-primes
Generating Large Prime and Composite Numbers using num with a simplistic interface
-
cdumay_sodium
sodium
-
rusty-saber
Pure rust implementation of the PQC scheme Saber
-
cryptimitives
Cryptographic primitives collection
-
oath
algorithms in Rust. Includes TOTP, HOTP, and OCRA.
-
ghostkey_lib
working with Freenet's Ghost Keys
-
zopp-crypto
Zero-knowledge cryptographic primitives for zopp secrets manager
-
xxxdh
Pure Rust X3DH key exchange protocol implementation
-
aranya-client
Client library for using Aranya
-
nrc
Nostr Relay Chat - A terminal-based chat client using the Nostr protocol with MLS encryption
-
rsa-fdh
provably secure blind-signing signature scheme that uses RSA and a full domain hash and support blind signing / blind signatures
-
ssh2
Bindings to libssh2 for interacting with SSH servers and executing remote commands, forwarding local ports, etc
-
permutation-xoodoo
Xoodoo permutation in the
crypto-permutationframework -
ppaass-v3-common
Ppaass v3 common
-
rialo-validator-registry-interface
Instructions and constructors for a registry containing validator identities
-
dinoxor
Re-implements bitwise operations as abstractions in aarch64 neon registers
-
volaris-crypto
The corecrypto cryptography behind Volaris
-
artisan_keystore
A keystore server designed for AH
-
xoofff
Farfalle with Xoodoo: Parallel Permutation-based Cryptography
-
keccakf
keccak-F[1600,800,400,200]
-
yaml-reader
yaml-reader是一个yaml读取工具,可以直接通过
x.y.z.w方式读取yaml中的内容,不用逐层解析 -
xwt-web-sys
xwt that runs in the browser. Powered by wasm-bindgen and web-sys
-
awol2005ex_kerberos_crypto
Cryptography algorithms for Kerberos
-
keetanetwork-asn1
ASN.1 definitions and utilities for Keetanetwork
-
wechat-pay-rust-sdk-gs
微信支付 © Wechat Pay SDK Official (标准库)
-
keycache
Seals a key using a secure element
-
tuple-hash
TupleHash per NIST SP 800-185
-
cryptoki-sys
FFI wrapper around the PKCS #11 API
-
paseto-json
JSON encoding for PASETO
-
p47h-open-core
Cryptographic primitives and policy engine for secure identity management
-
ff-cl-gen
OpenCL code generator for prime-fields
-
otp-pass-import
import OTP secret files extracted using
extract-otp-secrets(https://github.com/scito/extract_otp_secrets) intopass(https://www.passwordstore.org) -
zuc
ZUC Stream Cipher Algorithms
-
aranya-keygen
generating crypto keys
-
cocoon-tpm-tpm2-interface
Cocoon TPM project - autogenerated TPM2 interface definitions
-
libcgc
Liphium's encryption library to make encryption easy and reliable
-
stegano
The ultimate steganography swiss knife army CLI tool
-
med_core
Powered Core Engine for M.E.D. Masking, Encryption, and Decryption CSV/JSON
-
sigsum
using Sigsum transparency logs
-
sofapub
A minimally functional ActivityPub server
-
mostro-webtool
A web-based tool for generating deterministic keys and building Mostro protocol messages
-
pwsec
Support for password-based encryption
-
str0m-openssl
OpenSSL backend for str0m WebRTC
-
zerostash
Safe and secure backup CLI
-
tc_tea
Tencent's varient of TEA (tc_tea)
-
bssl-cmake-sys
FFI bindings to BoringSSL (cmake incorporated)
-
sett
Rust port of sett (data compression, encryption and transfer tool)
-
aws-mpl-cxx
C++ bindings for aws-mpl
-
ironcore-search-helpers
Search helpers for working with encrypted values, particularly on the IronCore platform
-
runar_cli
Runar CLI for node initialization and management
-
libgpg-error-sys
Raw bindings for libgpg-error
-
ntied-transport
stable messenger
-
skipjack
A straight-line implementation of Skipjack in Rust
-
mlkem-fips203
MLKEM [512, 768, 1024] module-lattice key encapsulation mechanism following the FIPS 203 standard
-
bulk-gcd
Fast parallel bulk GCD computation for finding weak RSA keys in a set
-
ucan
Implement UCAN-based authorization with conciseness and ease!
-
pkcs11
Rust PKCS#11 Library
-
shielded
Memory. Memory protection from speculation and side-channel attacks like Spectre, Meltdown, Rowhammer and Rambleed.
-
zed-jwt
A Zed extension for decoding and validating JWT tokens
-
mcl_rust
a wrapper class/function of a pairing library; https://github.com/herumi/mcl
-
zopp-secrets
Secret encryption and decryption for zopp secrets manager
-
crypto-bigint-asm
Assembly routines for big integers
-
timing-shield
Comprehensive timing leak protection for Rust
-
hyphae-handshake
Noise protocol framework handshakes for QUIC
-
sigstore-fulcio
Fulcio certificate authority client for Sigstore
-
rs_hasher_ctx
internal crate of the RustyShield library. It provides the HasherContext trait used across various cryptographic hash function implementations within RustyShield. The trait overloads the…
-
zki_sieve
SIEVE IR
-
passwordmaker-rs
Rust reimplementation of the PasswordMaker Pro algorithm. This is partially a port, partially written from scratch. Compatibility is a goal, but not guaranteed.
-
rasn-its
ASN.1 implementations for Intelligent Transport Systems (ITS) V2X communications
-
pvcrypt
System level data encryption using aes_gcm
-
zeroize
Securely clear secrets from memory with a simple trait built on stable Rust primitives which guarantee memory is zeroed using an operation will not be 'optimized away' by the compiler…
-
apk
creating and signing apks
-
quickcrypt
Fast, offline encryption & key management. No cloud. No complexity. Military-grade security.
-
ps_sig
Pointcheval Sanders signatures
-
fn-dsa-sign
FN-DSA signature scheme
-
sl-compute-common
secure compute
-
angulu
contains some cipher components
-
ordinary-obfuscation
Obfuscation for Ordinary
-
encryptify-lib
encrypting and decrypting files and folders using AES-256 bit encryption
-
street-cred
Manage encrypted secrets for your applications
-
falcon-rust
Falcon post-quantum digital signature scheme
-
wcce-rs
[MS-WCCE] certificate enrollment protocol
-
nuts-tool-api
Code that helps you to implement a nuts tool plugin
-
ristretto_types
Types and traits for the Ristretto JVM
-
kkv
A Peer-to-Peer Decentralized, Temporary and Anonymous Message System
-
rc5-cipher
A generic use elliptic curve library
-
relay-crypto
The crypto library for the Relay Ecosystem
-
googleapis-tonic-google-ads-datamanager-v1
A Google APIs client library generated by tonic-build
-
irmaseal-curve
Fork of the BLS12-381 pairing-friendly elliptic curve construction for IRMAseal
-
clevis-pin-tpm2
Clevis TPM2 PIN with policy support
-
ipcrypt-rs
IP address encryption and obfuscation methods in pure Rust
-
rsa-der
encode and decode public RSA keys using DER
-
renc
Rust Encryption Engine compatible with the zenc file format
-
risc0-sppark
Zero-knowledge template library
-
chaum-pedersen-zkp
Chaum-Pedersen zero-knowledge protocol implementation
-
meta-secret-core
Meta Secret core module
-
vitaminc-encrypt
Secure, flexible and fast encryption for Rust types. Part of the Vitamin-C cryptographic suite.
-
botan-sys
FFI wrapper for Botan cryptography library
-
gday_encryption
encrypted ChaCha20Poly1305 wrapper around an async IO stream
-
cracken
a fast password wordlist generator, Smartlist creation and password hybrid-mask analysis tool
-
chord-parser
parsing chord signatures
-
signal-crypto-syft
Vendored libsignal crypto crate for syft
-
cloudproof
Cosmian Cloudproof library
-
ruma-signatures
Digital signatures according to the Matrix specification
-
rustls-spiffe
SPIFFE Integration with Rustls to provide Server and Client certs/keys and CA bundle
-
myca
TLS certificate chain generator
-
dpf-fss
Distributed point function implementation
-
turing-cipher
A fast Rust implementation of Qualcomm's Turing stream cipher
-
circomspect
A static analyzer and linter for the Circom zero-knowledge DSL
-
ferric_crypto_lib
Ferric Crypto
-
simple-ssl-acme-cloudflare
SSL with ACME and CloudFlare is a tool to simply apply SSL certificates by using OpenSSL and ACME via CloudFlare DNS
-
git_vault
A simplified version control system built in Rust for local files, quite similar to how git functions
-
s2n-quic-crypto
Internal crate used by s2n-quic
-
kemkem
Unverified, unoptimized, and downright dirty implementation of the ML-KEM
-
drand_core
A drand client library
-
identity_eddsa_verifier
JWS EdDSA signature verification for IOTA Identity
-
rust-keyvault
A secure, modern cryptographic key management library for Rust
-
sigstore-crypto
Cryptographic primitives for Sigstore
-
portal-lib
Secure file transfer library, written in Rust. The library utilizes SPAKE2 for key negotiation over an insecure channel, and ChaCha20Poly1305 Authenticated Encryption to encrypt the…
-
noctahash
Memory-hard password hashing algorithm designed to resist GPU, ASIC, and side-channel attacks
-
classified_shamir
shamir secret sharing using the honest and classified crates
-
colorhash256
Like Chroma-Hash, but with ANSI terminal colors
-
acme2
A Tokio and OpenSSL based ACMEv2 client
-
git-crypt
transparent encryption of files in a git repository
-
shamir-3-pass
Shamir 3-pass protocol (commutative encryption)
-
btcturk_websockets
client for the BtcTurk WebSocket API with real-time ticker and orderbook channels
-
hctr2
length-preserving encryption HCTR2 algorithm
-
relay-core
The core components of the Relay Protocol
-
rifling
creating Github/Gitlab webhook listener
-
nist-pqc-seeded-rng
RNG used to produce the KATs in NIST PQC competition
-
mbedtls-sys-auto
Rust bindings for MbedTLS. This version generates the correct bindings at compile time using bindgen
-
lakers-crypto-rustcrypto
EDHOC crypto library backend based on the RustCrypto crates
-
kylix-core
Core traits and utilities for the Kylix post-quantum cryptography library
-
arcanum-hash
Hash functions and key derivation for the Arcanum cryptographic engine
-
confium
Open-source distributed trust store framework
-
ubl-types
UBL types: IDs + DIM, Display/FromStr, validator & helpers for Universal Business Ledger
-
disco-rs
A no-std, pure Rust impl of Disco Noise Protocol extension
-
rust_ev_verifier_application_lib
common elements to implement an application using the crate
rust_ev_verifier_lib -
bh-jws-utils
TBTL's library for handling JSON Web Signatures (JWS)
-
secwords
secure and safe password container
-
foodshare-crypto
Cryptographic utilities for webhook verification and HMAC
-
rops-cli
SOPS CLI alternative in pure Rust
-
keyper
TUI password manager
-
ncrypt-me
Dead simple encryption library
-
plexi-cli
A flexible auditor companion client
-
nu_plugin_x509
A nushell plugin for working with x509 certificates
-
self-signed-cert
generate self-signed root CA, web server certs and keys
-
uricrypt
Hierarchy-preserving deterministic URI encryption
-
custom-constraints
Customizable Constraint Systems (CCS)
-
encrypted-sled
encryption wrappers to a sled database
-
libthemis-src
Building native Themis library
-
fss
file store service
-
tls-api-openssl
TLS API implementation over openssl crate
-
libaes
AES cipher in safe Rust with no dependencies
-
tectonic-fn-dsa-comm
FN-DSA signature scheme
-
xaeroid
decentralized identity with Ed25519 and hash commitments
-
tls-api-test
TLS API without implementation
-
gm-sm2
China's Standards of Encryption Algorithms SM2
-
fire-crypto
Crypto library providing encryption and signing
-
souschef
CLI utility to interact with Chef Server
-
sigstore-sign
Sigstore signature creation
-
iocutil
IoC utilities for malware researchers
-
saltlick
encrypting and decrypting file streams using libsodium
-
cryptotools
cryptography library
-
himmelblau_kerberos_crypto
Cryptography algorithms for Kerberos
-
rcssl
generating X.509 certificates with support for CA, server, client and peer certificate profiles
-
merkle-tree-bulletin-board-backend-mysql
A mysql backend for merkle-tree-bulletin-board
-
eznacl
A wrapper around NaCl which makes working with cryptography even easier
-
yggdrasil-keys
Quickly generate yggdrasil keys
-
doe
powerful Rust crate designed to enhance development workflow by providing an extensive collection of useful macros and utility functions. It not only simplifies common tasks but also…
-
s3p-cli
CLI for BlockNet S³P (encrypt→erasure→merkle, fountain tools)
-
pgjwt_rs
PostgreSQL extension for JWT verification with RS256 and Ed25519 support
-
spl-elgamal-registry-interface
SPL ElGamal Registry Interface
-
gnostr-types
gnostr: a git+nostr workflow utility
-
arachnid-net
networking utilities for arachnid
-
silent-sparrow
A minimal, scheduled, cryptographically signed status beacon
-
rs_shield
comprehensive Rust library providing robust and efficient implementations of cryptographic hash functions including SHA and Keccak families, and HMAC, suitable for no_std environments…
-
ed25519-bip32
Ed25519 BIP32
-
libpasta
All-inclusive password hashing library
-
easy-hasher
Easy hashing library
-
signstar-request-signature
executable for creating, reading and writing of signing requests for files
-
lhash
Minimal hashing library
-
pn_utils
Portalnesia
-
XPManager
A fast and efficient CLI tool for managing passwords and encrypting sensitive data
-
kjwt
mini JSON Web Token library
-
sgx_tcrypto
Rust SGX SDK provides the ability to write Intel SGX applications in Rust Programming Language
-
tk-rand-core
NSA-standard CSPRNG string generation core
-
phalanx-crypto
🛡️ Phalanx - General-purpose group E2E encryption protocol
-
cosmian_pkcs11
HSM PKCS#11 provider for Cosmian KMS
-
parasol_runtime
supports the Parasol CPU, providing key generation, encryption, and FHE evaluation functionality
-
enquo-core
Core library providing encrypted querying operations
-
svalinn
A unified, safety-critical hybrid cryptographic library (X25519, ML-KEM, Ed25519, ML-DSA, SLH-DSA)
-
EZDB
Easy little database
-
ark-crypto-primitives-zypher
useful cryptographic primitives
-
ssb-crypto
Crypto primitives used by Secure Scuttlebutt
-
s2n-tls-sys
A C99 implementation of the TLS/SSL protocols
-
morf
authenticated encryption layer over RF
-
attack-on-ecdsa
Educational Rust implementation of ECDSA cryptographic attacks (research and learning purposes only)
-
browser-crypto
A safe Rust interface to browser-based cryptographic operations using the Web Crypto API
-
veldora
A command-line program to bruteforce zips, pdfs and some popular hashes
-
srisum
Compute and check subresource integrity digests
-
cde
A universal encoding scheme for all cryptographic data
-
xxblake3
encryption and decryption based on xxh3 and blake3
-
test-cert-gen-2
generate certificates for tests (e. g. for TLS)
-
stegano-seasmoke
Providing cryptography functionality as library for stegano-core
-
ssb-validate
Verify Secure Scuttlebutt (SSB) hash chains (in parallel)
-
tss-keyfile
Decoding of TPM 2.0 TSS Keyfiles from PEM/DER/(ASN.1)
-
tpm2
Pure Rust TPM2 TSS
-
ctr
CTR block modes of operation
-
line-bot-sdk-utils
functions for LINE Bot SDK, including webhook signature validation
-
uv-trampoline-builder
internal component crate of uv
-
md5-extensions
Use md5 as an extension function
-
rdedup-lib
Data deduplication with compression and public key encryption. - library
-
ossuary
establishing secure communication channels between two hosts
-
librqbit-sha1-wrapper
Common interface around various sha1 implementations used in rqbit torrent client
-
ReXOR
Cross-platform library with CLI app for encoding and decoding files using XOR encryption
-
sylow
BLS signature scheme using the alt-bn128 curve
-
gnip44
nostr NIP-44 encryption code
-
scoop-hash
Hashing library for libscoop
-
tink-prf
PRF functionality for Rust port of Google's Tink cryptography library
-
pem-iterator
Iterate over PEM-encoded data
-
atlas-generic-token
Atlas Program Library Generic Token
-
webpki-root-certs
Mozilla trusted certificate authorities in self-signed X.509 format for use with crates other than webpki
-
ristretto_jit
JVM JIT Compiler
-
vanity-ssh-rs
Generate SSH key pairs with custom patterns in the public key
-
rustls-lite
Experimental unsafe non-affiliated rustls lite fork. Don't use please.
-
crypt_guard_lite
compact and intuitive library that wraps the crypt_guard crate, making its core functionalities easily accessible and manageable. This library provides essential cryptographic operations…
-
private-box
A direct port of https://github.com/auditdrivencrypto/private-box
-
caramel-client
A caramel client, to generate keys, requests and fetch updated certificates from a caramel server
-
zears
AEZ v5 cipher
-
speck
block cipher
-
crypto_api_blake2
Implements Blake2b for
crypto_api -
ck-meow
STROBE using KitTen
-
bn-curves
A pure Rust framework for pairing-based cryptography using BN curves
-
lox-library
Main Lox library with protocols and functions that make up Lox
-
frost-p256
A Schnorr signature scheme over the NIST P-256 curve that supports FROST
-
shippo_publish
GitHub release publisher for Shippo
-
acmer
ACME TLS certificates management library
-
atlas-elgamal-registry
Atlas ElGamal Registry Program
-
nostringer_cli
Command-line interface for the nostringer ring signature library
-
sha1-extensions
Use sha1 as an extension function
-
mc-oblivious-ram
Implementations of Oblivious RAM data structures
-
wireapp/proteus
Axolotl protocol implementation
-
openpgp-card
A client implementation for the OpenPGP card specification
-
decanter
implements basic cryptographic primitives native to the ecosystem
-
libes
Collection of Elliptic Curve Integrated Encryption Scheme(s)
-
wireguard-vanity-address
Find Wireguard VPN keypairs with a specific readable string
-
matrix-lite-rs
Production-ready Matrix protocol implementation with Redis backend, E2EE (Olm/Megolm), and WASM support for scalable real-time messaging
-
witness-node
Individual witness node server for the Witness timestamping system
-
auths_core
Core cryptography and keychain integration for Auths
-
zest4096
ChaCha based hash for faster, larger blocks
-
neuedu-cryptos-wasm
包含国密算法的密码库。 A library include SM3, SM4 (Chinese ShangMi) crypto algos
-
crypto_api_chachapoly
ChaCha20-IETF, Poly1305 and ChachaPoly-IETF for
crypto_api -
halo2_poseidon
The Poseidon algebraic hash function for Halo 2
-
randomorg
A random.org client library. The randomness comes from atmospheric noise, which for many purposes is better than the pseudo-random number algorithms typically used in computer programs.
-
frost-core-myecoria
Types and traits to support implementing Flexible Round-Optimized Schnorr Threshold signature schemes (FROST)
-
emissary-util
I2P protocol stack
-
redox-pkg
redox package manager library
-
fsc
file store client
-
openssl-kdf
OpenSSL KDF function abstraction
-
wasmsign2-cli
CLI tool to sign and verify WebAssembly modules
-
sifredb-key-file
File-based key provider for SifreDB
-
age-plugin
[BETA] API for writing age plugins
-
bcsh
A command line tool to hash strings using bcrypt
-
bitcheck
script to perform md5 and sha1 hash check on ArchLabs Images
-
voa-config
configuration of technology backends in VOA
-
libcipher
Advanced Encryption Standard (AES) for secure data encryption and decryption
-
wechat-api-rs
SDK for WeChat Official Account and Mini Program APIs
-
identity_account_storage
Secure storage for Decentralized Identifiers and Verifiable Credentials
-
deno_crypto_provider
Cryptography provider for Deno
-
mbedtls-sys-auto-smx
Rust bindings for MbedTLS. This version generates the correct bindings at compile time using bindgen
-
eris-rs
Encoding for Robust Immutable Storage (ERIS) spec draft
-
kuznechik
Synchronous encryption algorithm "Kuznechik" (GOST R 34.12-2015, GOST R 34.13-2015)
-
tsumiki-pkix-types
PKIX types (AlgorithmIdentifier, Name, etc.) for X.509 certificates
-
tauri-plugin-crypto-hw
Android/iOS StrongBox/Secure Enclave Bindings+Wrapper for Tauri
-
bls12_381_relic
Bindings for BLS12-381 implemented by relic
-
oboron-py
Python bindings for Oboron - general purpose encryption and encoding library
-
picky-test-data
Test data for the picky crates
-
rmls
Messaging Layer Security in Rust
-
hmac-sha1-compact
A small, self-contained SHA1 and HMAC-SHA1 implementation
-
signature_ps
The Ockam PS signature impementation
-
swh-digestmap
quickly convert between content hashes (eg. SWHID <-> sha1)
-
student-key-manager
Secure key management for student data anonymization with encryption and database integration
-
paillier-lsc
Efficient pure-Rust library for the Paillier partially homomorphic encryption scheme
-
p256k1
Rust wrappers around libsecp256k1 which expose internal scalar and point APIs
-
p47h-cli
CLI tool for P47H policy validation and DID management
-
kcr_s3_services_k8s_aws
Kubernetes Custom Resource Bindings
-
printer_server
A backend for running remote printing over the internet, using QUIC + TLS
-
ssh-portkey
Secure SSH credential manager with a fast ratatui-based TUI, fuzzy search, and encrypted vault
-
ssclient
SecureStore client for managing user secrets
-
envvault
A secure environment variable management tool with encryption and team collaboration features
-
crate-test01
Testing if this works or not
-
umbral-rs
A pure-Rust implementation of the Umbral threshold Proxy Re-encryption scheme
-
black-bagg-sigs
Quantum-Sign detached signature, trust, and crate bundle for black-bagg 0.4.10 (crates.io-only)
-
ootp
(Open One-time Password) is a supports multiple programming languages. The generated one-time passwords are fully compliant with HOTP (HMAC-based One-time Password) and TOTP (Time-based One-time Password)…
-
ark-ff-zypher
finite fields
-
snailcrypt
access api.snailcrypt.com
-
xitter-txid
Generate X (Twitter) client transaction IDs
-
miracl32
version of miracl/core for 32-bit no_std platforms
-
tor-key-forge
Low level cryptography wrappers used by Tor
-
x509-cert
Pure Rust implementation of the X.509 Public Key Infrastructure Certificate format as described in RFC 5280
-
str0m-wincrypto
Supporting crate for str0m
-
etospheres-labs-rusty_secrets
threshold Shamir's secret sharing in the Rust programming language
-
rshare
A file sharing program written in Rust
-
tail_cbc
Cipher Block Chaining (CBC) block cipher mode of operation with unaligned size support
-
mls-rs-crypto-openssl
OpenSSL based CryptoProvider for mls-rs
-
yohu
A versatile command-line cryptography tool implementing multiple cipher algorithms for educational and practical use
-
grain-128aeadv2
stream cipher
-
ckks-engine
that provides an implementation of the CKKS (Cheon-Kim-Kim-Song) homomorphic encryption scheme. This enables encrypted computations on real numbers and strings while preserving the privacy of the underlying data…
-
banyanfs
A modern end-to-end encrypted filesystem built on distributed block replication primitives
-
rust-sike
key encapsulation mechanism (KEM) and public-key encryption (pke) schemes of the Supersingular Isogeny Key Encapsulation (SIKE) protocol
-
sntrup761
Streamline NTRU Prime algorithm
-
jax-common
Core data structures and cryptography for JaxBucket - end-to-end encrypted P2P storage
-
sequoia-sqv
OpenPGP signature verification program
-
enigma-aead
AEAD + framing + nonce transport layer for Enigma secure messaging
-
openpgp-card-rpgp
Companion crate for using openpgp-card with rPGP
-
pqcrypto-falcon
Post-Quantum Signature Scheme falcon
-
playfair
Cipher implementation in Rust
-
bls_dkg
DKG
-
packc
Greentic pack builder CLI
-
rsa_keygen
generating rsa keys with a 12 word seedphrase
-
tokio-libtls
Tokio bindings for LibreSSL's libtls
-
crown-bin
A cryptographic library
-
scram
provider library
-
frost-adaptor-signature
A Schnorr adaptor signature scheme over the secp256k1 curve that supports FROST and Taproot
-
gf
Galois Field
-
cipher_magma
Block Cipher Magma (GOST R 34.12-2015, former GOST 28147-89)
-
openpgp-card-tool-git
Git signing and verification with a focus on OpenPGP cards
-
rama-boring-sys
FFI bindings to BoringSSL for Rama
-
openmls_traits
Traits used by OpenMLS
-
kimberlite-crypto
Cryptographic primitives for Kimberlite
-
dcrypt-sign
Digital Signature Schemes for the dcrypt library
-
boring-sys-vendit
FFI bindings to BoringSSL
-
oskr
High performance distributed works collection
-
rustls-cert-gen
Rust X.509 certificate generator CLI
-
sheesy-cli
The 'share-secrets-safely' CLI to interact with GPG/pass-like vaults
-
aranya-fast-channels
High throughput, low latency encryption protected by Aranya Policy
-
ssi-crypto
various hashes and signatures for the ssi library
-
kg_passgen
Password generator that hashes an input master password and a service url
-
nostro2-nips
Nostro2 is a simple toolset for interacting with the Nostr protocol
-
ockam_transport_uds
Unix Domain Socket (UDS) Transport for the Ockam Routing Protocol
-
noise-framework
Noise protocol framework in functional style
-
ore-rs
Order-revealing encryption library used by the CipherStash searchable encryption platform
-
tough-kms
Implements AWS KMS as a key source for TUF signing keys
-
ssh-key
Pure Rust implementation of SSH key file format decoders/encoders as described in RFC4251/RFC4253 and OpenSSH key formats, as well as "sshsig" signatures and certificates (including…
-
cryptose
effortlessly encrypting and decrypting messages
-
simple_pyth_client_rs
Rust wrapper for Pyth Hermes crypto price feeds
-
sgx_tseal
Rust SGX SDK provides the ability to write Intel SGX applications in Rust Programming Language
-
kryoptic
A PKCS #11 software token written in Rust
-
securo
Cryptographic impl for hybrid classical-post-quantum authentication and secure communication
-
threshold-secret-sharing
A pure-Rust implementation of various threshold secret sharing schemes
-
shadow-crypt-shell
Main workflows and I/O operations for shadow-crypt
-
aman
The definitive, high-performance binary integrity & signing platform. Supports P-256, Ed25519, Multi-sig, and Anti-tamper.
-
irmaseal-core
Core library for IRMAseal communication and bytestream operations
-
ckeylock-api
API for ckeylock
-
dlog-group
Unified wrapper around different prime-order cryptographic groups where the discrete log, computational Diffie–Hellman, and decisional Diffie–Hellman problems are believed to be hard
-
rustls-mbedcrypto-provider
Mbedtls based crypto provider for rustls
-
tectonic-oqs
interface to Open-Quantum-Safe's liboqs
-
scion-sdk-utils
SCION endhost SDK utilities
-
native-pkcs11-traits
Traits for implementing and interactive with native-pkcs11 module backends
-
ark-poly-zypher
efficient polynomial arithmetic via FFTs over finite fields
-
amcl_wrapper
Wapper over Milagro Cryptographic Library (version 3)
-
spark-address
Minimal, no_std-compatible Bech32m encoder/decoder for Spark addresses
-
fwsig
A specification (and tools) for firmware signing / verification
-
ansivault
CLI tool ansible-vault 1.1 implementation
-
timely-pass-sdk
A secure, time-based password policy manager SDK
-
zshuffle
Encrypt and shuffle cards, resulting in a randomly ordered deck
-
davey
Discord Audio & Video End-to-End Encryption (DAVE) Protocol
-
merkle_sigs
Merkle signing
-
cylinder
high-level cryptographic signing library
-
rand_jitter_kernel
interface to Linux kernel jitterentropy_rng
-
nma4
Rust bindings for the libnma library
-
x509lint
X.509 linter (RFC 5280 certificates and CRLs)
-
tlog_tiles
c2sp.org/tlog-tiles and c2sp.org/tlog-checkpoint
-
leancrypto-sys
Rust language binding for leancrypto, a cryptographic library with stack-only support and PQC-safe algorithms
-
bananapeel
A darn-slippery obfuscator algorithm!
-
sponge-hash-aes256
A sponge-based secure hash function that uses AES-256 as its internal PRF
-
ockam_app_lib
Ockam's desktop application library
-
kr
Development Toolkit
-
tacet-core
Core statistical analysis for timing side-channel detection (no_std)
-
srp-conflux
Secure Remote Password (SRP) protocol implementation
-
zkp_fiat_shamir_lib
non-interactive ZKP Fiat-Shamir
-
roughenough-common
Shared cryptography and encoding utilities for Roughenough
-
trifid-pki
Nebula PKI system
-
firecloud-crypto
Encryption and key management for FireCloud distributed storage
-
qp-poseidon-core
Poseidon2 hash core over Goldilocks with a Plonky2/Plonky3-agnostic compatibility layer
-
dusk-safe
Sponge API for Field Elements
-
age-plugin-yubikey
YubiKey plugin for age clients
-
jh-s3
S3 protocol client in Rust
-
tangy-lib
Tang protocol library implementation
-
zerovault
Fort-Knox document encryption vault with defense-in-depth security
-
chacha20poly1305-nostd
Pure-Rust ChaCha20-Poly1305 AEAD implementation for no_std/bare-metal targets (avoids LLVM SIMD issues)
-
monerochan-recursion-gnark-cli
Monero-Chan, The Open-Source Privacy Platform (OSPP)
-
pbkdf2
Generic implementation of PBKDF2
-
curve420
elliptic curve in Rust
-
sra-wasm
A wasm implementation of the SRA protocol
-
checkpipe
Perform a computation over some bytes passing through some struct
-
argon2-rs
Argon2 password hashing library for Rust
-
angulu-cli
password tool
-
sekrit
Encrypt any file, decrypt anywhere. File encryption that doesn't suck.
-
ockam_transport_ble
Bluetooth Low Energy (BLE) Transport for the Ockam Routing Protocol
-
sidh
An efficient supersingular isogeny-based cryptography library
-
leslie_lamport
A Post-Quantum Cryptographic Library For Lamport Signatures
-
sh-secgen
secret key generator
-
ironcore-documents
working with IronCore Labs documents and header formats
-
x509
X.509 certificate serialization
-
aes-256-gcm
AES-GCM (Aes 256 Gcm) with some enhancement
-
sm9_core
SM9, identity-based cryptography
-
pqcrypto-falcon-wasi
Post-Quantum Signature Scheme falcon
-
nuts-directory
A backend implementation for nuts
-
helvetia
API server that allows anonymous storage of secrets, with a simple rule; any user can create a secret using a token, and they can only access it using the same token
-
timecapsule
A time-locked message system. encrypt messages that can only be decrypted after a specific date
-
sgxencrypt
Cli tool for encrypting content for fleek network sgx enclaves
-
gennaro-dkg
The Gennaro Distributed Key Generation Algorithm
-
vitaminc-permutation
Secure Permutation functions. Part of the Vitamin-C cryptographic suite.
-
crystals-dilithium
Pure RUST implementation of CRYSTALS-Dilithium digital signature scheme
-
gcm-nonceless
Decrypts GCM encrypted data without access to the nonce
-
mpc-relay-server
Noise protocol websocket relay server for MPC/TSS applications
-
performant_encryption
providing external facing functions to performant and trusted encryption in Rust
-
abe_policy
Policy and attributes definition for ABE cryptosystems
-
pqc_dilithium_edit
Modified version. A post-quantum cryptographic signature scheme based on the hardness of lattice problems over module lattices
-
builder_signing_sdk_rs
Small signing utilities for Builder API auth and EIP-712 helpers used by Polymarket clients
-
cipher
Traits for describing block ciphers and stream ciphers
-
seal-crypto-wrapper
A high-level, misuse-resistant cryptographic wrapper library for Rust, binding algorithms to keys to ensure type safety
-
kcr_trino_stackable_tech
Kubernetes Custom Resource Bindings
-
tcrypt
A secure cryptographic library for key exchange and encryption
-
libcrux-chacha20poly1305
Formally verified ChaCha20-Poly1305 AEAD library
-
quantum_cryptographic_toolkit
A toolkit for developing, testing, and deploying quantum-resistant cryptographic algorithms
-
kangarootwelve
BlaKE12: Blazing-fast KEccak on 12 rounds
-
sha2-extensions
Use sha2 as an extension function
-
coyote
Embeddable ACME server with programmable challenges and storage
-
sunscreen_curve25519
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
pqc_kyber_kyberslash
post-quantum Kyber KEM algorithm
-
str0m-apple-crypto
Apple CommonCrypto/Security framework backend for str0m WebRTC
-
obfs4
Pure rust implementation of the obfs4 pluggable transport
-
anubis-age
Post-quantum secure encryption library with hybrid X25519+ML-KEM-1024 mode (internal dependency for anubis-rage)
-
fencryption
A program to encrypt/decrypt text, files and directories
-
rs_internal_state
package serves as an essential building block within the
rs_shieldcryptographic library. It is focused on providing foundational functionality and infrastructure for various cryptographic operations within the… -
rs-builder-signing-sdk
Polymarket Builder API authentication with HMAC-SHA256 signatures
-
chamox
procedural macro to inject obfuscated, meaningless code to increase reverse engineering complexity
-
xwt-test-assets
Static test assets for xwt
-
lllv-core
LLLV — Cryptographic capsules for verifiable retrieval
-
cryptsetup-rs
Rust wrapper around the libcryptsetup library, allowing manipulation of LUKS devices in Linux
-
generic-ec-curves
Elliptic curves for
generic-eccrate -
dalek-test-curve-docs
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
paseto-v3-aws-lc
PASETO/PASERK V3 based on AWS-LC
-
checkasum
A small utility to verify the data integrity of a downloaded file with its expected checksum
-
rustls-graviola
graviola is a modern, fast cryptography library
-
armature-acme
ACME protocol support for automatic TLS certificates in Armature
-
kychacha_crypto
A Post-Quantum Secure Encryption Protocol using chacha20poly1305 and CRYSTALS-kyber
-
psa-crypto
Wrapper around the PSA Cryptography API
-
anubis-vault
Post-quantum secure secrets manager with ML-KEM-1024, ML-DSA-87, zero-knowledge proofs, Shamir sharing, and memory protection. The ultimate security vault.
-
nethsm-backup
binary for working with encrypted NetHSM backups
-
p12_polyfill
Allows to use pkcs12 generated by openssl v1 in rustls and native-tls (vendored openssl-src v3)
-
chacha20stream
A writable wrapper stream for encryption and decryption with the stream cipher chacha20_poly1305
-
rusty_crypt
allowing for a very quick and simple implementation of AES-GCM encryption
-
ddns-letsencrypt-tool
that combines an RFC2136 dynamic dns updates client with an acme client supporting the dns01 challenge protocol
-
bt_secure_storage
lightweight Secret Vault and Encryption Library for Rust to store secrets
-
crab-gnupg
API for GNU Privacy Guard (GnuPG) written in rust. Manage gpg keys and secure files using rust.
-
tectonic-fn-dsa-vrfy
FN-DSA signature scheme
-
craftls
Rustls is a modern TLS library written in Rust
-
ed25519_keygen
generating ed25519 signing keys from BIP-39 mnemonics or base64
-
opaque-borink
configuration of OPAQUE, a passowrd-authenticated key exchange protocol
-
pq-envelope
Post Quantum Hybrid Encryption for multiple recipients
-
azure_svc_attestation
generated REST API bindings
-
hrp
generate human-readable passwords
-
yacen-core
Core library for yacen, simplifying client development
-
mls-rs-crypto-awslc
AWS-LC based CryptoProvider for mls-rs
-
aes-gcm-siv
Pure Rust implementation of the AES-GCM-SIV Misuse-Resistant Authenticated Encryption Cipher (RFC 8452) with optional architecture-specific hardware acceleration
-
file_endec
Secure file encryption and decryption from the command line
-
podman-sequoia
A polyfill to use Sequoia as a signing backend for containers
-
redoubt
Systematic encryption-at-rest for in-memory sensitive data in Rust
-
rscrypt
fast, and secure encryption tool written in Rust
-
xkcp-sys
Native bindings to the XKCP library
-
detsurtnu
Automated mirror of untrusted - Safe, fast, zero-panic, zero-crashing, zero-allocation parsing of untrusted inputs in Rust
-
pipebuf_rustls
PipeBuf wrapper for Rustls
-
cryptix_1988
Cryptix: Compile-Time String Encryption & Obfuscation Framework for Rust
-
sppg
CLI passphrase generator using the diceware method
-
obs-sdk
针对华为云的OBS工具封装rust版本的sdk
-
qserde
a non-std rust library for serializing/deserializing ml-kem(aka kyber) public key, encapsulating/decapsulating 256 bit keys and so on
-
benu
compact binary signed tokens
-
rustls-openssl
Rustls crypto provider for OpenSSL
-
crypt_guard_sign
CryptGuardLib is a comprehensive Rust library designed for strong encryption and decryption, incorporating post-quantum cryptography to safeguard against quantum threats. It's geared…
-
pqcrypto-picnic
Picnic implementation for
pqcrypto -
merkle-sdk
seamless integration with Merkle's services
-
libsignify
Create cryptographic signatures for files and verify them
-
sha2-const
const fn implementation of the SHA-2 family of hash functions
-
fn-dsa-kgen
FN-DSA signature scheme
-
pqc-nostd
PQC no_std no_alloc Kyber Dilithium embedded 100% Rust
-
aesus
CLI for AES-256-GCM encryption using memorable passphrases
-
givme
A password manager built in Rust that is simple to use and safe
-
frost-core-unofficial
Types and traits to support implementing Flexible Round-Optimized Schnorr Threshold signature schemes (FROST)
-
horcrust
command-line-tool which splits a file into encrypted shards for safekeeping. As long as the specified threshold is met, a user can resurrect their original file at any time - no password necessary.
-
curveforge
Optimised, secure, and generalised algorithms for elliptic curve arithmetic
-
ec25519
Small, self-contained, wasm-friendly elliptic curve algorithms for 25519 curve family
-
pg-curve
Fork of the BLS12-381 pairing-friendly elliptic curve construction with target group serialization
-
rsa_ext
Pure Rust RSA implementation
-
cosmian_findex_client
Cosmian Findex REST Client
-
ecksport-auth
Native auth impl using NaCl-based signing key system
-
age-plugin-simplepq
Post-Quantum plugin for age clients based on ML-KEM
-
tls_codec
A pure Rust implementation of the TLS (de)serialization
-
tweetnacl
api for using tweetnacl
-
rustls-ffi
Rustls bindings for non-Rust languages
-
bls_ringct
A pure-Rust implementation of Ring Confidential Transactions
-
modular_math
modular arithmetic crate for U256
-
tongsuo
OpenSSL bindings
-
curveforge-traits
Optimised, secure, and generalised algorithms for elliptic curve arithmetic
-
passwors
password handling library that utilises Rust's type system to enfore better password handling. Use it as a basic building block for more complex authentication systems.
-
bgv
An efficient FHE library
-
maybenot-cli
A CLI tool for defense generation using Maybenot
-
paspio
A password entropy calculator
-
cosmian_crypto_base
Crypto lib for hybrid encryption and pure crypto primitives
-
bls_bulletproofs
A pure-Rust implementation of Bulletproofs using Ristretto
-
dusk-hamt
HAMT datatructure for microkelvin
-
enard
container format
-
vks_client
Client implementation of the Verifying Keyserver (VKS) interface
-
rinkey
Keyset manipulation command-line tool for Rust port of Google's Tink cryptography library
-
rust_ctf_party
CTF Party is a tool that provides various cryptographic and network utilities for CTF (Capture The Flag) competitions. It is written in Rust and offers a command-line interface for easy usage…
-
ark-r1cs-std-zypher
A standard library for constraint system gadgets
-
pg-core
PostGuard core library communication and bytestream operations
-
bessie_bin
a demo/test CLI for the Bessie cipher, NOT FOR PRODUCTION USE
-
repl-proto
JSON-RPC wire protocol types for the Symbi platform
-
credman
A little command line tool based on RustCrypto: RSA library
-
fluxencrypt-cli
Command line interface for FluxEncrypt encryption SDK
-
bls_amcl_hotfix
BLS signatures. 2 variations. Multi-signature, Threshold signature, batch verification support
-
ubl-ledger
UBL Ledger: append-only NDJSON with async writer, WAL, verify for Universal Business Ledger
-
ring-lwe
Implements the ring learning-with-errors public key encrpytion scheme
-
key_value_service
A refreshingly simple data-driven game engine and app framework
-
sentc-crypto
The main implementation of the sentc sdk
-
ssi-dids-core
Core types and traits for DIDs for the ssi library
-
chksum-md5
MD5 hash function with a straightforward interface for computing digests of bytes, files, directories, and more
-
miku-ktls
Configures kTLS for tokio-rustls client and server connections
-
quinn-hyphae
Noise protocol framework handshakes for the Quinn QUIC library
-
krow
key derivation function
-
rustls-aws-lc-rs
An aws-lc-based crypto provider for rustls
-
bertie
Minimal TLS 1.3 implementation
-
sha3-kmac
KMAC per NIST SP 800-185
-
lamport_signature_plus
Lamport one-time signature scheme
-
commit-reveal
SHA256-based commit-reveal scheme for fair P2P verification
-
userspace-rng
secure randomness with entropy generated in userspace
-
aegis-password-generator
A secure password generation and management library
-
lthash-rs
LtHash - Homomorphic Hash Function
-
dcrypt-pke
Public Key Encryption schemes for the dcrypt library
-
data_vault
Data Vault is a modular, pragmatic, credit card vault for Rust
-
certitude
Certificate validation logic for OS X and Windows
-
trackone-constants
Shared constants for TrackOne crates
-
semaphore-rs-hasher
Rust support library for Semaphore
-
jwt2
JSON Web Tokens done right... hopefully.
-
bitget_sdk
Bitget Exchange API SDK for Rust
-
flakebi-ring
A fork of ring to make some private functionality public
-
volaris-cli
Efficient, robust, and verified command-line file encryption
-
infisical
Official Rust SDK for Infisical
-
hakanai-lib
Client library for Hakanai, a secure secret sharing service
-
frost-ristretto255
A Schnorr signature scheme over the prime-order Ristretto group that supports FROST
-
envelop
An envelope encryption library porting godaddy/asherah to rust
-
lock_box
A command-line tool for generating and managing passwords
-
pezsc-keystore
Keystore (and session key management) for ed25519 based chains like Pezkuwi
-
sl-mpc-traits
small utility traits
-
iso8583_rs
define/parse/assemble and send/receive (via TCP) an ISO8583 message
-
tor-llcrypto
Low level cryptography wrappers used by Tor
-
azure_mgmt_fist
generated REST API bindings
-
sentc-crypto-light
The main implementation of the sentc light sdk
-
bee2-rs
Bindings for cryptographic library Bee2
-
presence
Privacy friendly presence tokens
-
medallion
JWT library for rust using serde, serde_json and openssl
-
dumb-crypto
Dumb, but easily verifiable implementations of crypto algorithms
-
alpine-protocol-rs
Authenticated Lighting Protocol (alpine): secure control-plane + streaming guard for lighting data
-
bls_acml
BLS signatures. 2 variations. Multi-signature, Threshold signature, batch verification support
-
rs_sha224
rs_sha224is a Rust implementation of the SHA-224 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA-224 hashing functionality in a standalone manner… -
mkserial
Serial number generator for X.509 certificates
-
libcrux-kem
Libcrux KEM implementation
-
arcanum-threshold
Threshold cryptography for the Arcanum cryptographic engine
-
rusty_crypto
cryptographic suite for Rust
-
sec1
Pure Rust implementation of SEC1: Elliptic Curve Cryptography encoding formats including ASN.1 DER-serialized private keys as well as the Elliptic-Curve-Point-to-Octet-String encoding
-
mp4decrypt
Decrypt CENC protected MP4 content using Bento4
-
rypt
Versatile standalone command-line encryption tool
-
curve25519-parser
Curve25519 Parser - DER/PEM parser for OpenSSL Ed25519 / X25519 keys
-
passwordEncryption
一个安全的密码哈希库,使用 Argon2 算法保护用户密码
-
sequoia-policy-config
Configure Sequoia using a configuration file
-
brsl2
Cayley hashing as in 'Navigating in the Cayley Graph of SL₂(𝔽ₚ)'
-
elliptic-curve-tools
Extra Rust-Crypto elliptic-curve adaptors, functions, and macros
-
libcrux-aead
Formally verified AEAD library
-
d7s_auth
Credential storage for d7s using platform keyrings
-
mc-rand
A platform abstraction layer providing a cryptographic RNG,
McRng -
vios_app
Small JSON vaults: Argon2id + AES-GCM, with optional AAD binding
-
ostring_auth
A license authentication module
-
tpksig
Decoding the TPK Signing Block
-
secret-box
Safe boxing mechanism for sensitive values with automatic zeroization
-
bssh-russh
Temporary fork of russh with high-frequency PTY output fix (Handle::data from spawned tasks)
-
sm4-gcm
SM4-GCM Library
-
sare-core
Core library for the SARE encryption standard
-
dcrypt-kem
Key Encapsulation Mechanisms for the dcrypt library
-
click
A command-line REPL for Kubernetes that integrates into existing cli workflows
-
scrypt
password-based key derivation function
-
rs-password-utils
Password utilities, writen in Rust
-
pki
Public key infrastructure tools for Rust
-
password_policy
A comprehensive password generator and strength analyzer with configurable policies
-
str0m-aws-lc-rs
aws-lc-rs backend for str0m WebRTC
-
wtfrost
Weighted Threshold implementation of FROST, a Schnorr aggregated threshold signature scheme
-
sigma-proof-compiler
creating and verifying sigma protocols (zero-knowledge proofs of knowledge) using symbolic computation over elliptic curves
-
sarhash-core
A modular library for password hashing (Argon2) and strength verification (zxcvbn)
-
file_encryptor
libsodium-based file encryption/decryption CLI
-
arcanum-asymmetric
Asymmetric cryptography: RSA, ECIES, key exchange
-
concrete
open-source FHE Compiler that simplifies the use of fully homomorphic encryption (FHE)
-
rust_mobile_secrets_vault
A secure, encrypted secrets vault for mobile-backend or embedded Rust services with versioning and key rotation
-
nuts-tool
A cmdline utility for the nuts container
-
loopring_sign
generates an eddsa signature for loopring
-
zk-paillier
Collection of Paillier cryptosystem zero knowledge proofs written in Rust
-
p47h-engine
Core engine for p47h governance - pure library, no WASM artifact
-
libfortress
Fortress library
-
lakers-shared
EDHOC crypto library constants crate
-
p12_q3
pure rust pkcs12 tool
-
paseto-v4
PASETO/PASERK V4 based on RustCrypto
-
signstar-sign
Signstar signing responses for Signstar signing requests
-
uzkge
App-specific PlonK with various gadgets & primitives
-
variant-ssl-sys
FFI bindings to OpenSSL variants such as BoringSSL / AWS-LC / Tongsuo
-
keyden
CLI and library for managing, rotating, and generating secret keys safely
-
vial-core
Crypto primitives for encrypting / decrypting for Vial
-
tycho-crypto
Cryptography primitives for Tycho node
-
vrf_fun
RFC 9381 compliant Verifiable Random Function (VRF) for secp256k1
-
certify
Generate client cert with CA cert
-
nrc-mls
A simplified interface to build secure messaging apps on nostr with MLS
-
smith-attestation
Supply chain attestation and cryptographic signing
-
mcircuit
tools for working with arithmetic circuits on generic fields
-
sunscreen_tfhe
contains the Sunscreen Torus FHE (TFHE) implementation
-
tongsuo-p832-src
Source of Tongsuo and logic to build it
-
vaultkey
A secure and customizable password generator library for Rust, designed to create strong, random passwords with various configuration options
-
mozilla/nss_sys
Firefox Application Services
-
lowmc-rs
LowMC block cipher implementation in Rust
-
voided-core
Core cryptographic primitives for the Voided encryption library
-
openmls_rust_crypto
A crypto backend for OpenMLS implementing openmls_traits using RustCrypto primitives
-
zero_vault_core
Fort-Knox level cryptographic security core for ZeroVault
-
isap-aead
Pure Rust implementation of ISAP v2 with Ascon and Keccak
-
ciphercore-adapters
An auxiliary crate to bridge CipherCore with its C bindings
-
animo-secure-env
secure-env is a wrapper library around the Android KeyStore and the iOS Security Framework for key creation and sign operations using the Secure Element
-
trezor-crypto
Rust bindings for the trezor crypto libraries
-
dstu8845
Strumok (DSTU 8845:2019)
-
cbc
Cipher Block Chaining (CBC) block cipher mode of operation
-
assemblyline-server
Server package for the Assemblyline malware analysis platform
-
he-ring
that provides fast implementations of rings commonly used in homomorphic encryption, built on feanor-math
-
extended-tea
XTEA (eXtended TEA), a block cipher designed to correct weaknesses in TEA
-
hiae
High-throughput Authenticated Encryption (HiAE) algorithm implementation
-
sta-rs
Distributed Secret-Sharing for Threshold Aggregation Reporting
-
ordinal_crypto
Moved to RGP crate
-
flypto
Simplified cryptography library
-
tink-awskms
AWS-KMS integration for Rust port of Google's Tink cryptography library
-
spki
X.509 Subject Public Key Info (RFC5280) describing public keys as well as their associated AlgorithmIdentifiers (i.e. OIDs)
-
classified_aes
implementing the classified crate for aes block modes
-
kestrel-crypto
Cryptography backend for Kestrel
-
eccoxide
elliptic curve cryptography (ECC) framework
-
pqc-ml-kem
Module-Lattice Key Encryption Mechanism (ML-KEM)
-
rustls-tpm-signer
A package that allows to use a TPM as a custom signer in rustls and tonic
-
tls-tester
A TLS 1.3 server for testing client implementations
-
vitaminc-aead
Authenticated Encryption with Associated Data (AEAD) primitives. Part of the Vitamin-C cryptographic suite.
-
trustflow-attestation-rs
TrustFlow Attestation Rust Library
-
x509cert
anypki fork of X.509 certificate parser and utility functionality
-
rc6_rs
RC6 implementation in Rust
-
pqc_kyber_edit
post-quantum Kyber KEM algorithm, with a fix for pqc_kyber KyberSlash
-
acme-micro
requesting certificates from an ACME provider (acme-lib fork)
-
avila-crypto
Criptografia nativa - substitui sha2, hmac, base64, argon2
-
stegosaurust
A steganography tool, written in rust
-
sqisign-core
Core types and traits for SQIsign post-quantum signature scheme
-
appbundle
creating and signing appbundles
-
pqcrypto-mldsa
Post-Quantum Signature Scheme mldsa
-
rsign2
A command-line tool to sign files and verify signatures
-
ripemd
Pure Rust implementation of the RIPEMD hash functions
-
ark-serialize-zypher
serializing types in the arkworks ecosystem
-
librash
Rust system library for cryptographic hashes
-
chacha_box_ietf
Sealed boxes using X25519 and ChaCha20-Poly1305 (RFC 8439): anonymously send unforgeable messages to a recipient given their public key
-
threatflux-hashing
High-performance async file hashing library supporting MD5, SHA256, SHA512, and BLAKE3
-
cosmian_sse_memories
Symmetric Searchable Encryption
-
wedpr_l_bulletproofs
A pure-Rust implementation of Bulletproofs using Ristretto
-
kyber-nz
A pure Rust, secure and robust implementation of FIPS 203 (ML-KEM)
-
agent-uri-attestation
PASETO v4.public attestation for agent-uri
-
sigma-protocols
SIGMA zero-knowledge proof protocols
-
kyber-pke
Kyber encryption library for arbitrary plaintext inputs. Mitigates kyberslash.
-
clia-rustls-mod
Rustls is a modern TLS library written in Rust. This is clia-mod using ring.
-
portal-client
Secure file transfer utility, written in Rust. The protocol utilizes SPAKE2 for key negotiation over an insecure channel, and ChaCha20Poly1305 Authenticated Encryption to encrypt…
-
ssh-agent
implementing an SSH agent
-
hmac-predicate
Tower predicate HMAC verification of query params
-
nuts-backend
A secure storage library
-
tsumiki
Core traits for X.509 certificate parsing and handling
-
mozilla/rc_crypto
Firefox Application Services
-
sfynx
General-purpose onion routing packet construction and processor based on Sphinx
-
bip32
hierarchical key derivation implemented in a generic, no_std-friendly manner. Supports deriving keys using the pure Rust k256 crate or the C library-backed secp256k1 crate
-
postio
Encrypted file sender/queue/receiver using an AWS S3 backend
-
ironcrypt
secure password hashing, RSA key generation, and managing the encryption and verification of passwords and binary files
-
rust_keylock
A password manager with goals to be Secure, Simple to use, Portable and Extensible
-
xs_ed25519-dalek
Fast and efficient ed25519 EdDSA key generations, signing, and verification in pure Rust
-
rustls-ring
A *ring*-based crypto provider for rustls
-
tor-hsclient
Arti's implementation of an onion service client
-
filecrypt
Encrypt and decrypt files using Fernet symmetric encryption
-
mc-oblivious-traits
Traits and interfaces for components related to Oblivious data structures
-
iron_secrets
Secrets management and encryption for Iron Cage
-
idevice-srp
Secure Remote Password (SRP) protocol implementation for the idevice crate
-
sequoia-ipc
Interprocess communication infrastructure for Sequoia
-
generic-schnorr
Schnorr signature implementation generic over the underlying group
-
ark-relations-zypher
rank-one constraint systems
-
envlp-core
AEAD encryption envelope library implementing the AAED wire format
-
bellare-micali
1-out-of-2 Oblivious Transfer Protocol
-
ucan-key-support
Ready to use SigningKey implementations for the ucan crate
-
lockman
A secure implementation for managing encrypted files
-
hashtree-rs
Rust bindings for the hashtree library
-
skip32
Fast 32-bit block cipher
-
rust-sign
Document signing library using BLAKE3 hashing and Ed25519 signatures
-
pkgar-keys
Key management tool/library for pkgar
-
keygate-jwt
Easy to use, secure, and opinionated JWT (JSON Web Tokens) implementation for Rust
-
tlock
Rust encryption library for practical time-lock encryption
-
rust-config-secrets
encrypting and decrypting secrets within configuration files
-
ssh-parser
Parser for the SSH protocol
-
monerochan-primitives
Monero-Chan, The Open-Source Privacy Platform (OSPP)
-
cthash
const fn implementation of hash functions including MD4, MD5, SHA-1, SHA-2, SHA-3, Keccak
-
lwbc
Compact implementations of small block ciphers (SPECK, SIMON, SIMECK)
-
fortresscrypto
Cryptography helper library for fortress
-
r255b3
Short Schnorr signatures using Ristretto255 and Blake3
-
safe_paillier_rust
Paillier cryptosystem with homomorphic properties, leveraging Rust's type system and safety guarantees
-
rust_notes_app
encrypted Notes App I developed as a project
-
ssh-libsodium
Straightforward bindings to libsodium
-
reverie-zk
An efficient implementation of the NIZKPoK outlined in KKW 2018
-
nostro2-signer
Nostro2 is a simple toolset for interacting with the Nostr protocol
-
s2n-quic-rustls
Internal crate used by s2n-quic
-
ratrod
A TCP / UDP tunneler that uses public / private key authentication with encryption
-
signed_note
c2sp.org/signed-note
-
secretik
Opinionated cli tool for encrypting secrets
-
simple_comms
communication protocol for AH
-
rc5-block
RC5 Block cipher with ECB, CBC and CTR operation modes
-
openpgp-ca
OpenPGP CA is a tool for managing and certifying OpenPGP keys
-
qs-tsp
RFC 3161 timestamping for Quantum-Sign (placeholder)
-
group-math
Group (mathematics) interface and implementations
-
hpke-rs-crypto
Traits and types for HPKE crypto backends
-
iroh-dht-experiment
Experimental DHT for iroh
-
hashtree-blossom
Blossom protocol client for hashtree - upload/download blobs with NIP-98 auth
-
simple-ecdh
ecdh implementation for rust
-
septid
Pure Rust implementation of the spiped protocol
-
rust-elgamal
A straightforward implementation of ElGamal homomorphic encryption using the ristretto255 elliptic curve group
-
zerocaf
A pure-Rust implementation of elliptic curve operations over the Doppio-curve
-
vrf-r255
A Verifiable Random Function built on the ristretto255 group
-
sidefuzz
Fuzzer to automatically find side-channel (timing) vulnerabilities
-
cryptraits
Cryptographic primitives traits collection
-
secure-vault
A secure memory vault that protects sensitive data from memory dumps and swap disk attacks
-
pw_hash
A collection of password hashing routines in pure Rust. Fork of pwhash by inejge.
-
rustls-pkcs11
ClientCertResolver for Hardware Security Modules using the PKCS11-Api
-
ark-ec-zypher
elliptic curves and pairings
-
lib2fas
Unofficial implementation of 2fas for Rust (as a library)
-
star-sharks
Shamir's Secret Sharing library for the STAR protocol
-
simple-encrypt
file encryption tool using AES-GCM
-
penis
Protocol
-
phasher
CLI program hashing passwords into PHC strings
-
verdict
A formally-verified X.509 certificate validator
-
aes-keywrap
AES Key Wrap construction (AES-KW, RFC 3394 / RFC 5649)
-
secrets-nats-kv
A secrets backend for wasmCloud that uses NATS as a key-value store
-
sharks
Fast, small and secure Shamir's Secret Sharing library crate
-
mkpass
Command line tool to generate passwords
-
frost-ed448
A Schnorr signature scheme over Ed448 that supports FROST
-
wechat_work_crypto
Pure Rust implementation of WeChat Work (企业微信) message encryption/decryption library
-
aead-gcm-stream
Pure Rust implementaion of AES GCM cipher for data streams
-
secr
secret manager
-
chalametpir_client
Client Implementation of ChalametPIR: Simple, Stateful, Single-Server Private Information Retrieval for Key-Value Databases
-
ramp-primes
Generating Large Prime and Composite Numbers using ramp with a simplistic interface
-
cosmian_kyber
post-quantum Kyber KEM algorithm. This is a fork of the
pqc_kybercrate -
plonky2_monolith
Use Monolith hash to generate Plonky2 proofs and to write Plonky2 circuits
-
enigma-protocol
High-level orchestrator that composes the Enigma crates into a production-ready messaging protocol
-
eternaltwin_password
Password implementation
-
aes_frast
lib for AES encryption and decryption, coded in pure safe Rust-lang
-
ssi-claims-core
Core types and traits for Verifiable Claims in the
ssilibrary -
webcryptobox
Convenient opiniated wrappers around OpenSSL to use WebCrypto compatible cryptography
-
hashery
A flexible and efficient async file hashing library supporting multiple hash algorithms (MD5, SHA1, SHA2, SHA3, BLAKE2, BLAKE3)
-
cryptirust
A flexible password generator that creates pronounceable passwords with adjustable entropy and custom patterns
-
cuid2-rs
Collision-resistant unique ids
-
libcrux-ecdh
Libcrux ECDH implementation
-
CryptTool
A versatile and efficient cryptography library implemented in Rust
-
amcl
The Apache Milagro Cryptographic Library (version 3)
-
sealed-env
Read and decrypt sealed environment variables
-
mpc-client
Noise protocol websocket relay client for MPC/TSS applications
-
hashes
cryptographic hash function algorithms
-
kryoptic-lib
A PKCS #11 software token written in Rust
-
zkinterface
An implementation of zkInterface
-
credx
Anonymous Credentials 2.0 implemention
-
sunscreen_bulletproofs
A pure-Rust implementation of Bulletproofs using Ristretto
-
jwt-rustcrypto
encoding, decoding, and validating JSON Web Tokens (JWTs) implemented using Rust Crypto libraries
-
rand_jitterentropy
rand implementation for jitterentropy-library in Rust
-
pkcs11-uri
PKCS #11 URI parser
-
chewie-crypto
Cryptographic primitives and secret management for Rust applications
-
plain-aes
Rijndael's cipher, commonly known as AES
-
pqcrypto-ntru-wasi
Post-Quantum Key-Encapsulation Mechanism ntru
-
cooltest
Randomness testing tool
-
hasher
Package hasher provides a Hasher trait
-
bcrypt-no-getrandom
Easily hash and verify passwords using bcrypt without getrandom or zeroize, providing near-complete functionality without alloc or std
-
mb_rand
Safe Rust bindings to OpenBSD's arc4random functions
-
maybenot-machines
A collection of useful Maybenot machines (e.g., as parts of defenses)
-
chksum-sha2-384
SHA-2 384 hash function with a straightforward interface for computing digests of bytes, files, directories, and more
-
sha2-compress
SHA2 compress function
-
sentc-light
Sentc light version with user and group management
-
oqs-sys
Bindings to liboqs
-
pqcrypto-std
Standardized quantum-resistant cryptographic primitives
-
semaphore-rs-poseidon
Rust support library for Semaphore
-
blake-hash
BLAKE hash functions
-
aead-io
A wrapper around Write/Read interfaces with AEAD
-
quickcert
For generating test key/certificate pairs
-
paillier
A pure-Rust implementation of the Paillier encryption scheme
-
crypto-paillier
TBD
-
runar-keys
Standards-compliant X.509 certificates and ECDSA P-256 key management for Runar
-
revery
💭 Conversations that never happened
-
wolf-crypto
Safe and thin API for wolfSSL's wolfcrypt
-
acmev02
ACME client library to issue, renew and revoke TLS certificates
-
lsx
A pure, safe Rust implementation of the Twofish block cipher and the SHA-256 cryptographic hash function
-
mls-rs-crypto-webcrypto
SubtleCrypto based CryptoProvider for supporting mls-rs in a browser
-
quasor
A high-security AEAD based on a Duplex Sponge construction with SHAKE256, Argon2id, and BLAKE3
-
signature_bls
The Ockam BLS signature impementation
-
rpgpie-sop
Experimental SOP implementation based on rpgpie
-
rsop-oct
SOP CLI tool for OpenPGP card devices based on rPGP
-
eme-mode
EME block cipher mode of operation
-
nethsm-config
working with application configuration files for Nitrokey NetHSM devices
-
i2p_snow
A pure-rust implementation of the Noise Protocol Framework, with I2P Noise extensions
-
fn-dsa-vrfy
FN-DSA signature scheme
-
secapi-sys
FFI bindings to SecAPI
-
proxy-signatures
Proxy signatures with delegation by warrant
-
schnorr
Signatures
-
libhydrogen
A modern and easy to use cryptography library
-
rs_sha1
rs_sha1is a Rust implementation of the SHA-1 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA-1 hashing functionality in a standalone manner… -
test_findex_server
Run a test Findex server for testing purposes
-
lockboxer
Configurable fork of Lockbox encryption library
-
picnic-sys
Declarations for using Picnic's shared library
-
curve25519-entropic
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
freebird-crypto
Cryptographic primitives for the Freebird privacy-preserving authentication system, including VOPRF implementation
-
tweetnacl-sys
tweetnacl & FFI bindings to it
-
ysfed
encrypting and decrypting files using a password
-
concrete-core
Concrete is a fully homomorphic encryption (FHE) library that implements Zama's variant of TFHE
-
sthash
A very fast cryptographic hash function for large data
-
crabcrypt
A work in progress cryptographic library that currently supports hashing
-
arcanum-verify
Formal verification and timing analysis tools for the Arcanum cryptographic engine
-
remolab-passgen
A secure, deterministic password generator with both CLI and interactive modes
-
Cupcake
lattice-based additive homomorphic encryption scheme
-
redoubt-secret
High-level Secret wrapper with automatic zeroization
-
fash
cross-platform GUI-app for calculating hashes of files and comparing them to supplied hashes
-
kcr_cert_manager_io
Kubernetes Custom Resource Bindings
-
tink-signature
Signature functionality for Rust port of Google's Tink cryptography library
-
msm-webgpu
Multi-Scalar Multiplication (MSM) implementation for WebGPU
-
strl1_librust_crypto
Support for crypto operations
-
lockur
cli tool to make file encryption a breeze
-
apfsds-crypto
Cryptographic primitives for APFSDS (X25519, AES-GCM, Ed25519)
-
sha-to-hex
function to encode string using secret and return hex string
-
sl-paillier
Paillier encryption
-
ockam_api
Ockam's request-response API
-
hpke_pq
Fork of hpke that adds PQ modes
-
cosmian_ffi_utils
Cosmian FFI tools library
-
oqs-safe
Stable, minimal, safe Rust wrapper over libOQS for PQ KEM/SIG (ML-KEM/Dilithium) with explicit mock-only dev mode
-
zeppelin_core
that implements a stream cipher based on Balloon hashing
-
QCard
QWERTYCards for the everyman developer
-
openmls_libcrux_crypto
A crypto backend for OpenMLS based on libcrux implementing openmls_traits
-
gpgme-sys
Raw bindings for gpgme
-
cl-noise-protocol
Noise Protocol Framework implementation
-
qs-transparency
Transparency log support for Quantum-Sign (placeholder)
-
neo-crypto
An encryption algorithm library written in Rust
-
tectonic-fn-dsa
FN-DSA signature scheme
-
ecdsa_verify
ECDSA signature verification
-
bfv12
A pure-Rust implementation of B/FV homomorphic encryption
-
test-x25519-dalek
X25519 elliptic curve Diffie-Hellman key exchange in pure-Rust, using curve25519-dalek
-
lit-p384
Pure Rust implementation of the NIST P-384 (a.k.a. secp384r1) elliptic curve as defined in SP 800-186 with support for ECDH, ECDSA signing/verification, and general purpose curve arithmetic support.
-
fuzzytags
a probabilistic cryptographic structure for metadata resistant tagging
-
argonautica
Idiomatic Argon2 password hashing for Rust
-
poly1305
universal hash function and message authentication code
-
sequoia-keystore
Sequoia's private key store server
-
sop
Rust Interface for the Stateless OpenPGP Interface
-
certkit
A pure Rust library for X.509 certificate management, creation, and validation, supporting RSA, ECDSA, and Ed25519 keys, with no OpenSSL or ring dependencies
-
pqcrypto-mlkem
Post-Quantum Key-Encapsulation Mechanism mlkem
-
ipcrypt2
format-preserving encryption of IP addresses. Supports both deterministic and non-deterministic encryption modes
-
QuantCrypt
post-quantum cryptography and PKI
-
hash-gen
A command-line tool for generating cryptographic hashes (MD5, SHA1, SHA-256, SHA-512)
-
aes256ctr_poly1305aes
Pure Rust implementation of the AES256CTR-Poly1305AES Authenticated Encryption with optional architecture-specific hardware acceleration
-
fips203-ffi
C shared library exposing FIPS 203: Module-Lattice-Based Key-Encapsulation Mechanism
-
vitaminc-random
Secure Random Number Generation. Part of the Vitamin-C cryptographic suite.
-
vk-separate
A CLI tool to remove Committer key from Verification key in Nova protocol
-
kemeleon
encoding algorithms for obfuscating ML-KEM handshake elements
-
jws
JSON Web Signature for Rust
-
secret_integers
Wrapping around Rust's integers to allow only constant-time operations
-
rsha
A hashing library implementation in rust
-
centipede
A scheme for instantiating KMS's with recovery
-
mbedtls-platform-support
support library for the
mbedtlscrate, providing platform and target specific implementations of all necessary functions. By separating this logic into a separate crate, multiple… -
wasi-crypto
Experimental implementation of the WASI cryptography APIs
-
str0m-rust-crypto
Pure Rust crypto backend for str0m WebRTC
-
jwt-next
JSON Web Token library
-
libcrux-poly1305
Formally verified Poly1305 MAC library
-
babyjubjub-rs
BabyJubJub elliptic curve implementation
-
talktosc
talk to smartcards for OpenPGP operations
-
ockam_vault_aws
An AWS KMS Ockam Vault implementation
-
ilari_l/btls
Relatively bare-bones TLS (Transport Layer Security) implementation
-
rand_hash
Cryptographically-secure pseudo-random generator based on cryptographic hash function
-
rs_sha3_256
rs_sha3_256is a Rust implementation of the SHA3-256 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA3-256 hashing functionality in a standalone manner… -
randompass
🔑 A simple static password generator
-
tokio-tongsuo
SSL streams for Tokio backed by Tongsuo/OpenSSL
-
kyber-rs
A toolbox of advanced cryptographic primitives for Rust
-
sha3_ce
SHA-3 (Keccak) hash function
-
elliptic-curve
General purpose Elliptic Curve Cryptography (ECC) support, including types and traits for representing various elliptic curve forms, scalars, points, and public/secret keys composed thereof
-
snowv
The SNOW-V stream cipher
-
wingedcap
sdk
-
cloudproof_fpe
Cosmian Cloudproof FPE library
-
sec-store
encrypted storage
-
kerberos_asn1
Parse/Build Kerberos ASN1 DER To/From Rust structs
-
burrito-secrets
storing secrets in BSON format
-
x25519-dalek-ng
fork x25519-dalek , update rand_core
-
orbs-tee-protocol
ORBS TEE Protocol - Shared message types for host-enclave communication
-
sunscreen_gpu_runtime
GPU support for Sunscreen's Torus FHE (TFHE) implementation
-
monerochan-curves
Monero-Chan, The Open-Source Privacy Platform (OSPP)
-
ockam_node
Ockam [Ockam][main-ockam-crate-link] Node and is intended for use by crates that provide features and add-ons to the main [Ockam][main-ockam-crate-link] library. The main [Ockam][main-ockam-crate-link]…
-
arcanum-symmetric
Symmetric encryption algorithms for the Arcanum cryptographic engine
-
ap_kcp
AP-KCP Protocol Library
-
aead
Traits for Authenticated Encryption with Associated Data (AEAD) algorithms, such as AES-GCM as ChaCha20Poly1305, which provide a high-level API
-
paseto-v4-sodium
PASETO/PASERK V4 based on libsodium
-
backseat-signed
Authenticate cryptographic links from a signed derivate to its source input
-
seedstore-tool
Store a secret (such as a private key) in an encrypted file
-
static-dh-ecdh
Pure Rust implementations of static Diffie-Hellman and elliptic curve Diffie-Hellman key-exchange
-
tiny-curve
Small-order elliptic curves for testing
-
llm-config-crypto
Cryptography primitives for LLM Config Manager - AES-256-GCM encryption, key derivation, and secure key management
-
kylix-slh-dsa
SLH-DSA (FIPS 205) implementation for the Kylix post-quantum cryptography library
-
cosmian_fpe
Format-preserving encryption
-
bls_amcl
BLS signatures. 2 variations. Multi-signature, Threshold signature, batch verification support
-
sopass
command line password manager using SOP
-
libcrux-psq
Libcrux Pre-Shared post-Quantum key establishement protocol
-
arcturus
zero-knowledge proofs for confidential transactions
-
rust-aes-proofs
Various AES-based Proof-of-Replication and Proof-of-Time implementations and benchmarks
-
stormdl-integrity
BLAKE3 incremental hashing and content verification
-
tfhe-cuda-backend
Cuda implementation of TFHE-rs primitives
-
passers
A secure encrypted data manager
-
fdh
Full Domain Hash (FDH) for extending the size of a hash digest to an arbitrary length
-
tdln-proof
TDLN — proof bundle (deterministic translation proof + optional DV25 signatures)
-
nonce-extension
Derive-Key-AES and Double-Nonce-Derive-Key-AES nonce extension mechanisms (DNDK-GCM)
-
cosmian_abe_gpsw
ABE GPSW scheme for BLS pairing implemented in rust
-
frost-secp256k1-tr-unofficial
A Schnorr signature scheme over the secp256k1 curve that supports FROST and Taproot
-
semaphore-rs-keccak
Rust support library for Semaphore
-
lit-frost-schnorrkel25519
A Schnorr signature scheme over the prime-order Ristretto group that supports FROST
-
blake3_merkle
blake3 merkle tree
-
rusterpassword
Master Password algorithm
-
curve25519-dalek-organism
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
threefish-cipher
Threefish block cipher
-
privacypass
Privacy Pass
-
polyval
GHASH-like universal hash over GF(2^128) useful for constructing a Message Authentication Code (MAC)
-
carbon-curve25519-dalek
A pure-Rust implementation of group operations on ristretto255 and Curve25519
-
osrandom
An interface to the OS' secure random number generator
-
chksum-sha2-512
SHA-2 512 hash function with a straightforward interface for computing digests of bytes, files, directories, and more
-
age-plugin-hpke
HPKE plugin for age clients
-
hips
Manage secrets alongside your code
-
libpaillier
The Paillier cryptosystem is a public key crytosystem based on composite degree residuosity classes. Paillier ciphertexts are homorphic in that the can be added
-
scram-2
A SCRAM provider library
-
block-buffer
Buffer types for block processing of data
-
det-keygen
Derivation of ECDSA private keys from arbitrary seeds, using FIPS 186-5 methods only
-
jh-x86_64
Portable JH with optimizations for x86-64 cpus
-
dusk-hades
Hades252 permutation algorithm over the Bls12-381 Scalar field
-
atm0s-reverse-proxy-protocol-ed25519
Protocol implement with Ed25519 for atm0s-reverse proxy cluster
-
ockam_transport_udp
UDP Transport for the Ockam Routing Protocol
-
rs_keccak_nbits
rs_keccak_nbitsis a Rust implementation of the variable-output-length Keccak cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides Keccak hashing functionality in a standalone… -
static_ct_api
c2sp.org/static-ct-api
-
sqisign-lvl1
SQIsign post-quantum signature scheme - NIST Security Level 1
-
core-identity
Identity management and DID resolution for P47H
-
mls-rs-crypto-rustcrypto
RustCrypto based CryptoProvider for mls-rs
-
sgx_ucrypto
Rust SGX SDK provides the ability to write Intel SGX applications in Rust Programming Language
-
pixel-sig
Pixel: Forward secure Multi-signatures
-
test-ed25519-dalek
Fast and efficient ed25519 EdDSA key generations, signing, and verification in pure Rust
-
tor-relay-crypto
Cryptography types and helpers for a Tor relay
-
cryptographic_primitives
that provides cryptographic primitives
-
c255b3
Schorr signatures based Curve25519 and Blake3
-
cmail-rpgp
OpenPGP implementation in Rust for Cmail
-
af-pqc
Production-ready post-quantum cryptographic framework with hybrid Dilithium3 + Ed25519 signatures
-
pgp-cleartext
PGP cleartext framework implementation
-
yage
manage encrypted secrets in YAML files with age encryption
-
kcr_kms_services_k8s_aws
Kubernetes Custom Resource Bindings
-
edcert
can be used to sign and verify content based on Ed25519
-
pwned
Have I Been Pwned checker
-
novault
vaultless password management cli
-
iroh-localops
Iroh specific process management
-
const-ciphers
Ciphers implemented as constant expressions in Rust for use in payload generation. Not for regular use.
-
digestify
Verify a file against a provided digest/hash/checksum
-
wasi-crypto-guest
Example WASI-Crypto guest bindings for Rust
-
openpgp-cert-d
Shared OpenPGP Certificate Directory
-
digest-hash
Cryptography-grade data structure hashing
-
dcrypt-common
Common implementations and shared functionality for the dcrypt library
-
portal-relay
The relay for Portal, a secure file transfer protocol
-
rust-auth-utils
port of @better-auth/utils
-
fermah-config
Fermah configuration profiles utility
-
blahaj
Fast, small, and secure Shamir's Secret Sharing
-
anubis-core
Common functions used across the anubis crates (hybrid PQC support)
-
lib25519-sys
Rust Bindings for lib25519
-
frost-ed25519-blake2b
A Schnorr signature scheme over Ed25519 that supports FROST
-
fn-dsa-comm
FN-DSA signature scheme
-
oberon
multi-factor zero-knowledge capable token without requiring email, SMS, or authenticator apps. The proof of token validity is only 96 bytes while the token itself is only 48 bytes
-
kcr_kafka_services_k8s_aws
Kubernetes Custom Resource Bindings
-
sequoia-sop
Stateless OpenPGP Interface using Sequoia
-
etsi014-client
ETSI GS QKD 014 client library
-
paseto-v2
PASETO/PASERK V2 based on RustCrypto
-
streamdigest
Async file hashing and digest calculation with progress reporting
-
zerotwo
authentication protocol with wasm bindings
-
tsumiki-pkcs
PKCS standards (PKCS#1, PKCS#8, PKCS#9, SEC1) for cryptographic key handling
-
finneo_crypto
Cross-platform AES-256-GCM encryption with Argon2id key derivation used in Finneo
-
libcrux-curve25519
Formally verified curve25519 ECDH library
-
sumatradigest
A Memory-Safe Hash Digest Tool Written In Rust
-
rustls-post-quantum
Experimental support for post-quantum key exchange in rustls
-
p521
Pure Rust implementation of the NIST P-521 (a.k.a. secp521r1) elliptic curve as defined in SP 800-186
-
cyfs-sha2
Pure Rust implementation of the SHA-2 hash function family including SHA-224, SHA-256, SHA-384, and SHA-512
-
rc4ok
Lightweight High-Performance Cryptographically Strong Random Number Generator
-
x509-parser
Parser for the X.509 v3 format (RFC 5280 certificates)
-
clevis
A preliminary Rust implementation of the clevis protocol
-
acme-v2
requesting certificates from an ACME V2 provider
-
yafo
file obfuscator
-
getrandom_or_panic
Implements a RngCore which panics unless getrandom exists
-
primeorder
Pure Rust implementation of complete addition formulas for prime order elliptic curves (Renes-Costello-Batina 2015). Generic over field elements and curve equation coefficients
-
himmelblau_kerbeiros
Kerberos client library
-
dcap-provider
DCAP quote provider using the Intel Trusted Services API as a backend. This crate compiles into
libdcap_quoteprov.so, which is needed as a backend when usinglibsgx_dcap_ql. To use this library… -
omegaupload
CLI tool
-
envelopers
A very simple envelope encryption library using aes-gcm
-
safe-oqs
interface to Open-Quantum-Safe's liboqs
-
sshd-openpgp-auth
Command-line tool for creating and managing OpenPGP based trust anchors for SSH host keys
-
valinor-identity
Cryptographic identity and key management for MudWorld platform
-
ever-crypto
providing easy-to-use APIs for XChaCha20Poly1305 and Kyber1024 post-quantum cryptography at the same time. Based on chacha20poly1305 and pqcrypto-kyber.
-
secret_handshake
secret-handshake protocol
-
semaphore-rs-proof
Rust support library for Semaphore
-
cms
Pure Rust implementation of the Cryptographic Message Syntax (CMS) as described in RFC 5652 and RFC 3274
-
secured
A lightweight, easy-to-use Rust package for file encryption and decryption, suitable for both CLI and library integration in Rust applications
-
chksum-sha2-224
SHA-2 224 hash function with a straightforward interface for computing digests of bytes, files, directories, and more
-
c2pa-crypto
Cryptography internals for c2pa-rs crate
-
crypto_api_osrandom
An interface to the OS’ secure random number generator for
crypto_api -
nab138_srp
Secure Remote Password (SRP) protocol implementation
-
dasher
reducing a whole directory tree to a single hash digest
-
rs_sha384
rs_sha384is a Rust implementation of the SHA-384 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA-384 hashing functionality in a standalone manner… -
blake3_aead
an experimental authenticated cipher
-
des
Triple DES (3DES, TDES) block ciphers implementation
-
libsignal-protocol-syft
Vendored libsignal protocol crate for syft
-
clipass_rs
masked CLI input reading
-
sentc-crypto-fips-keys
Fips compliant key impl with openssl
-
vitaminc-async-traits
Vitamin C async traits
-
obfustr
compile-time obfuscation of string literals (also byte and C strings)
-
votate-ed25519-dalek
Fast and efficient ed25519 EdDSA key generations, signing, and verification in pure Rust
-
multimixer-128
Universal Keyed Hashing Based on Integer Multiplication
-
sequoia-gpg-agent
interacting with GnuPG's gpg-agent
-
keynesis
General purpose key management and associated cryptographic protocols
-
deterministic-pgp-keys
Generate PGP keys from a 12 word seed phrase
-
zkp
A toolkit for auto-generated implementations of Schnorr proofs
-
polysig-server
Relay and meeting room servers for the polysig library
-
ed25519
Edwards Digital Signature Algorithm (EdDSA) over Curve25519 (as specified in RFC 8032) support library providing signature type definitions and PKCS#8 private key decoding/encoding support
-
ssh-to-age
Convert OpenSSH Ed25519 keys to age encryption keys
-
age-plugin-openpgp-card
Age plugin for using ed25519 on OpenPGP Card devices (Yubikeys, Nitrokeys)
-
best-encrypt
A top-level secrets orchestrator. Not just another .env tool — this one encrypts, locks, and sets you up for secure local and team dev.
-
pqcrypto-classicmceliece
Post-Quantum Key-Encapsulation Mechanism classicmceliece
-
noise-aws-lc-rs
aws-lc-rs wrappers for nosie-protocol
-
chksum-sha2-256
SHA-2 256 hash function with a straightforward interface for computing digests of bytes, files, directories, and more
-
native-pkcs11-core
Shared cross-platform PKCS#11 module logic for native-pkcs11
-
ec-generic
A generic use elliptic curve library
-
capy_kem
ML-KEM with MAL-BIND Security
-
networking
secure RSA + AES network implementations in a peer to peer enabled manner
-
picnic-bindings
Bindings for the Picnic digital signature scheme
-
tink-gcpkms
AWS-KMS integration for Rust port of Google's Tink cryptography library
-
easy_password
Easy password hashing (includes bcrypt)
-
sn_bulletproofs
A pure-Rust implementation of Bulletproofs using Ristretto
-
kcr_gateway_networking_x_k8s_io
Kubernetes Custom Resource Bindings
-
semaphore-rs-depth-config
Rust support library for Semaphore
-
concrete-boolean
Homomorphic Boolean circuit interface for the concrete FHE library
-
linux-crng-ioctl
wrapper for Linux kernel kernel RNG ioctls
-
ronkathon
Cryptography Educational Foundations
-
base16ct
Pure Rust implementation of Base16 a.k.a hexadecimal (RFC 4648) which avoids any usages of data-dependent branches/LUTs and thereby provides portable "best effort" constant-time operation…
-
kcr_trust_cert_manager_io
Kubernetes Custom Resource Bindings
-
byte-aes
wrapper around the popular aes crate. The goal is to perform Encrypt and Decrypt operations using the Advanced Encryption Standard 256 bit Algorithm conveninent to use instead of use Low level functions of the aes crate
-
encrypto_aes
stunning-encrypto is cross platform end-to-end encryption dependency. And this is AES extension of the same
-
generic-ec-zkp
ZK-proofs and primitives built on top of
generic-eccrate -
lit-frost-ristretto255
A Schnorr signature scheme over the prime-order Ristretto group that supports FROST
-
tfhe-csprng
Cryptographically Secure PRNG used in the TFHE-rs library
-
sqisign-lvl3
SQIsign post-quantum signature scheme - NIST Security Level 3
-
lit-sdk
Low level SDK for interfacing with Lit Protocol. Clients should use lit-rust-sdk instead.
-
groestl-aesni
Hardware-accelerated Groestl hash for x86-64 systems with AES extensions
-
clap-digest
clap and digest integration
-
rustls-pemfile
Basic .pem file parser for keys and certificates
-
twine_spec_rng
Twine payload subspec for random number generation
-
ibs
Identity-Based Signature schemes
-
file-hasher
A fast and efficient CLI tool for calculating SHA256, SHA1, and MD5 hashes of files with progress indication and colored output
-
zk-paillier-lsc
Collection of Paillier cryptosystem zero knowledge proofs written in Rust
-
cs_mwc-libp2p-noise
Cryptographic handshake protocol using the noise framework
-
wasm-crypto-box
Browser-safe WebAssembly wrapper for ed25519 signing and verification
-
qs-policy
Policy engine for Quantum-Sign - The Digital Notary Stamp That Even Quantum Computers Can't Forge
-
sha-rs
project is a pure Rust implementation of three widely used cryptographic hash algorithms: SHA-1, SHA-256, and SHA-512. These algorithms are implemented from scratch, without relying…
-
fcp_cryptoauth
Futuristic Connectivity Protocol's CryptoAuth layer (cryptographic authentication and encryption over unreliable channels)
-
literate-crypto
Literate Cryptography by 12hbender
-
sgx_crypto_helper
Rust SGX SDK provides the ability to write Intel SGX applications in Rust Programming Language
-
tokio-rustls
Asynchronous TLS/SSL streams for Tokio using Rustls
-
paseto-v3
PASETO/PASERK V3 based on RustCrypto
-
ockam_transport_tcp
TCP Transport for the Ockam Routing Protocol
-
unknown_order
working with finite fields where the modulus is of unknown order, typtical for RSA, Paillier, Hyperelliptic curves, etc
-
cyphergraphy
Implementation-independent abstractions for main cryptographic algorithms (part of cyphernet suite)
-
paseto_cli
A command-line tool for generating and validating PASETO v4.local tokens with custom claims and multiple output formats
-
pvss
Publicly verifiable secret sharing implementations
-
zks_crypt
Cryptographic primitives for ZKS Protocol - post-quantum secure encryption
-
fi-key-resolver
Get ed25519 public key from did id
-
ctutils
Constant-time utility library with selection and equality testing support targeting cryptographic applications. Supports
const fnwhere appropriate. Built on thecmovcrate which provides… -
cosmian_pkcs11_sys
Generated bindings for pkcs11.h. Useful for building PKCS#11 modules in rust.
-
lockit
Password protect your files with strong encryption
-
ed448-goldilocks
A pure-Rust implementation of Ed448 and Curve448 and Decaf. This crate also includes signing and verifying of Ed448 signatures
-
salsa20
Pure Rust implementation of the Salsa20 stream cipher
-
just-argon2
Bindings to the argon2 C library
-
ockam_identity
Ockam is a library for building devices that communicate securely, privately and trustfully with cloud services and other devices
-
jwt-simple-no-nbf-fork
Easy to use, secure, non opinionated JWT (JSON Web Tokens) implementation for Rust
-
chacha20-poly1305-stream
A pure Rust implementation of the ChaCha20-Poly1305 AEAD from RFC 7539
-
mux_circuits
contains the Sunscreen Torus FHE (TFHE) implementation
-
wot-network-rpgpie
Transform OpenPGP certificate sets into a wot-network structure
-
vpgp
OpenPGP implementation in Rust by VGISC Labs
-
const_aes
Encrypt data using aes 128 at compile time
-
rudric
CLI tool for managing secrets in a secure way
-
dlog-sigma-primitives
Collection of cryptographic primitives built on top of Elliptic Curve groups, with a focus on Zero-Knowledge Proofs
-
ubl-crypto
UBL crypto helpers: SK wrapper, KID, HMAC, did:key, batch verify for Universal Business Ledger
-
frodo-kem-rs
A pure rust implementation of FrodoKEM and eFrodoKEM
-
eczkp
Zero Knowledge Proof protocols using elliptic curves
-
bulletproofs-bls
A pure-Rust implementation of Bulletproofs
-
primefield
Generic implementation of prime fields built on
crypto-bigint, along with macros for writing field element newtypes including ones with formally verified arithmetic usingfiat-crypto -
feanor-math-hexl
wrapper for the Intel HEXL library
-
seekable-stream-cipher
Seekable stream cipher and encryption/decryption
-
sure25
hashing algorithm
-
rs_sha3_224
rs_sha3_224is a Rust implementation of the SHA3-224 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA3-224 hashing functionality in a standalone manner… -
rfc6979
Pure Rust implementation of RFC6979: Deterministic Usage of the Digital Signature Algorithm (DSA) and Elliptic Curve Digital Signature Algorithm (ECDSA)
-
monerochan-verifier
Verifier for MONEROCHAN Groth16 and Plonk proofs
-
rcrypto
cryptography library
-
yubikey
Pure Rust cross-platform host-side driver for YubiKey devices from Yubico with support for hardware-backed public-key decryption and digital signatures using the Personal Identity Verification (PIV)…
-
shamir_file_secret_sharing
Shamir secret sharing for use with files
-
libcrux-digest
Digest library
-
getmyconfig
Read encrypted config and secrets from remote storage
-
xoodyak
/ Xoodoo - A versatile cryptographic scheme that can be used for hashing, encryption, MAC computation and authenticated encryption
-
vitaminc-kms
AWS KMS implementation for Vitamin C traits
-
cose-rust-plus
COSE Rust implementation
-
ecies-ed25519
ECIES on Twisted Edwards Curve25519 using AES-GCM and HKDF-SHA256
-
pake-cpace
CPace, a balanced PAKE
-
zks_types
Core types and data structures for ZKS Protocol
-
nostr-types
Types for nostr protocol handling
-
tsumiki-x509
X.509 certificate parsing and handling with full v3 extensions support
-
pqcrypto-kyber
Post-Quantum Key-Encapsulation Mechanism kyber
-
sequoia-net
Network services for OpenPGP
-
cryptojs_rust
CryptoJS encryption/decryption functionality
-
semaphore-rs-ark-zkey
Rust support library for Semaphore
-
cmac
Generic implementation of Cipher-based Message Authentication Code
-
block-padding
Padding and unpadding of messages divided into blocks
-
hard
Security hardened buffers for Rust based on libsodium
-
ssh-cipher
Pure Rust implementation of SSH symmetric encryption including support for the modern aes128-gcm@openssh.com/aes256-gcm@openssh.com and chacha20-poly1305@openssh.com algorithms as well as legacy support for older…
-
polysig-relay
Relay server for the polysig library
-
psa-crypto-sys
Wrapper around the PSA Cryptography API
-
bulletproof-kzen
Bulletproofs and Bulletproofs+ aggregated range proofs with multi-exponent verification
-
libjitterentropy-sys
interface to jitterentropy-library (ffi-bindings)
-
cryptohelpers
Collection of helpers and simplifying functions for cryptography things
-
miracl_amcl
The Apache Milagro Cryptographic Library (version 3.2)
-
fluxencrypt-async
Async/await support for FluxEncrypt encryption SDK
-
ark-ed-on-bn254-zypher
A Twisted Edwards curve defined over the scalar field of the BN254 curve
-
ecfft
Elliptic curve fast fourier transform for all prime fields
-
crev-ed25519-dalek
Fork of ed25519-dalek for
crev(until mainline is usable for us again) -
sequoia-keystore-softkeys
A soft key (in-memory key) backend for Sequoia's private key store
-
ockam_abac
Attribute based authorization control
-
ecies-ed25519-morus
Experimental Integrated Encryption Scheme on Ed25519 using MORUS-1280-128 and Blake3
-
p384
Pure Rust implementation of the NIST P-384 (a.k.a. secp384r1) elliptic curve as defined in SP 800-186 with support for ECDH, ECDSA signing/verification, and general purpose curve arithmetic support.
-
simple_crypt
high level library to encrypt and decrypt texts, files, folders and any data with it
-
chksum-sha2
SHA-2 hash functions with a straightforward interface for computing digests of bytes, files, directories, and more
-
aes-kw
NIST 800-38F AES Key Wrap (KW) and Key Wrap with Padding (KWP) modes
-
tectonic-oqs-sys
Bindings to liboqs
-
sunscreen_fhe_program
data format for Sunscreen FHE programs
-
libcrux
The Formally Verified Cryptography Library
-
crabguard
A cli tool for end-to-end encryption for s3 storage
-
spake2
password-authenticated key-exchange algorithm
-
softaes
Fast software implementation of the AES round function in pure Rust
-
vitaminc-traits
Vitamin C traits
-
himitsu
An encrypted CLI tool for managing secrets on your machine
-
aes-siv
Pure Rust implementation of the AES-SIV Misuse-Resistant Authenticated Encryption Cipher (RFC 5297) with optional architecture-specific hardware acceleration
-
askrypt
Password manager without master password
-
mls-rs-core
Core components and traits for mls-rs
-
plonkup
A pure-Rust implementation of the PLONK ZK-Proof algorithm
-
lit-frost-ed25519
A Schnorr signature scheme over Ed25519 that supports FROST
-
keylock
A CLI application starter template
-
rs_shake128
rs_shake128is a Rust implementation of the SHAKE128 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHAKE128 hashing functionality in a standalone manner… -
aranya-aqc-util
Aranya QUIC Channels
-
authenticode-parser
Bindings to the authenticode-parser library
-
krb5-sys
Bindings to the krb5 library, incomplete state
-
bbs
The BBS+ signature scheme
-
p384_rs
NIST P-384 (secp384r1), with correct arithmetic
-
rs_sha256
rs_sha256is a Rust implementation of the SHA-256 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA-256 hashing functionality in a standalone manner… -
ark-ed-on-bls12-381-zypher
A Twisted Edwards curve defined over the scalar field of the BLS12-381 curve
-
bronco
Authenticated and encrypted API tokens
-
bcrypt-pbkdf
password-based key derivation function
-
paseto-v1
PASETO/PASERK V1 based on RustCrypto
-
monerochan-core-machine
Monero-Chan, The Open-Source Privacy Platform (OSPP)
-
md-5
MD5 hash function
-
small-acme
Small pure-Rust ACME client
-
envn
The Premium Secrets and .env Manager CLI
-
tsumiki-pem
PEM format parser and encoder for X.509 certificates
-
lit-frost-rerandomized
Types and traits to support implementing a re-randomized variant of Flexible Round-Optimized Schnorr Threshold signature schemes (FROST)
-
tink-core
Core crate for Rust port of Google's Tink cryptography library
-
gcrypt
Libgcrypt bindings for Rust
-
pkcs1
Pure Rust implementation of Public-Key Cryptography Standards (PKCS) #1: RSA Cryptography Specifications Version 2.2 (RFC 8017)
-
lit-frost-decaf377
A Schnorr signature scheme over the Decaf377 curve that supports FROST
-
nettle
Rust bindings for the Nettle cryptographic library
-
chksum-reader
A convenient interface for calculating hash digests on the fly while reading data from a reader
-
concrete-commons
Common tools for the concrete FHE library
-
dsa
Pure Rust implementation of the Digital Signature Algorithm (DSA) as specified in FIPS 186-4 (Digital Signature Standard), providing RFC6979 deterministic signatures as well as support for added entropy
-
polysig-client
Client for the polysig library
-
chksum-sha1
SHA-1 hash function with a straightforward interface for computing digests of bytes, files, directories, and more
-
rs_shake256
rs_shake256is a Rust implementation of the SHAKE256 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHAKE256 hashing functionality in a standalone manner… -
pqcrypto-frodo
Post-Quantum Key-Encapsulation Mechanism frodo
-
hyperacme
Async library for requesting certificates from an ACME provider (acme-micro fork)
-
redoubt-vault
Encrypted vault with field-level access and automatic zeroization
-
nostr_rust
Nostr protocol
-
pqcrypto-rainbow
Post-Quantum Signature Scheme rainbow
-
tpm-box
Temporary secret encryption using TPM
-
libpass
interacting with pass managed data
-
pasta-tokens
Platform Agnostic SEcurity TOkens (PASETO) is a secure alternative to JOSE/JWT
-
rs_sha3_384
rs_sha3_384is a Rust implementation of the SHA3-384 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA3-384 hashing functionality in a standalone manner… -
openssl-errors
Custom error library support for the openssl crate
-
blowfish
block cipher
-
ssh-encoding
Pure Rust implementation of SSH data type decoders/encoders as described in RFC4251
-
seal_fhe
contains Rust bindings for Microsoft's SEAL Fully Homomorphic Encryption (FHE) library
-
rs_n_bit_words
package serves as an essential building block within the
rs_shieldcryptographic library. It is focused on providing foundational functionality and infrastructure for various cryptographic operations within the… -
pep_engine_sequoia_backend
p≡p Engine's cryptotech interface using Sequoia
-
libcrux-rsa
Formally verified RSA signature library
-
sequoia-git
managing and enforcing a commit signing policy
-
chksum-writer
A convenient interface for calculating hash digests on the fly while writing data to a writer
-
ascon-aead
authenticated encryption schemes Ascon-AEAD128
-
ark-groth16-zypher
Groth 2016 zkSNARK proof system
-
sha1-checked
SHA-1 hash function with collision detection
-
ct-aes
Constant time AES
-
ocb3
Pure Rust implementation of the Offset Codebook Mode v3 (OCB3) Authenticated Encryption with Associated Data (AEAD) Cipher as described in RFC7253
-
acme-lite
Request certificates from an ACME provider
-
monerochan-cuda
Monero-Chan, The Open-Source Privacy Platform (OSPP)
-
forro
Forró cipher
-
ockam_vault
A software-only Ockam Vault implementation
-
jwt-compact-preview
Minimalistic JWT implementation with focus on type safety and secure cryptographic primitives
-
zks_proto
Protocol layer for ZK Protocol - handshake and URL parsing
-
sequoia-keystore-backend
Traits for private key store backends
-
pqcrypto-ntru
Post-Quantum Key-Encapsulation Mechanism ntru
-
ghash
Universal hash over GF(2^128) useful for constructing a Message Authentication Code (MAC), as in the AES-GCM authenticated encryption cipher
-
libcrux-blake2
Formally verified blake2 hash library
-
sequoia-keystore-openpgp-card
An OpenPGP card backend for Sequoia's private key store
-
polysig
single-party and multisig use cases for ECDSA, Schnorr and Ed25519 signature schemes
-
rustcrypto-group
Elliptic curve group traits and utilities
-
concrete_lib
Concrete is a fully homomorphic encryption (FHE) library that implements Zama's variant of TFHE
-
evercrypt
Crypto library using formally verified code from HACL/Evercrypt
-
ark-snark-zypher
SNARK traits
-
ml-kem
Pure Rust implementation of the Module-Lattice-Based Key-Encapsulation Mechanism Standard (formerly known as Kyber) as described in FIPS 203
-
yubihsm
Pure Rust client for YubiHSM2 devices with support for HTTP and USB-based access to the device. Supports most HSM functionality including ECDSA, Ed25519, HMAC, and RSA.
-
password-auth
Password authentication library with a focus on simplicity and ease-of-use, including support for Argon2, PBKDF2, and scrypt password hashing algorithms
-
redoubt-vault-core
Core implementation for redoubt-vault encrypted storage
-
hpke-rs-libcrux
Crypto backend for HPKE using formally verified code from libcrux
-
serdect
Constant-time serde serializer/deserializer helpers for data that potentially contains secrets (e.g. cryptographic keys)
-
lit-frost-p384
A Schnorr signature scheme over the NIST P-256 curve that supports FROST
-
voa-core
File Hierarchy for the Verification of OS Artifacts (VOA)
-
universal-hash
Traits which describe the functionality of universal hash functions (UHFs)
-
rs_internal_hasher
package serves as an essential building block within the
rs_shieldcryptographic library. It is focused on providing foundational functionality and infrastructure for various cryptographic operations within the… -
ockam_executor
Ockam async executor crate
-
monerochan-eval
A performance evaluation tool for MONEROCHAN programs
-
rs_sha512_224
rs_sha512_224is a Rust implementation of the SHA-512/224 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA-512/224 hashing functionality in a standalone manner… -
rs_sha512_256
rs_sha512_256is a Rust implementation of the SHA-512/256 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA-512/256 hashing functionality in a standalone manner… -
rocca
ROCCA-S authenticated cipher
-
sealed_box
Libsodium sealed_box construction for Rust/WebAssembly
-
polysig-protocol
Encoding and types for the polysig library
-
openpgp-pkcs11-tools
A CLI tool for using PKCS #11 devices in an OpenPGP context
-
md4
MD4 hash function
-
kcr_appprotect_f5_com
Kubernetes Custom Resource Bindings
-
signatory
Multi-provider elliptic curve digital signature library with ECDSA and Ed25519 support
-
pwdm
Rudimentary command-line tool and Rust library for managing passwords
-
benchmark_system_info
Prints system info when running benchmarks
-
lit-frost-p256
A Schnorr signature scheme over the NIST P-256 curve that supports FROST
-
sm3
SM3 (OSCCA GM/T 0004-2012) hash function
-
crypto_secretbox
Pure Rust implementation of the XSalsa20Poly1305 (a.k.a. NaCl crypto_secretbox) authenticated encryption cipher as well as the libsodium variant of XChaCha20Poly1305
-
concrete-npe
Noise parameter estimator for the concrete FHE library
-
vsss-rs-std
Verifiable Secret Sharing Schemes for splitting, combining and verifying secret shares
-
xaes-256-gcm
Pure Rust implementation of the XAES-256-GCM extended-nonce Authenticated Encryption with Associated Data (AEAD)
-
libcrux-test-utils
Utils for testing and benchmarking
-
sequoia-keystore-server
Sequoia keystore daemon
-
ark-secp256k1-zypher
The secp256k1 curve
-
ockam_entity
Ockam is a library for building devices that communicate securely, privately and trustfully with cloud services and other devices
-
wasi-crypto-preview
WASI crypto module proposal
-
ockam_vault_test_suite
Ockam Vault test suite
-
monerochan-build
Build an MONEROCHAN program
-
ockam-ffi
FFI layer for ockam_vault
-
ccm
Generic implementation of the Counter with CBC-MAC (CCM) mode
-
xaes-gcm
The simplest and safest way to encrypt data using AES-GCM in Rust (AES256-DNDK-GCM)
-
sparx
block ciphers implementations
-
hash2curve
algorithm implementation
-
pqcrypto-saber
Post-Quantum Key-Encapsulation Mechanism saber
-
lit-frost-redjubjub
A Schnorr signature scheme over the NIST P-256 curve that supports FROST
-
openpgp-pkcs11-sequoia
using PKCS #11 devices in an OpenPGP context
-
lit-frost-secp256k1
A Schnorr signature scheme over the secp256k1 curve that supports FROST
-
sequoia-keystore-gpg-agent
A gpg-agent backend for Sequoia's private key store
-
ockam_node_no_std
Ockam library types that do not need
std -
keccak
Pure Rust implementation of the Keccak sponge function including the keccak-f and keccak-p variants
-
p192
Pure Rust implementation of the NIST P-192 (a.k.a. secp192r1) elliptic curve as defined in SP 800-186
-
sequoia-keyring-linter
A linter for keyrings
-
twofish
block cipher
-
libcrux-ecdsa
Formally verified ECDSA signature library
-
openpgp-ca-restd
OpenPGP CA is a tool for managing and certifying OpenPGP keys
-
lit-frost-taproot
A Schnorr signature scheme over the secp256k1 curve that supports FROST
-
camellia
block cipher
-
ark-secq256k1-zypher
The secq256k1 curve
-
monerochan-recursion-core
Monero-Chan, The Open-Source Privacy Platform (OSPP)
-
pkcs5
Pure Rust implementation of Public-Key Cryptography Standards (PKCS) #5: Password-Based Cryptography Specification Version 2.1 (RFC 8018)
-
pqcrypto-ntruprime
Post-Quantum Key-Encapsulation Mechanism ntruprime
-
cfb-mode
Cipher Feedback (CFB) block cipher mode of operation
-
idea
IDEA block cipher
-
p224
Pure Rust implementation of the NIST P-224 (a.k.a. secp224r1) elliptic curve as defined in SP 800-186
-
signature_core
Signature core types of the Ockam library
-
nettle-sys
Low-level Rust bindings for the Nettle cryptographic library
-
rs_sha3_512
rs_sha3_512is a Rust implementation of the SHA3-512 cryptographic hash algorithm, part of the largerrs_shieldproject. This package provides SHA3-512 hashing functionality in a standalone manner… -
ockam_vault_sync_core
Syncronous wrapper that allows to have multiple Vault instances, that talk to the same Vault implementation without need for synchronization primitives
-
frost-schnorrkel25519
A Schnorr signature scheme over the prime-order Ristretto group that supports FROST
-
x448
Pure Rust implementation of X448, an elliptic curve Diffie-Hellman function
-
cast5
block cipher
-
whirlpool
hash function