A go program to store encrypted data inside png chunks.

You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Go to file

trivernis a3d43dc9be Add salt to password hash and store it in an extra chunk Add a salt that is appended to the input password and is stored in the `saLt` chunk		5 years ago
.gitignore	Add usage to README	5 years ago
LICENSE	Create LICENSE	5 years ago
README.md	Update README	5 years ago
cryptpng.go	Add salt to password hash and store it in an extra chunk	5 years ago
go.mod	Add masked password input and hash	5 years ago
go.sum	Add masked password input and hash	5 years ago
pngUtils.go	Change `make([]byte, 0)` to type annotation	5 years ago

README.md

Cryptpng

A proof of concept implementation of storing encrypted data inside of png metadata chunks.

Usage

# encrypt
cryptpng --image <name of the image> --in <input file> --out <output file>

# decrypt
cryptpng --decrypt --image <crypt image> --out <decrypted output file>

Technical Information

It should be possible to store data with a size up to ~ 4GB, but in reality most image viewers have problems with chunks that are bigger than several Megabytes. The data itself is stored in a png chunk and encrypted via aes. The encryption chunk is stored right before the IDAT chunk that contains the image data. The steps for encrypting are:

Encrypt

Parse the png file and split it into chunks.
Prompt for a password and use the sha512 32byte value.
Create a base64 string out of the data.
Encrypt the base64 string using aes and the provided hashed key.
Store the data into the crPt chunk.
Write the png header and chunks to the output file.

Decrypt

Parse the png file and split it into chunks.
Get the crPt chunk.
Prompt for the password and create the sha512 32byte hash.
Decrypt the data using aes and the provided hash key.
Decode the base64 data.
Write the data to the specified output file.