38 مستودعات
Tools and protocols for decrypting incoming data while verifying sender identity and managing secure session states.
Distinguishing note: Focuses specifically on the decryption and validation of incoming messages rather than general-purpose encryption or authentication.
Explore 38 awesome GitHub repositories matching security & cryptography · Message Decryption. Refine with filters or upvote what's useful.
Signal-Android is an end-to-end encrypted messaging platform designed to ensure that only the sender and recipient can access communication content. The project provides a comprehensive framework for secure, asynchronous message initiation and key agreement, allowing users to establish private channels without requiring simultaneous online presence. It relies on a state machine architecture to manage communication epochs and authentication, ensuring consistent security transitions throughout the messaging lifecycle. The platform distinguishes itself through a hybrid cryptographic approach tha
Decrypts incoming data by validating sender identity and managing session activation to ensure only authorized messages are processed.
Sops is a secrets encryption tool designed to encrypt and decrypt sensitive values within configuration files. It functions as a manager for secrets that integrates with cloud key vaults and PGP keys to secure data stored in version-controlled files. The tool utilizes structure-preserving encryption to encrypt individual values while keeping the overall file format and non-sensitive keys intact. It employs a KMS-backed encryption model, interfacing with external key management services from AWS, GCP, and Azure to handle cryptographic operations without exposing private keys locally. The proj
Implements metadata-driven decryption by storing key identifiers within the encrypted files to determine the correct decryption path.
Age is a command-line utility for file encryption that utilizes hybrid cryptography to secure data for multiple recipients. It employs a combination of asymmetric key exchange and symmetric encryption to protect files, supporting access control through public keys, shared passphrases, and hardware-backed identity integration. The tool is designed for memory-efficient operation, utilizing stream-oriented processing to handle large datasets in small, sequential chunks. It features a stanza-based metadata framing system that allows for extensible file headers and supports random-access decryptio
Decrypts specific portions of large files on demand to maintain high performance.
Keploy is an automated testing platform that leverages kernel-level traffic interception to generate and maintain regression test suites for microservices. By capturing live network traffic and system calls via eBPF, the platform automatically creates deterministic test cases and mocks external dependencies without requiring manual code instrumentation. This approach allows developers to validate application behavior and API contracts by replaying production-like traffic in isolated environments. The platform distinguishes itself through its use of machine learning to perform test maintenance
Captures TLS-encrypted network data by hooking into library functions to ensure visibility into secure communication channels during the recording process.
Quarkus is a Kubernetes-native Java framework designed for building high-performance, memory-efficient applications. It utilizes ahead-of-time native compilation to transform Java code into standalone, optimized binaries that eliminate the need for a virtual machine, enabling rapid startup and reduced memory consumption. By performing code augmentation during the build phase, it shifts heavy processing tasks away from runtime, ensuring that applications are optimized for cloud-native environments. The framework distinguishes itself through a unified approach to reactive and imperative program
Integrates handlers to automatically decrypt sensitive configuration data at runtime for secure credential management.
Ecapture is a suite of specialized auditing tools designed to capture plaintext database queries, log executed shell commands, forward packet captures, and decrypt TLS traffic. The system extracts plaintext content from encrypted communications and TLS master secrets without requiring CA certificates. It further monitors data interactions by capturing SQL queries from database instances and recording commands from shell environments for host-level auditing. The toolset includes capabilities for network traffic analysis, exporting captured data to pcapng files, and forwarding events to extern
Hooks into library functions to intercept and decrypt TLS-encrypted network traffic for plaintext analysis.
DeDRM_tools is a software suite designed to automate the removal of digital rights management from personal e-book files. By stripping restrictive encryption layers during the import process, the utility enables users to manage their digital libraries and convert protected files into open formats for use across various reading devices. The system operates through a modular architecture that utilizes plugin-based event interception to hook into host applications. It performs cryptographic key extraction by scanning local configuration files and memory, applying algorithm-specific decryption to
Applies targeted mathematical transformations to remove digital rights management layers based on specific vendor encryption schemes.
Proxypin is a cross-platform HTTP and HTTPS proxy debugger designed to capture, inspect, and modify network traffic. It functions as a man-in-the-middle interceptor, allowing developers to analyze application data flows and validate network communication during development and testing. The tool distinguishes itself through its focus on mobile and remote device integration, utilizing QR-code-based configuration synchronization to simplify the setup of proxy settings and security certificates. It includes an event-driven scripting engine that enables programmatic manipulation of requests and re
Provides real-time decryption of TLS-encrypted network traffic to enable inspection of secure data payloads during development.
OpenHaystack is a software framework for creating and tracking custom Bluetooth beacons using the Apple Find My crowdsourced location network. It provides a system for generating encrypted cryptographic keys and flashing firmware onto embedded hardware to broadcast trackable Bluetooth signals. The project enables the retrieval and decryption of geographic coordinates for remote hardware using private keys to recover device movement history. It also includes a location proxy that fetches network reports from the Apple ecosystem and serves that data to remote applications. The toolset covers c
Provides tools to decrypt encrypted location reports using private keys to recover device movement history.
Mizu is a suite of tools for capturing, indexing, and visualizing cloud-native network traffic and decrypted payloads for cluster-wide diagnostics. It provides Kubernetes network observability by using eBPF to index and visualize layer 4 and layer 7 traffic with full cluster context, allowing for the mapping of workload dependencies and the diagnosis of network failures. The project distinguishes itself by using kernel-level hooks to decrypt TLS traffic in plain text without requiring private keys. It further integrates a standardized context protocol to expose indexed network telemetry to AI
Intercepts and decrypts live TLS-encrypted network traffic using kernel-level hooks without requiring private keys.
WeFlow is a local client extension for the WhatsApp messaging protocol. It functions as a suite of tools for decrypting media, managing chat history, and extending the core capabilities of the messaging client. The project is distinguished by its ability to block message recalls, preventing the remote deletion of sent messages to maintain a permanent record of conversations. It also includes a local messaging API that exposes internal chat capabilities via an HTTP service for use with external automation scripts and third-party tools. The software provides a chat analytics dashboard for gene
Decrypts encrypted photos, videos, and live photos from chat histories for local viewing.
PyWxDump is a data recovery and export utility designed to extract, decrypt, and convert proprietary mobile messaging databases into readable formats for archival and recovery. It specifically functions as a tool to read and parse encrypted SQLite databases used by WeChat to retrieve chat history and user data. The project focuses on the preservation of conversation history and the forensic recovery of application data for archival or legal purposes. It enables the conversion of proprietary message stores into portable, open formats to prevent data loss from account deletion or device migrati
Provides AES-cipher decryption for sensitive message content using device and account identifiers.
DeDRM_tools is a digital rights management decryptor and ebook security key manager. It functions as a utility to strip proprietary protections from restricted ebook files, removing vendor lock-in to make the content compatible with any reading application. The tool manages the decryption process by using a configuration system to store device serial numbers and encryption keys. This allows for the automation of the decryption pipeline across various ebook retailers and platforms. The project provides capabilities for digital content decryption and ensures ebook format compatibility by proce
Applies vendor-specific cryptographic algorithms to decrypt restricted ebook data streams.
Okio is a Java I/O library providing a set of tools for efficient byte-stream processing and file system operations. It functions as a buffered byte stream handler and streaming data transformer, utilizing a cross-platform file system API to manage data movement. The project is distinguished by its use of pooled mutable byte buffers that treat sequences as queues to reduce memory copying and garbage collection churn. It further decouples file operations from the host operating system through an abstraction-based file system, allowing for consistent path manipulation and atomic operations acro
Automatically decrypts content using a specified cipher during the reading process from a data source.
airgeddon is a bash-based wireless network audit suite and security toolkit for Linux. It serves as a framework for testing wireless vulnerabilities and verifying network configurations across various encryption standards, including WPA, WEP, and WPS. The project functions as an orchestration layer that integrates a collection of third-party wireless security tools. It features a modular approach to attack vectorization, coordinating tasks such as evil twin simulations with captive portals, WPA handshake interception, and the execution of WPS vulnerability tests. Its capabilities cover a bro
Enables offline decryption of captured wireless handshakes for both personal and enterprise network configurations.
de4dot is a .NET deobfuscator, unpacker, and assembly analysis tool. It is designed to remove obfuscation layers, restore metadata, and simplify bytecode control flow to transform protected binaries back into human-readable code. The project features specialized systems for decrypting strings and constants using both static and dynamic analysis. It identifies specific protection tools through pattern-based detection and strips anti-analysis protections, such as tamper detection and anti-debugging code. The tool provides a suite of reverse engineering capabilities, including binary wrapper un
Decrypts strings, constants, and embedded files using static and dynamic analysis to reveal original values.
N_m3u8DL-RE is a command line tool designed for capturing and saving on-demand or live video streams from M3U8 manifest files. It functions as an HLS stream recorder and downloader capable of capturing adaptive bitrate streams and recording live broadcasts with real-time merging and specific duration limits. The tool features an AES encrypted stream decrypter that removes encryption from media segments using provided keys and external decryption engines. It also includes a media muxer that integrates with the FFmpeg engine to combine downloaded audio, video, and subtitle tracks into a single
Decrypts encrypted media segments using provided keys and external engines to enable playback.
Proxyman is a cross-platform HTTP debugging proxy that captures, inspects, and modifies HTTP, HTTPS, and WebSocket traffic. It functions as a man-in-the-middle proxy, decrypting SSL/TLS traffic to allow real-time inspection and modification of encrypted requests and responses. The tool is designed for debugging web and mobile applications, with capabilities for API mocking and simulation, scriptable traffic modification, and team collaboration on network logs. What distinguishes Proxyman is its deep integration with mobile and cross-platform development workflows. It provides automated certif
Specifies which apps, domains, or wildcard patterns should have their traffic decrypted.
pdfminer.six is a programmatic tool for extracting text, layout information, and metadata from PDF documents into machine-readable formats. It functions as a document parser that converts internal PDF objects and structures into accessible data objects for analysis. The project includes utilities for decrypting RC4 and AES encrypted files to enable content extraction. It also provides a layout analyzer to identify fonts, colors, and text locations to determine the organizational structure of pages. The system covers a broad range of extraction capabilities, including the retrieval of embedde
Automatically decrypts RC4 and AES encrypted data streams during the reading process to enable content parsing.
MailKit is a cross-platform .NET email protocol library used to implement IMAP, POP3, and SMTP functionality. It provides specialized client libraries for managing remote mailboxes, retrieving and downloading messages, and composing and transmitting emails to remote servers. The library supports secure identity verification through SASL authentication and OAuth 2.0 token-based flows. It includes capabilities for routing traffic through proxy gateways and decrypting PGP-encrypted content embedded within email bodies. The project covers a broad range of email operations, including folder manag
Implements extraction and decryption of PGP-encrypted data blocks embedded within email bodies.