Skip to content

bad-antics/nullsec-cryptwrap

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
README.md
README.md
 
 
WRAPPING.md
WRAPPING.md
 
 
cryptwrap.adb
cryptwrap.adb
 
 

Repository files navigation

nullsec-cryptwrap

    ███▄    █  █    ██  ██▓     ██▓      ██████ ▓█████  ▄████▄  
    ██ ▀█   █  ██  ▓██▒▓██▒    ▓██▒    ▒██    ▒ ▓█   ▀ ▒██▀ ▀█  
   ▓██  ▀█ ██▒▓██  ▒██░▒██░    ▒██░    ░ ▓██▄   ▒███   ▒▓█    ▄ 
   ▓██▒  ▐▌██▒▓▓█  ░██░▒██░    ▒██░      ▒   ██▒▒▓█  ▄ ▒▓▓▄ ▄██▒
   ▒██░   ▓██░▒▒█████▓ ░██████▒░██████▒▒██████▒▒░▒████▒▒ ▓███▀ ░
   ░ ▒░   ▒ ▒ ░▒▓▒ ▒ ▒ ░ ▒░▓  ░░ ▒░▓  ░▒ ▒▓▒ ▒ ░░░ ▒░ ░░ ░▒ ▒  ░
   ░ ░░   ░ ▒░░░▒░ ░ ░ ░ ░ ▒  ░░ ░ ▒  ░░ ░▒  ░ ░ ░ ░  ░  ░  ▒   
      ░   ░ ░  ░░░ ░ ░   ░ ░     ░ ░   ░  ░  ░     ░   ░        
            ░                          ░    ░           ░        
   ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
   █░░░░░░░░░░░░░░░ C R Y P T W R A P ░░░░░░░░░░░░░░░░░░░░░░░█
   ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
                       bad-antics

Ada

Overview

nullsec-cryptwrap is a formally verified cryptographic wrapper written in Ada/SPARK. Leverages Ada's strong typing and SPARK's formal verification for provably correct cryptographic operations.

Features

  • 🔐 Verified Crypto - SPARK-verified AES, ChaCha20, RSA
  • 📝 Secure Memory - Guaranteed memory zeroing
  • 🛡️ Type Safety - Strong typing prevents crypto misuse
  • ⏱️ Constant Time - Timing-attack resistant operations
  • 📋 Auditable - Human-readable verification proofs
  • 🔑 Key Management - Secure key generation and storage

Requirements

  • GNAT 2023+
  • SPARK 2014 (for verification)

Installation

git clone https://github.com/bad-antics/nullsec-cryptwrap.git
cd nullsec-cryptwrap
gprbuild -P cryptwrap.gpr

Usage

# Encrypt file
./cryptwrap encrypt -i secret.txt -o secret.enc -k keyfile.key

# Decrypt file
./cryptwrap decrypt -i secret.enc -o decrypted.txt -k keyfile.key

# Generate key
./cryptwrap keygen -a aes256 -o key.key

# Hash file
./cryptwrap hash -i file.txt -a sha256

# Verify signatures
./cryptwrap verify -i file.txt -s file.sig -k public.key

Verified Properties

SPARK verification proves:

  • No buffer overflows
  • No integer overflows
  • No uninitialized memory access
  • Correct key material handling
  • Constant-time comparisons
  • Memory properly zeroed after use

Supported Algorithms

Algorithm Verified Notes
AES-128/256 CBC, GCM modes
ChaCha20 With Poly1305
SHA-256/512 HMAC variants
RSA Partial 2048/4096 bit
Ed25519 Signatures
X25519 Key exchange

Disclaimer

For authorized use only. Cryptographic tools may be restricted.

License

NullSec Proprietary License

Author

bad-antics - NullSec Security Team

Part of the NullSec Security Toolkit

GitHub Discord

About

Formally verified cryptographic wrapper in Ada/SPARK

Topics

security cryptography encryption spark aes sha256 ada formal-verification formally-verified security-hardened nullsec

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages