Easily encrypt/decrypt your files with a passphrase. Uses AES-256 for encryption, hashing the passphrase with SHA-256 to use as the key. Cryptography algorithms are provided by LibTomCrypt.
Keepsafe is currently supported only on Unix or Unix-like systems.
None. The LibTomCrypt library is included with the source, and is statically compiled.
Clone this repository, cd into it, and run make. Simple as that.
$ ./keepsafe <file to encrypt>
$ ./keepsafe -d <file to decrypt>
Encrypted files will be placed in the current working directory with the extension .enc appended.
Decrypted files will have .dec appended, instead.
Note: Keepsafe will not warn upon an incorrect passphrase being entered to decrypt a file. The "decrypted" file will just turn out to be unreadable junk. Couldn't figure out a way to verify the correct key 🤷
- Use an actual KDF instead of SHA-256 for generating the key
- Append a HMAC blob to the encrypted data for key validation and message authentication
- Error check all the functions!