Skip to content
/ encrust Public

Rust crate to obfuscate strings and byte arrays so they are not in memory when not in use.

License

MIT license
13 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

emiltayl/encrust

BranchesTags

Repository files navigation

Encrust

Crates.io Docs MIT licensed Build Status

A Rust crate for obfuscating data in memory, deobfuscating it only when needed. Encrust does not provide any security as the seed required to deobfuscate the data is stored right next to the data itself. No integrity checks are performed, which could lead to safety issues if the obfuscated data is modified somehow, for example resulting in Strings that are not valid UTF-8.

This crate also contains functionality to search for strings or byte arrays without including the strings or byte arrays in the executable.

Example

Encrust comes with all features enabled by default. To use, add the following to Cargo.toml:

[dependencies]
encrust = "0.2"

Encrust can then be used to obfuscate data, optionally at compile-time using macros.

use encrust::{encrust, hashstring};

// Encrust works by directly modifying the underlying memory
// Therefore, encrusted values must be mut in order to be read
let mut hidden_string = encrust!("This string will not appear as-is in the executable.");
// Numbers need to be suffixed wit their data type
let mut hidden_number = encrust!(0xabc123u32);

{
    // "Decrusted" implement Deref and DerefMut to the underlying data
    let string = hidden_string.decrust();
    let number = hidden_number.decrust();

    println!("The string is \"{}\" and the number 0x{:x}.", string.as_str(), *number);
}

// string and number are now out of scope and hidden_string and hidden_number are obfuscated again

use std::io::{self, BufRead};
let hashed_string = hashstring!("This string does not appear in the executable");
let mut line = String::new();
let stdin = std::io::stdin();

println!("Enter the password: ");
stdin.lock().read_line(&mut line).unwrap();

if hashed_string == &line {
  println!("You entered the correct password!");
}

Feature flags

Encrust has the following feature flags, all enabled by default:

  • hashstrings: Include functionality to hash strings and byte arrays to search for them without including the actual strings / bytes in the executable.
  • std: Compile with std. Removing this causes the crate to be built as no_std.
  • macros: Include macros used for Derive macro and proc macros for obfuscating values at compile-time.

License

This project is licensed under the MIT license.

Contribution

Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in Encrust shall be licensed as MIT, without any additional terms or conditions.

About

Rust crate to obfuscate strings and byte arrays so they are not in memory when not in use.

Topics

rust obfuscation

Resources

Readme

License

MIT license
Activity

Stars

13 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

3 tags

Packages

No packages published

Languages