From 71aa234be3cb44a4c5ac3c5aeec8f77b54628399 Mon Sep 17 00:00:00 2001
From: "Pedro F. Albanese" <68971450+pedroalbanese@users.noreply.github.com>
Date: Thu, 29 Sep 2022 13:02:32 -0300
Subject: [PATCH] Add files via upload

---
 LICENSE.md  |  14 ++++
 README.md   | 220 ++++++++++++++++++++++++++++++++++++++++++++++++++--
 SECURITY.md |   6 ++
 3 files changed, 233 insertions(+), 7 deletions(-)
 create mode 100644 LICENSE.md
 create mode 100644 SECURITY.md

diff --git a/LICENSE.md b/LICENSE.md
new file mode 100644
index 0000000..a84dd70
--- /dev/null
+++ b/LICENSE.md
@@ -0,0 +1,14 @@
+Copyright (c) 2022, Pedro F. Albanese pedroalbanese@hotmail.com
+
+Permission to use, copy, modify, and distribute this software for any
+purpose with or without fee is hereby granted, provided that the above
+copyright notice and this permission notice appear in all copies.
+
+THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
+WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
+MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
+ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
+WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
+ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
+OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
+
diff --git a/README.md b/README.md
index 471342e..352b681 100644
--- a/README.md
+++ b/README.md
@@ -1,7 +1,213 @@
-# edgetk
-[![ISC License](http://img.shields.io/badge/license-ISC-blue.svg)](https://github.com/pedroalbanese/edgetk/blob/master/LICENSE.md) 
-[![GoDoc](https://godoc.org/github.com/pedroalbanese/edgetk?status.png)](http://godoc.org/github.com/pedroalbanese/edgetk)
-[![GitHub downloads](https://img.shields.io/github/downloads/pedroalbanese/edgetk/total.svg?logo=github&logoColor=white)](https://github.com/pedroalbanese/edgetk/releases)
-[![Go Report Card](https://goreportcard.com/badge/github.com/pedroalbanese/edgetk)](https://goreportcard.com/report/github.com/pedroalbanese/edgetk)
-[![GitHub go.mod Go version](https://img.shields.io/github/go-mod/go-version/pedroalbanese/edgetk)](https://golang.org)
-[![GitHub release (latest by date)](https://img.shields.io/github/v/release/pedroalbanese/edgetk)](https://github.com/pedroalbanese/edgetk/releases)
+# RSA Signer
+[![ISC License](http://img.shields.io/badge/license-ISC-blue.svg)](https://github.com/pedroalbanese/rsasigner/blob/master/LICENSE.md) 
+[![GoDoc](https://godoc.org/github.com/pedroalbanese/rsasigner?status.png)](http://godoc.org/github.com/pedroalbanese/rsasigner)
+[![GitHub downloads](https://img.shields.io/github/downloads/pedroalbanese/rsasigner/total.svg?logo=github&logoColor=white)](https://github.com/pedroalbanese/rsasigner/releases)
+[![Go Report Card](https://goreportcard.com/badge/github.com/pedroalbanese/rsasigner)](https://goreportcard.com/report/github.com/pedroalbanese/rsasigner)
+[![GitHub go.mod Go version](https://img.shields.io/github/go-mod/go-version/pedroalbanese/rsasigner)](https://golang.org)
+[![GitHub release (latest by date)](https://img.shields.io/github/v/release/pedroalbanese/rsasigner)](https://github.com/pedroalbanese/rsasigner/releases)
+
+Multi-purpose cross-platform cryptography tool for symmetric and asymmetric encryption, recursive hash digest, hash-based message authentication code (HMAC), HMAC-based key derivation function (HKDF), Password-based key derivation function (PBKDF2), shared key agreement (ECDH), digital signature (RSA/ECDSA) and TLS 1.2 for small or embedded systems. 
+
+***Compatible with OpenSSL v1.0.2h to v1.1.1h***
+
+## Command-line RSA Signer (Security Suite)
+
+## Asymmetric
+* ECDSA 224/256/384/521-bit
+* Ed25519 (256-bit)
+* RSA Cryptosystem
+* SM2 (256-bit)
+
+## Symmetric
+
+**Stream ciphers:**
+
+- RC4 (128-bit) [Obsolete]
+
+**128-bit block ciphers:**
+
+- ARIA 128/192/256-bit
+- Camellia 128/192/256-bit
+- Grasshopper (256-bit)
+- Rijndael "AES" 128/192/256-bit (Default)
+- SM4 (128-bit)
+
+**64-bit block ciphers:**
+
+- DES [Obsolete]
+- 3DES [Almost Obsolete]
+- Blowfish (128-bit)
+- CAST5 (128-bit)
+- IDEA (128-bit) [Obsolete]
+- Magma (256-bit)
+- RC2 (128-bit) [Obsolete]
+- RC5 (128-bit) [Obsolete]
+
+**Modes of Operation:**
+
+- CFB8: Cipher Feedback 8-bit
+- CFB: Cipher Feedback
+- CTR: Counter Mode (a.k.a. CNT)
+- OFB: Output Feedback
+
+**Message Digest Algorithms:**
+
+- BLAKE-2B 512-bit
+- BLAKE-2S 256-bit
+- GOST94 (256-bit)
+- MD4 (128-bit) [Obsolete]
+- MD5 (128-bit) [Obsolete]
+- RIPEMD (160-bit)
+- SHA1 (160-bit) [Obsolete]
+- SHA2 224/256/384/512-bit (default) 
+- SHA3 224/256/384/512-bit
+- SM3 (256-bit)
+- Streebog 256/512-bit
+- Whirlpool (512-bit)
+
+**Message Authentication Code Algorithms:**
+
+- Poly1305
+
+## Features
+**Cryptographic Functions:**
+
+- Asymmetric Encryption
+- Symmetric Encryption
+- Digital Signature
+- Recursive Hash Digest + Check
+- ECDH (Shared Key Agreement)
+- HMAC (Hash-based message authentication code)
+- HKDF (HMAC-based key derivation function)
+- PBKDF2 (Password-based key derivation function)
+- TLS 1.2 (Transport Layer Security)
+
+**Non-cryptographic Functions:**
+
+* Hex string encoder
+
+## Usage
+<pre> -algorithm string
+       Public key algorithm: RSA, EC (ECDSA) or SM2. (default "RSA")
+ -bits int
+       Key length. (for keypair generation and symmetric encryption)
+ -cert string
+       Certificate name. (default "Certificate.pem")
+ -check string
+       Check hashsum file. ('-' for STDIN)
+ -cipher string
+       Symmetric algorithm: aes, blowfish, magma or sm4. (default "aes")
+ -crypt string
+       Encrypt/Decrypt with block ciphers.
+ -digest string
+       Target file/wildcard to generate hashsum list. ('-' for STDIN)
+ -hex string
+       Encode binary string to hex format and vice-versa. [enc|dec]
+ -hkdf int
+       HMAC-based key derivation function with given bit length.
+ -hmac
+       Compute Hash-based message authentication code.
+ -info string
+       Additional info. (for HKDF command)
+ -ipport string
+       Local Port/remote's side Public IP:Port
+ -iter int
+       Iter. (for Password-based key derivation function) (default 1)
+ -iv string
+       Initialization Vector. (for symmetric encryption)
+ -key string
+       Asymmetric key, symmetric key or HMAC key, depending on operation.
+ -md string
+       Hash algorithm: sha256, sha3-256 or Whirlpool. (default "sha256")
+ -mode string
+       Mode of operation: CFB8, CFB, CTR or OFB. (default "CTR")
+ -pbkdf2
+       Password-based key derivation function.
+ -pkey string
+       Generate keypair, Sign/Verify with RSA/ECDSA keypair.
+ -private string
+       Private key name. (for keypair generation) (default "Private.pem")
+ -public string
+       Public key name. (for keypair generation) (default "Public.pem")
+ -pwd string
+       Password. (for Private key PEM encryption)
+ -rand int
+       Generate random cryptographic key with given bit length.
+ -recursive
+       Process directories recursively. (for DIGEST command only)
+ -salt string
+       Salt. (for KDF only)
+ -signature string
+       Input signature. (verification only)
+ -tcp string
+       Encrypted TCP/IP Transfer Protocol. [server|ip|client]</pre>
+
+## Examples
+#### Asymmetric RSA keypair generation:
+```sh
+./rsasigner -pkey keygen -bits 4096 [-pwd "pass"]
+```
+#### Asymmetric EC keypair generation (256-bit):
+```sh
+./rsasigner -pkey keygen -bits 256 -algorithm EC [-pwd "pass"]
+```
+#### Parse keys info:
+```sh
+./rsasigner -pkey [text|modulus] [-pwd "pass"] -key private.pem
+./rsasigner -pkey [text|modulus] -key public.pem
+```
+#### Digital signature:
+```sh
+./rsasigner -pkey sign -key private.pem [-pwd "pass"] < file.ext > sign.txt
+sign=$(cat sign.txt|awk '{print $2}')
+./rsasigner -pkey verify -key public.pem -signature $sign < file.ext
+echo $?
+```
+#### Encryption/decryption with RSA algorithm:
+```sh
+./rsasigner -pkey encrypt -key public.pem < plaintext.ext > ciphertext.ext
+./rsasigner -pkey decrypt -key private.pem < ciphertext.ext > plaintext.ext
+```
+#### Generate Certificate:
+```sh
+./rsasigner -pkey certgen -key private.pem [-pwd "pass"] [-cert "output.ext"]
+```
+#### Parse Certificate info:
+```sh
+./rsasigner -pkey [text|modulus] -cert certificate.pem
+```
+#### TLS Layer (TCP/IP):
+```sh
+./rsasigner -tcp ip > PubIP.txt
+./rsasigner -tcp server -cert certificate.pem -key private.pem [-ipport "8081"]
+./rsasigner -tcp client -cert certificate.pem -key private.pem [-ipport "127.0.0.1:8081"]
+```
+#### Symmetric key generation (256-bit):
+```sh
+./rsasigner -rand 256
+```
+#### Encryption/decryption with block cipher:
+```sh
+./rsasigner -crypt enc -key $256bitkey < plaintext.ext > ciphertext.ext
+./rsasigner -crypt dec -key $256bitkey < ciphertext.ext > plaintext.ext
+```
+#### HMAC:
+```sh
+./rsasigner -hmac -key "secret" < file.ext
+```
+#### HKDF (HMAC-based key derivation function):
+```sh
+./rsasigner -hkdf -key "IKM" [-salt "salt"] [-info "AD"]
+```
+#### Hex Encoder/Decoder:
+```sh
+./rsasigner -hex enc < file.ext > file.hex
+./rsasigner -hex dec < file.hex > file.ext
+./rsasigner -hex dump < file.ext
+```
+
+# License
+
+This project is licensed under the ISC License.
+
+### Copyright (c) 2020-2022 Pedro F. Albanese - ALBANESE Research Lab.
diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..f02a329
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,6 @@
+# Security Policy
+
+## Reporting a Vulnerability
+
+Please send a mail to pedroalbanese@hotmail.com when you found a security issue in RSASigner, even when you are not 100% certain 
+that it is actually a security issue. Typically, you will receive an answer within a day or even within a few hours.