{"id":13574256,"url":"https://github.com/buptczq/WinCryptSSHAgent","last_synced_at":"2025-04-04T14:32:10.401Z","repository":{"id":38203974,"uuid":"187327715","full_name":"buptczq/WinCryptSSHAgent","owner":"buptczq","description":"Using a Yubikey for SSH Authentication on Windows Seamlessly","archived":false,"fork":false,"pushed_at":"2024-06-06T02:25:03.000Z","size":444,"stargazers_count":539,"open_issues_count":39,"forks_count":66,"subscribers_count":16,"default_branch":"master","last_synced_at":"2024-11-05T09:44:04.994Z","etag":null,"topics":["smartcard","ssh-agent","ssh-certificates","windows","yubikey"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/buptczq.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2019-05-18T07:27:44.000Z","updated_at":"2024-10-23T05:36:25.000Z","dependencies_parsed_at":"2024-11-05T09:33:45.246Z","dependency_job_id":"226e9a46-1fca-45f6-930c-887f2bc63090","html_url":"https://github.com/buptczq/WinCryptSSHAgent","commit_stats":null,"previous_names":[],"tags_count":18,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/buptczq%2FWinCryptSSHAgent","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/buptczq%2FWinCryptSSHAgent/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/buptczq%2FWinCryptSSHAgent/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/buptczq%2FWinCryptSSHAgent/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/buptczq","download_url":"https://codeload.github.com/buptczq/WinCryptSSHAgent/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247194228,"owners_count":20899448,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["smartcard","ssh-agent","ssh-certificates","windows","yubikey"],"created_at":"2024-08-01T15:00:48.969Z","updated_at":"2025-04-04T14:32:05.385Z","avatar_url":"https://github.com/buptczq.png","language":"Go","readme":"# WinCrypt SSH Agent\n\n![CI](https://github.com/buptczq/WinCryptSSHAgent/workflows/Go/badge.svg)\n\n## Introduction\n\nA SSH Agent based-on Windows CryptoAPI.\n\nThis project allows other programs to access SSH keys stored in your Windows Certificate Store for authentication.\n\nBenefit by Windows Certificate Management, this project natively supports the use of windows user certificates or smart cards, e.g., Yubikey PIV, for authentication.\n\n## Overview\n![Overview](overview.svg)\n\n## Feature\n\n* Work with smart cards natively without installing any driver in Windows (PIV only)\n* Support for OpenSSH certificates (so you can use your smart card with an additional OpenSSH certificate)\n* Good compatibility\n\n## Compatibility\n\nThere are many different OpenSSH agent implementations in Windows. This project implements five popular protocols in Windows:\n\n* Cygwin UNIX Socket\n* Windows UNIX Socket (Windows 10 1803 or later)\n* Named pipe\n* Pageant SSH Agent Protocol\n* XShell Xagent Protocol\n\nWith the support of these protocols, this project is compatible with most SSH clients in Windows. For example:\n\n* Git for Windows\n* Windows Subsystem for Linux\n* Windows OpenSSH\n* Putty\n* Jetbrains\n* SecureCRT\n* XShell\n* Cygwin\n* MINGW\n* ...\n\n## Installing\n\n### Install with Chocolatey\n\n```\nchoco install wincrypt-sshagent\n```\n\n### Manually Install\n\nStable versions can be obtained from the release page. \n\nAdditionally, you may make an shortcut of this application to the startup folder.\n\n## Usage\n\n### Basic Usage\n\n1. Start WinCryptSSHAgent\n2. Right-click the icon on your taskbar\n3. You can get necessary information by selecting your interesting item in the menu\n\nNote: Some SSH clients using Pageant Protocol, e.g., Putty, XShell and Jetbrains, needn't any setting in system wide, thus you can't see Pageant in the menu.\n\nCheck [Yubikey with WSL tutorial](doc/wsl_tutorial.md) to start using Yubikey with SSH on WSL.\n\n### Work with Xshell\n\n1. Install and run WinCryptSSHAgent\n2. Open the Properties dialog box of your session.\n3. From Category, select 'SSH', Select 'Use Xagent (SSH agent)' for passphrase handling.\n4. From Category, select 'Authentication' and select 'Public Key' as the authentication method.\n\n### OpenSSH Certificates\n\nOpenSSH supports authentication using SSH certificates. Certificates contain a public key, identity information and are signed with a standard SSH key.\n\nUnlike TLS using X.509, OpenSSH uses a special certificate format, thus we can't convert your X.509 certificate into OpenSSH format.\n\nTo deal with OpenSSH Certificates, this project introduces a public key override mechanism.\n\nIf you want to work with OpenSSH certificates, you should put your OpenSSH Certificates in your `user profile` folder, rename them to `\u003cYour Certificate Common Name\u003e-cert.pub` or `\u003cYour Certificate Serial Number\u003e-cert.pub`.\n\n### Debug log\n\n1. Run `setx WCSA_DEBUG 1`\n2. Reboot to take effect\n3. Reproduce your problem\n4. The debug log is located in `%USERPROFILE%\\WCSA_DEBUG.log`\n\n### Contribute\n\n**Please use issues for everything**\n\n- For a small change, just send a PR.\n- For bigger changes open an issue for discussion before sending a PR.\n- You can also contribute by:\n  - Reporting issues\n  - Suggesting new features or enhancements\n  - Improve/fix documentation\n","funding_links":[],"categories":["Go","WSL Tools"],"sub_categories":["10. GUI Apps"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbuptczq%2FWinCryptSSHAgent","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbuptczq%2FWinCryptSSHAgent","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbuptczq%2FWinCryptSSHAgent/lists"}