The app-crypt category contains cryptographic (encryption, decryption, steganography and signing) software.
| acme | An implementation of the ACME protocol |
|---|---|
| acme-client | a secure ACME client |
| acme-sh | An ACME Shell script |
| acme-tiny | A tiny, auditable script for Let's Encrypt's ACME Protocol |
| acmebot | Certificate manager bot using ACME protocol |
| acr38u | Non CCID driver for ACR38 AC1038-based Smart Card Reader |
| aescrypt | Advanced file encryption using AES |
| aespipe | Encrypts data from stdin to stdout |
| argon2 | Password hashing software that won the Password Hashing Competition (PHC) |
| asedriveiiie-serial | ASEDriveIIIe Serial Card Reader |
| asedriveiiie-usb | ASEDriveIIIe USB Card Reader |
| asekey | ASEKey USB SIM Card Reader |
| bcwipe | Secure file removal utility |
| bsign | embed secure hashes (SHA1) and digital signatures (GNU Privacy Guard) into files |
| cardpeek | Tool to read the contents of smartcards |
| ccid | CCID free software driver |
| ccrypt | Encryption and decryption |
| certbot | Let's encrypt client to automate deployment of X.509 certificates |
| certbot-apache | Apache plugin for certbot (Let's Encrypt Client) |
| certbot-dns-nsone | NS1 DNS Authenticator plugin for Certbot (Let's Encrypt Client) |
| certbot-nginx | Nginx plugin for certbot (Let's Encrypt Client) |
| cfssl | Cloudflare's PKI and TLS toolkit |
| chntpw | Offline Windows NT Password & Registry Editor |
| ckpass | ncurses based password database client compatible with KeePass 1.x databases |
| codecrypt | Post-quantum cryptography tool |
| codegroup | encode / decode binary file as five letter codegroups |
| coolkey | Linux Driver support for the CoolKey and CAC products |
| crackpkcs12 | multithreaded program to crack PKCS#12 files |
| debian-archive-keyring | GnuPG archive keys of the Debian archive |
| dehydrated | a client for signing certificates with an ACME-server |
| dieharder | An advanced suite for testing the randomness of RNG's |
| easy-rsa | Small RSA key management package, based on OpenSSL |
| efitools | Tools for manipulating UEFI secure boot platforms |
| eid-mw | Electronic Identity Card middleware supplied by the Belgian Federal Government |
| ekeyd | Entropy Key userspace daemon |
| elettra | Plausible deniable file cryptography |
| envchain | Save environment variables in a secret vault |
| fcrackzip | a zip password cracker |
| gcr | Libraries for cryptographic UIs and accessing PKCS#11 modules |
| gentoo-keys | A OpenPGP/GPG keyring of official Gentoo release media GPG keys |
| gifshuffle | GIF colourmap steganography |
| gkeys | An OpenPGP/GPG key management tool and python libs |
| glep63-check | GLEP 63 compliance checker for OpenPGP keys |
| gnupg | The GNU Privacy Guard, a GPL OpenPGP implementation |
| gnupg-pkcs11-scd | PKCS#11 support for GnuPG |
| gorilla | Password Safe in secure way with GUI interface |
| gpa | The GNU Privacy Assistant (GPA) is a graphical user interface for GnuPG |
| gpg-ringmgr | GPG Keyring Manager to handle large GPG keyrings more easily |
| gpgme | GnuPG Made Easy is a library for making GnuPG easier to use |
| gpgstats | GPGstats calculates statistics on the keys in your key-ring |
| hashalot | Reads a passphrase and prints a hash |
| hashcat | World's fastest and most advanced password recovery utility |
| hashcat-utils | a set of small utilities that are useful in advanced password cracking |
| heimdal | Kerberos 5 implementation from KTH |
| hmaccalc | Tools for computing and checking HMAC values for files |
| ima-evm-utils | Supporting tools for IMA and EVM |
| jacksum | Java utility for computing and verifying checksums: CRC*, MD*, etc. |
| jetring | GPG keyring maintenance using changesets |
| jitterentropy | Hardware RNG based on CPU timing jitter |
| jitterentropy-rngd | Jitter RNG daemon |
| johntheripper | fast password cracker |
| johntheripper-jumbo | fast password cracker |
| kali-archive-keyring | GnuPG archive keys of the Kali archive |
| kbfs | Keybase Filesystem (KBFS) |
| kencfs-plasma | GUI frontend for encfs |
| keybase | Client for keybase.io |
| keylookup | A tool to fetch PGP keys from keyservers |
| kstart | Modified versions of kinit for refreshing kerberos tickets automatically |
| libb2 | C library providing BLAKE2b, BLAKE2s, BLAKE2bp, BLAKE2sp |
| libmd | Message Digest functions from BSD systems |
| libnitrokey | Support library for the Nitrokey |
| libscrypt | Shared library to impliment the scrypt algorithm |
| libsecret | GObject library for accessing the freedesktop.org Secret Service API |
| libu2f-host | Yubico Universal 2nd Factor (U2F) Host C Library |
| libu2f-server | Yubico Universal 2nd Factor (U2F) server C Library |
| libykneomgr | YubiKey NEO CCID Manager C Library |
| loop-aes-losetup | Loop-AES losetup utility |
| manuale | A fully manual Let's Encrypt client |
| mcrypt | replacement of the old unix crypt(1) |
| md4sum | md4 and edonkey hash algorithm tool |
| md5deep | Expanded md5sum program with recursive and comparison options |
| md6sum | A C implementation of MD6 |
| mhash | library providing a uniform interface to a large number of hash algorithms |
| minisign | Dead simple tool to sign files and verify signatures |
| mit-krb5 | MIT Kerberos V |
| mit-krb5-appl | Kerberized applications split from the main MIT Kerberos V distribution |
| monkeysphere | Leverage the OpenPGP web of trust for OpenSSH and Web authentication |
| moolticute | Mooltipass crossplatform daemon/tools |
| nasty | Proof-of-concept GPG passphrase recovery tool |
| nitrocli | A command line tool for interacting with Nitrokey devices. |
| nitrokey-app | Cross platform personalization tool for the Nitrokey |
| nwipe | Securely erase disks using a variety of recognized methods |
| onak | onak is an OpenPGP keyserver |
| openpgp-keys-gentoo-auth | Gentoo Authority Keys (GLEP 79) |
| openpgp-keys-gentoo-release | OpenPGP keys used for Gentoo releases (snapshots, stages) |
| openssl-blacklist | Detection of weak ssl keys produced by certain debian versions in 2006-2008 |
| openvpn-blacklist | Detection of weak openvpn keys produced by certain debian versions in 2006-2008 |
| ophcrack | A time-memory-trade-off-cracker |
| ophcrack-tables | Tables available for ophcrack |
| osslsigncode | Platform-independent tool for Authenticode signing of EXE/CAB files |
| p11-kit | Provides a standard configuration setup for installing PKCS#11 |
| paperkey | OpenPGP key archiver |
| pdfcrack | Tool for recovering passwords and content from PDF-files |
| pesign | Tools for manipulating signed PE-COFF binaries |
| pgpdump | A PGP packet visualizer |
| pinentry | Simple passphrase entry dialogs which utilize the Assuan protocol |
| pius | A tool for signing and email all UIDs on a set of PGP keys |
| pkcrack | PkZip cipher breaker |
| pkcs11-data | Utilities for PKCS#11 data object manipulation in |
| pkcs11-dump | Utilities for PKCS#11 token content dump |
| princeprocessor | Standalone password candidate generator using the PRINCE algorithm |
| qca | Qt Cryptographic Architecture (QCA) |
| quickcrypt | gives you a quick MD5 Password from any string |
| rainbowcrack | Hash cracker that precomputes plaintext - ciphertext pairs in advance |
| rhash | Console utility and library for computing and verifying file hash sums |
| rotix | Rotix allows you to generate rotational obfuscations |
| sbsigntools | Utilities for signing and verifying files for UEFI Secure Boot |
| scdrand | Feed kernel entropy pool from smartcard's TRNG |
| scrypt | A simple password-based encryption utility using scrypt key derivation function |
| scute | A PKCS #11 module for OpenPGP smartcards |
| seahorse | Manage your passwords and encryption keys |
| seahorse-sharing | Daemon for PGP public key sharing using DNS-SD and HKP |
| shash | Generate or check digests or MACs of files |
| sign | File signing and signature verification utility |
| signify | Cryptographically sign and verify files |
| signing-party | A collection of several tools related to OpenPGP |
| simple-tpm-pk11 | Simple PKCS11 provider for TPM chips |
| ssdeep | Computes context triggered piecewise hashes (fuzzy hashes) |
| ssh-multiadd | Adds multiple ssh keys to the ssh authentication agent |
| ssss | Shamir's Secret Sharing Scheme |
| stan | Stan analyzes binary streams and calculates statistical information |
| stoken | Software Token for Linux/UNIX |
| swtpm | Libtpms-based TPM emulator |
| tc-play | a free, pretty much fully featured and stable TrueCrypt implementation |
| tpm-emulator | Emulator driver for tpm |
| tpm-tools | TrouSerS' support tools for the Trusted Platform Modules |
| tpm2-abrmd | TPM2 Access Broker & Resource Manager |
| tpm2-tools | Tools for the TPM 2.0 TSS |
| tpm2-totp | Attest the trustworthiness of a device against a human using time-based OTP |
| tpm2-tss | TCG Trusted Platform Module 2.0 Software Stack |
| tpm2-tss-engine | OpenSSL Engine for TPM2 devices |
| trousers | An open-source TCG Software Stack (TSS) v1.1 implementation |
| ubuntu-keyring | GnuPG archive keys of the Ubuntu archive |
| veracrypt | Disk encryption with strong security based on TrueCrypt |
| virtualsmartcard | Smart card emulator, can be used with Remote Smart Card Reader |
| WiRouterKeyRec | Recovery tool for wpa passphrase |
| xca | A GUI to OpenSSL, RSA public keys, certificates, signing requests etc |
| xor-analyze | program for cryptanalyzing xor 'encryption' with variable key length |
| yubikey-manager | Python library and command line tool for configuring a YubiKey |
| yubikey-manager-qt | Cross-platform application for configuring any YubiKey over all USB transports |
| zulucrypt | Front end to cryptsetup |