Lib.rs

rustls-pemfile

Basic .pem file parser for keys and certificates

der

Pure Rust embedded-friendly implementation of the Distinguished Encoding Rules (DER) for Abstract Syntax Notation One (ASN.1) as described in ITU X.690 with full support for heapless no_std targets

x509-cert

Pure Rust implementation of the X.509 Public Key Infrastructure Certificate format as described in RFC 5280

spki

X.509 Subject Public Key Info (RFC5280) describing public keys as well as their associated AlgorithmIdentifiers (i.e. OIDs)

crypto_box

Pure Rust implementation of NaCl's crypto_box public-key authenticated encryption primitive which combines the X25519 Elliptic Curve Diffie-Hellman function and the XSalsa20Poly1305 authenticated encryption cipher

nkeys

NATS nkeys library

russh

A client and server SSH library

discv5

p2p discv5 discovery protocol

rsign2

A command-line tool to sign files and verify signatures

minisign

sign files and verify signatures

kestrel-cli

Kestrel file encryption program

tor-hscrypto

Basic onion service cryptography types used by Aerti

sshkeys

parsing OpenSSH certificates and public keys

libcrux-ml-kem

Libcrux ML-KEM & Kyber implementations

rpki

validating and creating RPKI data

dkimdo

DKIM command-line tool

biscuit-cli

a CLI to manipulate biscuit tokens

botan

Rust wrapper for Botan cryptography library

openpgp-card-tools

inspecting, configuring and using OpenPGP cards

libp2p-identity

Data structures and algorithms for identifying peers in libp2p

aws-sdk-ec2instanceconnect

AWS SDK for AWS EC2 Instance Connect

libp2p-noise

Cryptographic handshake protocol using the noise framework

plexi-cli

A flexible auditor companion client

plexi

A flexible auditor companion client

libpep

PEP primitives, offering pseudonimization and encryption interfaces

hpke-dispatch

runtime algorithmic selection for hybrid public key encryption

supervisor-rs

Manage (Start/Stop/Restart/etc.) processings on server

x509-ocsp

Pure Rust implementation of the X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP formats as described in RFC 6960

libpaillier

The Paillier cryptosystem is a public key crytosystem based on composite degree residuosity classes. Paillier ciphertexts are homorphic in that the can be added

iroh-docs

Iroh sync

krill

Resource Public Key Infrastructure (RPKI) daemon

x509-verify

Pure Rust library that verifies X.509 signatures based on the algorithm identifiers

emyzelium

Wrapper for ZeroMQ's Pub-Sub with Curve+ZAP, over Tor. Peers, identified by public key, onion, and port, publish Vec<Vec<u8>> under topics to which other peers subscribe.

ssh-rs

In addition to encryption library, pure RUST implementation of SSH-2.0 client protocol

tink-hybrid

Hybrid encryption functionality for Rust port of Google's Tink cryptography library

algae-cli

Lightweight age profile for user-friendly encryption (CLI tool and library)

sn_transfers

Safe Network Transfer Logic

sshcerts

parsing, verifying, and creating SSH Certificates

rsacracker

Powerful RSA cracker for CTFs. Supports RSA, X509, OPENSSH in PEM and DER formats.

rasn-pkix

Data types for handling Public Key Infrastructure (PKIX) objects

rejson

A command line utility for managing secrets

pgp-lib

High-level, asynchronous API for rPGP, a pure Rust implementation of OpenPGP

libecvrf

A ECVRF that's friendly with EVM, based on curve secp256k1 and keccak256

crypto_kx

Pure Rust implementation of libsodium's crypto_kx using BLAKE2

oberon

multi-factor zero-knowledge capable token without requiring email, SMS, or authenticator apps. The proof of token validity is only 96 bytes while the token itself is only 48 bytes

hpke-rs

HPKE Implementation

cylinder

high-level cryptographic signing library

sn_sdkg

Safe Network Synchronous Distributed Key Generation: enables dealerless section key generation

azure_jwt

JWT validator for Microsoft Azure Id tokens

baid58

Easy-to-check Base58 encoding for identities

cosey

Data types and serde for public COSE_Keys

key-share

Key share of any Threshold Signature Scheme (TSS)

rana

Nostr public key mining tool

sshd-openpgp-auth

Command-line tool for creating and managing OpenPGP based trust anchors for SSH host keys

orodruin

Safe Rust Monero-like bLSAG ring signatures on Ristretto curve

fiber-sphinx

Sphinx mix network

monocypher

Bindings for the monocypher C library

slip-10

SLIP10 implementation in Rust

vaz256

Pure Rust implementation of Verified Abbreviated Zeta 256 bits (VAZ256) - a digital signature scheme for post-quantum computing-resistant signatures combining Dilithium5 and SHAKE256 for key compressions

osshkeys

read and write OpenSSH public and private keys

npvdkgrs

Single Round Non-interactive publicly verifiable distributed key generation and resharing algorithm over BLS12-381

sequoia-keystore-gpg-agent

A gpg-agent backend for Sequoia's private key store

ssh-openpgp-auth

Command-line tool that provides client-side functionality to transparently verify the identity of remote SSH hosts

cypheraddr

Network address types supporting proxying, mixnets, P2P with minimalistic dependencies (part of cyphernet suite)

spaghettinuum

The future of the internet is al dente

turboshake

A family of extendable output functions based on keccak-p[1600, 12] permutation

did-simple

Dead simple DIDs

ecdh-omr

ECDH based Oblivious Message Retrieval

zshuffle

Encrypt and shuffle cards, resulting in a randomly ordered deck

kipa

Distributed Key to IP Address (KIPA) query network

rpgpie-certificate-store

Certificate store for rpgpie, based on openpgp-cert-d

dbtools

Usermode tools for Drawbridge. A Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)

ksi-double-ratchet

Double Ratchet key management for exchanging encrypted messages between two parties

apt-sources

A parser for APT source files (package repositories specification)

dgc

A parser and validator for the EU Digital Green Certificate (dgc) a.k.a. greenpass

cyphergraphy

Implementation-independent abstractions for main cryptographic algorithms (part of cyphernet suite)

fi-key-resolver

Get ed25519 public key from did id

rusty_crypto

cryptographic suite for Rust

cryptouri

URN-like namespace for cryptographic objects (keys, signatures, etc) with Bech32 encoding/checksums

keysync

sync local authorized_keys file updated with your with Github, Gitlab, and Launchpad public keys

gm-sm2

China's Standards of Encryption Algorithms SM2

detsurtnu

Automated mirror of untrusted - Safe, fast, zero-panic, zero-crashing, zero-allocation parsing of untrusted inputs in Rust

dkg-core

Distributed Key Generation (DKG) core library

iroh-sync

Iroh sync

turnstile

One-way encryption

key_value_service

A refreshingly simple data-driven game engine and app framework

libsm_stzhang

China's Standards of Encryption Algorithms (SM2/3/4)

setmeup

Minimalistic Ansible-based remote provisioning tool

rsa_keygen

generating rsa keys with a 12 word seedphrase

phantom-zone

multi-party computation using fully-homomorphic encryption

remote_config

Flexible crate for asynchronously loading configuration from remote source with caching and automatic revalidation

libsecp256k1

Pure Rust secp256k1 implementation

ssh-keys

Parser of ssh public and private keys

libsecp256k1test

Pure Rust secp256k1 implementation

ecies_25519

Elliptic Curve Integrated Encryption Scheme with X25519 curve

openpgp-pkcs11-tools

A CLI tool for using PKCS #11 devices in an OpenPGP context

deterministic-pgp-keys

Generate PGP keys from a 12 word seed phrase

sp-statement-store

contains primitives related to the statement store

rdedup-lib

Data deduplication with compression and public key encryption. - library

rsa-magic-public-key

Converting between the Magic Public Key format and a RustCrypto RSA type

azure_jwt_async

JWT validator for Microsoft Azure tokens that is async capable

xstack-x509

generating/parsing/verify x509 certifacate with libp2p extension

lsig

functionalities for generating private and public key pairs and signing messages using those keys

age-plugin-hpke

HPKE plugin for age clients

superkeyloader

A small utility to copy all your GitHub SSH public keys on your system

fastcrypto

Common cryptographic library used at Mysten Labs

siopv2

OpenID Connect Self-Issued OpenID Provider v2 standard

rsa-oaep-pss

A pure Rust implementation of the RSA public key cryptosystem

bip32_derivation

delano-keys

working with Delano keys

gldf-sign

A command-line tool to sign GLDF files and verify GLDF signatures, based on minisign

snowbridge-milagro-bls

BLS12-381 signatures using the Apache Milagro curve library, targeting Ethereum 2.0

wireguard-keys

Generate, parse and export WireGuard (x25519) keys

rsa_public_encrypt_pkcs1

RSA PKCS#1 encryption from ASN.1 DER encoded public key in pure Rust

near-ledger

Transport library to integrate with NEAR Ledger app

musig2

Flexible Rust implementation of the MuSig2 multisignature protocol, compatible with Bitcoin

attenuable-jwt

Create and verify JWTs that support secure offline attenuation

fast-paillier

Optimized Paillier encryption scheme

mwc-libp2p-noise

Cryptographic handshake protocol using the noise framework

casper-client

A client library and binary for interacting with the Casper network

double-ratchet

Double Ratchet key management for exchanging encrypted messages between two parties

unid

Automate device security provisioning with edge intelligence

libp2prs-noise

Cryptographic handshake protocol using the noise framework

psbt

Modern, minimalistic & standard-compliant PSBT library

ed448-rust

Edwards-Curve Digital Signature Algorithm (EdDSA) for ed448 only

bingo

Find secrets in files fast using Rust. Supports AWS keys, a bunch of others, private and public keys, etc.

microsoft/electionguard_verify

The ElectionGuard SDK Reference Verifier enables the verification of election ballots, tallies, and proofs generated by the ElectionGuard SDK

solana-secp256k1-recover

Solana SECP256K1 Recover

rsa-openssl-format

Parse and encode RSA public keys in the format that OpenSSL uses for authorized_keys

bp-derive

Bitcoin addresses and invoices

crypto-key-tool

interacting with bitcoin keys and addresses

ic-canister-sig-creation

creating canister signatures on the Internet Computer

check_mate

Check yourself before you wreck yourself

bitcoin-bosd

Bitcoin binary output script descriptor (BOSD)

encrypt38

Command line tool to encrypt and decrypt bitcoin private keys with bip-0038 standard

solana-secp256r1-program

Precompile implementation for the secp256r1 elliptic curve

gossip-relay-picker

A relay picker for nostr, used by gossip

paseto-wasi07

An alternative token format to JWT

pkstl

Public Key Secure Transport Layer

google_certs_oauth

that helps you decode Google OAuth 2.0 JWT tokens and verify them using Google's public keys

rsign

A command-line tool to sign files and verify signatures

ic-evm-utils

Utils for interacting with Ethereum from ICP canisters

elabs-crypto

Elabs crypto package: crypto utilities

helium-crypto

Helium Blockchain cryptography library

essential-sign

Public key cryptography for the Essential ecosystem

unc-ledger

Transport library to integrate with UNC Ledger app

precrypt

Cli wrapper for the umbral-pre proxy re-encryption library with parallel processing

eip_1024

EIP-1024 encryption

gluon-mesh-vpn-key-translate

Translates fastd to WireGuard keys

squads-multisig-cli

Command line interface to interact with the Squads v4 program

cruzbit

decentralized peer-to-peer ledger implementation

culper

embedd encrypted secrets in yaml files

jsonwebkey-convert

Convert an RSA public key between Json Web Key and DER/PEM format

silentpayments

adding BIP352: Silent Payments support to wallets

rusted-nostr-tools

that provides tools for the Nostr clients

blindsign

A package for creating blind signatures cryptography ECC

world_id

An experiment in creating a distributed PKI

port-variable-rate-lending-instructions

Port Finance Variable Rate Lending Porgram