/keepsafe

🔑 A dead simple file encryption/decryption tool for macOS that you probably shouldn't use

Primary LanguageCMIT LicenseMIT

Keepsafe

Easily encrypt/decrypt your files with a passphrase. Uses AES-256 for encryption, hashing the passphrase with SHA-256 to use as the key. Cryptography algorithms are provided by LibTomCrypt.

System Requirements

Keepsafe is currently supported only on Unix or Unix-like systems.

Dependencies

None. The LibTomCrypt library is included with the source, and is statically compiled.

Installation

Clone this repository, cd into it, and run make. Simple as that.

Usage

$ ./keepsafe <file to encrypt>
$ ./keepsafe -d <file to decrypt>

Encrypted files will be placed in the current working directory with the extension .enc appended.

Decrypted files will have .dec appended, instead.

Note: Keepsafe will not warn upon an incorrect passphrase being entered to decrypt a file. The "decrypted" file will just turn out to be unreadable junk. Couldn't figure out a way to verify the correct key 🤷‍

Todo

  • Use an actual KDF instead of SHA-256 for generating the key
  • Append a HMAC blob to the encrypted data for key validation and message authentication
  • Error check all the functions!