This is a tiny, auditable script that you can throw on your server to issue and
renew Let's Encrypt certificates. Since it has to be run on your server and
have access to your private Let's Encrypt account key, I tried to make it as
tiny as possible (currently less than 200 lines). The only prerequisites are
python and openssl.
cryptography is a package designed to expose cryptographic recipes and
primitives to Python developers. Our goal is for it to be your "cryptographic
standard library". It supports Python 2.6-2.7, Python 3.2+, and PyPy.
cryptography includes both high level recipes, and low level interfaces to
common cryptographic algorithms such as symmetric ciphers, message digests
and key derivation functions.
sha is a simple program that hashes files. It uses the National
Institute of Standards and Technology's Secure Hash Algorithm.
It can use SHA-1, SHA-256, SHA-384, or SHA-512, which generate
respectively, hashes of 160, 256, 384, or 512 bits. sha can be
used in scripts to do, for example, file integrity checking.
TUF (The Update Framework) helps developers secure their new or existing
software update systems.
Software update systems are vulnerable to many known attacks, including
those that can result in clients being compromised or crashed. TUF helps
solve this problem by providing a flexible security framework that can
be added to software updaters.
gpsoauth allows python code to use the "master token" flow that KB
Sriram described at
http://sbktech.blogspot.com/2014/01/inside-android-play-services-magic.html.
This is be useful when writing code that poses as a Google app, like
gmusicapi does.
scanlogd is a TCP port scan detection tool, originally designed to illustrate
various attacks an IDS developer has to deal with. Unlike some of the other
port scan detection tools out there, scanlogd is designed to be totally safe
to use.
-Roman Bogorodskiy
<bogorodskiy@inbox.ru>
Zebedee is a simple program to establish an encrypted, compressed TCP/IP
"tunnel" between two systems. This allows TCP-based traffic such as telnet,
ftp and X to be protected from snooping as well as potentially gaining
performance over low-bandwidth networks from compression.
DASH is a POSIX-compliant implementation of /bin/sh that aims to be as small as
possible. It does this without sacrificing speed where possible. In fact, it
is significantly faster than bash (the GNU Bourne-Again SHell) for most tasks.
CDBKUP is a professional-grade open-source package for
backing up filesystems onto CD-Rs or CD-RWs.
Features:
Supports full or incremental backups.
Results are stored as GNU tarballs on ISO 9660 filesystems.
Excellent support for multi-session CDs.
Large backups can be split between multiple CDs.
Supports gzip, bzip2 or no compression.
'di' is a disk information utility, displaying everything
(and more) that your 'df' command does. It features the
ability to display your disk usage in whatever format you
desire/prefer/are used to. It is designed to be portable
across many platforms.