Skip to content

Cookie04DE/Sekura

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

55 Commits

cmd

cmd

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

block.go

block.go

 
 

block_test.go

block_test.go

 
 

disk.go

disk.go

 
 

disk_test.go

disk_test.go

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

iv.go

iv.go

 
 

iv_test.go

iv_test.go

 
 

partition.go

partition.go

 
 

partition_test.go

partition_test.go

 
 

protocol.go

protocol.go

 
 

Repository files navigation

What is Sekura?

Sekura is an Encryption tool that's heavily inspired by the Rubberhose file system.

It allows for multiple, independent file systems on a single disk whose existence can only be verified if you posses the correct password.

Requirements

  1. A working go installation
  2. The nbd kernel module

How to use

  1. Clone this repository
  2. cd into cmd/sekura and run go install .

Note: the following steps require root permissions

  1. Run modprobe nbd to start the nbd kernel module
  2. Run sekura -standalone to enter the command line

Command line

Commands:

quit:

This quits Sekura. Don't quit if you still want to read or write to the partitions

createDisk:

This creates and adds a disk for use with Sekura.

Warning: this command will overwrite the file at the provided path if it already exists.

It asks you for a block size and a block count. You may enter the size as a number with a suffix (e.g "4mb", "10GB", "1tb"). The final size of the disk will be the size multiplied by the count plus 20 bytes for the disk header.

The more blocks you choose the more file systems can fit on that disk. The block size needs to be a minimum of 32 bytes to accommodate the block header, but more bytes are needed to actually store data.

addDisk:

This adds a disk previously created by createDisk to read and write partitions on it.

createPartition:

This creates a partition on a previously added/created disk and adds it.

Warning: add all partitions on the disk before using this command as you might otherwise encounter data loss.

Sekura will ask you for the number of the disk you want to create the partition on.

You are then asked to enter a password and Sekura makes sure there isn't already a partition with that password on the disk.

After that Sekura will ask you for the amount of blocks you want to allocate for this partition. The resulting size of the partition is (blockSize - 32) * blockAmount.

addPartition:

This adds a previously created partition.

Sekura will ask you for the number of the disk and a password.

delete:

This deletes a partition by overwriting all blocks in it with random data.

resize:

This resizes a partition by either deleting blocks at the end or adding new ones.

Warning: Potential data loss:

While shrinking: Make sure that no needed data is on the last blocks.

While growing: Make sure that all partitions are added.

How to use added partitions:

Once a partition is created/added you will receive the path to the block device (e.g. "/dev/nbd0").

Initially there is no filesystem on this device, so you need to create one. (You only need to do this once)

Note: The following steps require root permissions.

Example: mkfs.ext4 /dev/nbd0

Once you created your file system you need to mount it.

Example: mount /dev/nbd0 /mnt

Now your partition is mounted and you can use it like any other file system.

About

Encryption tool that's heavily inspired by the Rubberhose file system (https://en.wikipedia.org/wiki/Rubberhose_(file_system)).

Topics

filesystem nbd deniable-crypto deniable-encryption

Resources

Readme

License

MIT license
Activity

Stars

51 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages