Skip to content
/ zenc Public

An encryption program written without dynamic dependencies (can be run as a static executable).

License

View license
4 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rullo24/zenc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
planning
planning
 
 
src
src
 
 
.gitignore
.gitignore
 
 
LICENCE.txt
LICENCE.txt
 
 
README.md
README.md
 
 
build.zig
build.zig
 
 

Repository files navigation

Zenc - Zig Secure File Encryption

This project encrypts files to ensure both their privacy and integrity. The process follows a series of best practices to achieve strong security.

Security and Algorithms

For a security-focused tool, transparency regarding the cryptographic methods is critical for trust and verification.

Zenc follows current cryptographic best practices:

Feature Details
Algorithm AES-256 in Galois/Counter Mode (GCM), providing both confidentiality (secrecy) and authenticated encryption.
Integrity Ensured by the GCM Message Authentication Code (GCM-MAC), which verifies the integrity and authenticity of the ciphertext to detect any unauthorized modifications or corruption.
Key Derivation The symmetric key is derived from a user-supplied passphrase using a robust Key Derivation Function (KDF) to protect against brute-force attacks. The tool will prompt for the passphrase via standard input.
File Naming Encryption adds the .ezenc extension. Decryption replaces the .ezenc extension (if available) w/ .dzenc.

Usage

NOTE: Zenc always captures paths relative from the cwd (unless an absolute path is provided).

Encrypting or Decrypting a file creates a file in the same directory as captured from but w/ ezenc (encryption) or dzenc (decryption) concatenated to the end.

CLI Options

  • -h OR --help -> Prints this help menu
  • -e=<file_to_encrypt> -> Encrypt file.
  • -d=<file_to_decrypt> -> Decrypt file.
  • --dont_check_enc -> Stop immediate encrypted file decryption check (increase speed).
  • --version OR version -> Prints build versioning information.
  • -v OR --verbose -> Prints extra stdout information.

Examples

1. Encrypt secret.txt
.\zenc -e=secret.txt

Creates secret.txt.ezenc

2. Decrypt the file
.\zenc -d=secret.txt.ezenc

Creates secret.txt.dzenc

3. Encrypt (Verbose)
.\zenc -e=secret.txt -v

Encrypts and prints details about the process to stdout.

Building the Project

Installation

To build the optimised release executable:

zig build -Doptimize=ReleaseSafe

The executable is built to the default location:

zenc/zig-out/bin/zenc

Zig Version

0.15.1

Debugging

To launch the executable and run an encryption command within the LLDB debugger:

lldb .\zig-out\bin\zenc.exe -- -e="./test/file1.txt"

About

An encryption program written without dynamic dependencies (can be run as a static executable).

Resources

Readme

License

View license
Activity

Stars

4 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 2

v1.2.0 Latest
Oct 19, 2025
+ 1 release

Packages

No packages published

Languages