uTLS is a fork of “crypto/tls”, which provides ClientHello fingerprinting resistance, low-level access to handshake, fake session tickets and some other features. Handshake is still performed by “crypto/tls”, this library merely changes ClientHello part of it and provides low-level access.

This package provides ShāngMì 4 cipher suites implementation (GM SM2/3/4).

Main functions:

• SM2 national secret elliptic curve algorithm library

• SM3 national secret hash algorithm library

• SM4 national secret block cipher algorithm library

pcg is a random number generator that uses Permuted Congruential Generator (PCG) algorithm.

Package crypt is a implementation of crypt(3) by golang, originated from https://code.google.com/p/go-crypt.

This package provides a Go implementation of several rolling hashes.

Package imohash implements a fast, constant-time hash for files. It is based atop murmurhash3 and uses file size and sample data to construct the hash.

Boiler-plate to securely seed Go's random number generator (if possible).

Go-OpenVPN-Mgmt implements a client for the OpenVPN management interface. It can be used to monitor and control an OpenVPN process running with its management port enabled.

Package xxhash implements the 64-bit variant of xxHash (XXH64) as described at https://xxhash.com/.

EME (ECB-Mix-ECB or, clearer, Encrypt-Mix-Encrypt) is a wide-block encryption mode developed by Halevi and Rogaway.

Keyring provides utility functions for and a common interface to a range of secure credential storage services. Originally developed as part of AWS Vault, a command line tool for securely managing AWS access from developer workstations.

Currently Keyring supports the following backends: macOS/OSX Keychain, Windows pcredential store, Pass, Secret Service, KDE Wallet, Encrypted File.

This package is an Ed25519 based public-key signature system that simplifies keys and seeds and performs signing and verification.

Package knownhosts is a thin wrapper around golang.org/x/crypto/ssh/knownhosts, adding the ability to obtain the list of host key algorithms for a known host.

This package provides Abstract Syntax Notation One BER encoding and decoding in the Go language.

This is a pure Go implementation of the group operations on the Ristretto prime-order group built from Edwards25519.

This provides a fork of uTLS for the specific purpose of improving obfs4proxy's meek_lite transport.

This package implements the pseudo-random-function (PRF) HighwayHash. HighwayHash is a fast hash function designed to defend hash-flooding attacks or to authenticate short-lived messages.

This is a Go implementation of the Google Authenticator library as specified in RFC 4226 and RFC 6238.

This package provides a Go translation of the reference C++ code for MetroHash, a high quality, high performance hash algorithm.

The ocicrypt library is the OCI image spec implementation of container image encryption. More details of the spec can be seen in the OCI repository. The purpose of this library is to encode spec structures and consts in code, as well as provide a consistent implementation of image encryption across container runtimes and build tools.

This package provides a Go implementation of JSON Web Tokens and supports the parsing and verification as well as the generation and signing of JSON Web Tokens. The currently supported signing algorithms are HMAC SHA, RSA, RSA-PSS, and ECDSA, though hooks are present for adding your own.

Libsignal-protocol-go is a Go implementation of the Signal Client Protocol.

Package ed25519 implements the Ed25519 signature algorithm.

This package implements a functionality to convert keys between the PEM and JWK file formats.