用于加密python代码的未经审核的安全工具。
lockdown的Python项目详细描述
使用aes-256加密本地python源代码的工具,并动态地 加载并运行它,并将其放入锁定命名空间。 使用HMAC进行完整性检查,AES-256在计数器模式下进行加密。
未对安全漏洞进行审核。 自担风险使用。我对你不听警告不负责任。
示例用法:
#!/bin/bash lockdown lockedfiles.vault secret/creds.py secret/my_funcs.py # Enter and repeat password. # Now would be a good time to delete the files you locked, # but make sure not to lose that vault file.
在python中:
#!/usr/bin/env python
from lockdown import Lockdown
locker = Lockdown('lockedfiles.vault')
# Enter password.
locker.unlock()
# Login with encrypted credentials. Python files aren't there!
# Note: It collapsed the path.
# (so it's locker.creds, not locker.secret.creds)
some_login(locker.creds.USERNAME, locker.creds.PASSWORD)
# Call a function.
# NOTE: These can't import vaulted files within functions.
# Files are lost after unlocking!
locker.my_funcs.scoobydoo()
# To leave files out, do this instead:
locker.unlock(delete=False)
您可以看到潜在的用途,例如使用密钥锁定文件 和具有主密码或禁用脚本功能的凭据 不公开源代码,除非密码可用。
欢迎加入QQ群-->: 979659372
