Kryptor is a simple, modern, and secure file encryption and signing tool for Windows, Linux, and macOS.
It aims to be a better version of age and Minisign to provide a leaner, user friendly alternative to GPG.
- The latest and greatest cryptographic primitives, with no config options.
- Encrypt multiple files/directories with a passphrase, symmetric key, or asymmetric keys.
- Encrypt to multiple recipients for sender authenticated, one-way file sharing.
- Encrypted files are indistinguishable from random. File names can also be encrypted.
- Create and verify digital signatures, with support for an authenticated comment and prehashing.
- Small public keys. Private keys are encrypted for protection at rest.
- UNIX style passphrase entry and random passphrase generation.
- Pre-shared keys can be used for post-quantum secure key exchange.
For more information, please go to kryptor.co.uk.
If you're just getting started, check out the tutorial instead.
Usage: kryptor [options] <file>
Arguments:
file specify a file/directory path
Options:
-e|--encrypt encrypt files/directories
-d|--decrypt decrypt files/directories
-p|--passphrase specify a passphrase (empty for interactive entry)
-k|--key specify or randomly generate a symmetric key or keyfile
-x|--private specify your private key (unused or empty for default key)
-y|--public specify a public key
-n|--names encrypt file/directory names
-o|--overwrite overwrite files
-g|--generate generate a new key pair
-r|--recover recover your public key from your private key
-m|--modify change your private key passphrase
-s|--sign create a signature
-c|--comment add a comment to a signature or new key pair
-l|--prehash sign large files by prehashing
-v|--verify verify a signature
-t|--signature specify a signature file (unused for default name)
--version view the program version
-h|--help show help information
Examples:
--encrypt [file]
--encrypt -p [file]
--encrypt [-y recipient's public key] [file]
--decrypt [-y sender's public key] [file]
--sign [-c comment] [file]
--verify [-y public key] [file]
When referencing file names/paths that contain spaces, you must surround them with "speech marks":
$ kryptor -e -p "GitHub Logo.png"
$ kryptor -e -p "C:\Users\samuel-lucas6\Downloads\GitHub Logo.png"
Files in the same directory as the kryptor executable can be specified using their file name:
$ kryptor -e -p file.txt
However, files that aren't in the same directory must be specified using a file path:
$ kryptor -e -p C:\Users\samuel-lucas6\Documents\file.txt
Multiple files and/or directories can be specified at once:
$ kryptor -e file1.txt file2.jpg file3.mp4 Photos Videos
You can perform encryption, decryption, and signing with your default private key as follows:
$ kryptor -e file.txt
$ kryptor -d file.txt.bin
$ kryptor -s file.txt
This is the recommended approach, but it means your private keys must be kept in the default folder, which is ~/.kryptor.
To specify a private key for -r|--recover, -m|--modify, or a private key not stored in the default folder, you must use the -x|--private option followed by :[file] like so:
$ kryptor -r -x:"C:\Users\samuel-lucas6\Documents\encryption.private"
