Free Software Foundation!

Aesutil 2 'aesutil' is a small library and command line program to encrypt or decrypt data using the Rijndael algorithm in CBC mode.

BeeCrypt BeeCrypt is a cryptography library that contains highly optimized C and assembler implementations of many well-known algorithms including Blowfish, MD5, SHA-1, Diffie-Hellman, and ElGamal. Unlike some other crypto libraries, BeeCrypt is not designed to solve one specific problem, like file encryption, but to be a general purpose toolkit which can be used in a variety of applications. There are also no patent or royalty issues associated with BeeCrypt.

Botan Botan (formerly OpenCL) is a library of cryptographic algorithms. It includes a wide selection of block and stream ciphers, public key algorithms, hash functions, and message authentication codes, plus a high level filter-based interface. The home page has a list of supported algorithms.

Bugs BUGS is the Big and Useful Great Security key encryption algorithm and applications. It is easy to use, and includes sample applications and documentation. The cryptography library can also be used with your own programs. Features include:

• Private key algorithm
• Dynamic cryptography algorithm
• Source code can be made public without making the algorithm weak
• Infinite key lengths
• Bilateral bits swwapping with various windows
• Bilateral Pseudo randomly binary operations
• Random number added to key
• Random number generator using the ISAAC algorithm
• Possibility of generating your own RNG seed
• Five different cryptography levels, for the best possible
• combination of efficiency and speed
• Seed and shuffle functions
• A clear text can be crypted using its own data
• Two methods of execution: direct disk access or memory cache
• Strong key generator

Ccrypt 'ccrypt' is a utility for encrypting and decrypting files and streams. It was designed to replace the standard Unix 'crypt' utility, which is notorious for using a very weak encryption algorithm. 'ccrypt' is based on the Rijndael cipher, which is the U.S. government's chosen candidate for the Advanced Encryption Standard (AES). This cipher is believed to provide very strong security. Unlike unix crypt, the algorithm provided by ccrypt is not symmetric (one must specify whether to encrypt or decrypt). Encryption and decryption depend on a user-supplied keyword (key phrase). Keywords can be any number of characters; all characters are significant (although ccrypt internally hashes the key to 256 bits). Longer keywords provide better security, since they are less likely to be discovered by exhaustive search.

Cfs-el

Cryptmount cryptmount assists system administrators in setting up encrypted filesystems based on the device mapper (dm-crypt) of GNU/Linux systems using a 2.6-series kernel. After initial setup, it allows any user to mount or unmount filesystems on demand, solely by providing the decryption password, with any system devices needed to access the filing system being configured automatically. A wide variety of encryption schemes (provided by the kernel and libgcrypt library) can be used to protect both the filing system and the access key. The protected filing systems can reside in either ordinary files or disk partitions.

CryptoMail The CryptoMail Email System is a web-based Email client and server with security at the transport level and end-to-end message encryption. The first client was written in Java so that it can run on any Java enabled web browser (Mozilla, IE and Navigator), and the first server is designed to work with any computer with an httpd (based on NCSA) server and a MySQL server.

CryptoTools Set of multiplatform cryptographic-related applications to be run from batch, console or GUI, without installation.
- fmac: calculate Message Autentication Code using TEA and XTEA in OMAC mode

- fsaber: encrypt/decrypt files, compatible with classic CipherSaber-1 and -2,

features also a secure deletion mode

- fstegano: simple steganographic tool to hide/extract a file in less

significant bits of another file

Cryptonit Cryptonit is a client side cryptographic tool which allows you to encrypt/decrypt and sign/verify files with PKI (Public Key Infrastructure) certificates.

Ecc 'ecc' is a class library for working with elliptic curves in cryptography. It consists of a set of TCP/IP client server examples for digital signature, encryption, and key exchange (such as Diffie-Hellman key exchangei, Massey Omura encryption, or DSA style signatures in the elliptic curve case).

EncFS EncFS is an encrypted pass-through filesystem which runs in userspace on GNU/Linux (using the FUSE kernel module). Similar in design to CFS and other pass-through filesystems, all data is encrypted and stored in the underlying filesystem. Unlike loopback filesystems, there is no predetermined or pre-allocated filesystem size.

EverCrack 'EverCrack' is a cryptanalysis engine designed to systematically break down complex ciphers into their simplex components for cryptanalysis (by the kernel). The kernel consists of an algebraic design (comparison and reduction) for breaking uniliteral, monoalphabetic ciphers instantaneously. Currently, it can break a 500-word cipher in less than 500 miliseconds. EverCrack has multi-language support for the user interface and cracking encryption in eight languages (English, German, French, Spanish, Italian, Swedish, Dutch, and Portuguese).

FastCST FastCST (Fast Change Set Tool) is a project to create a secure revision control system that uses digital signatures and other cryptographic means to verify the identity of submitters. It attempts to strike a balance between security, collaboration, and control so that everyone can participate safely, no individual or organization can control others, and collaborators can share as they need. It is simple, well tested, and well documented.

Fsh 'fsh (fast remote shell)' is a drop-in rsh-compatible replacement for ssh that automatically reuses ssh tunnels. Also included is fcp, which is a drop-in replacement for scp that uses the same tunnels. Logging in to a remote system with a cryptographic solution such as lsh or ssh takes time. This solves the problem of slow logins due to the computationally expensive key exchanges that occur when you establish a remote connection is established with a machine that has ssh or lsh.

GNU POC GNU POC is a program for managing passwords on smartcards. Each password is stored together with a description on the card. All data on the card is stored encrypted so others won't be able to get your passwords by reading the card. POC encrypts using Blowfish or Rijndael (AES) with a 192 or 256 bit key (depending on the security level selected by the user). Other algorithms can be added easily. This project has been decommissioned and is no longer developed.

GPG-Crypter GPG-Crypter is a GTK+ frontend to GPG and it is intended to de- and encrypt text into ASCII-armored gpg-ciphers. It provides textboxes to enter plaintext or ciphers. File encryption and decryption is available since version 0.2.

GPGME GPGME is a library designed to make access to GnuPG easier for applications. It provides a High-Level Crypto API for encryption, decryption, signing, signature verification and key management. Currently it uses GnuPG as its backend but the API isn't restricted to this engine; in fact it is planned to add other backends to it.

Gaim-e 'gaim-e' is an encryption plugin for gaim. It uses GNUPG (GPG) to securely transfer the session key (RC5). It currently works with AOL, MSN, and Yahoo. Other protocols supported by gaim have not yet been tested.

Gnu-crypto GNU Crypto, part of the GNU project, released under the aegis of GNU, aims at providing free, versatile, high-quality, and provably correct implementations of cryptographic primitives and tools in the Java programming language for use by both programmers and end-users. GNU Crypto has now merged with GNU Classpath.