https://github.com/billgraziano/dpapi

GO Wrapper for Windows DPAPI
https://github.com/billgraziano/dpapi

dpapi go golang windows

Last synced: 7 months ago
JSON representation

GO Wrapper for Windows DPAPI

• Host: GitHub
• URL: https://github.com/billgraziano/dpapi
• Owner: billgraziano
• License: mit
• Created: 2019-10-13T13:17:13.000Z (over 6 years ago)
• Default Branch: master
• Last Pushed: 2025-01-31T14:56:59.000Z (about 1 year ago)
• Last Synced: 2025-03-27T09:22:13.955Z (about 1 year ago)
• Topics: dpapi, go, golang, windows
• Language: Go
• Homepage:
• Size: 20.5 KB
• Stars: 28
• Watchers: 1
• Forks: 4
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# GO Windows DPAPI Wrapper

The Windows DPAPI uses keys from the user and computer to encrypt data.

Encrypt and decrypt strings:

```

pwd := "password"

encrypted, _ := dpapi.Encrypt(pwd)

decrypted, _ := dpapi.Decrypt(encrypted)

```

Encrypt and decrypt byte arrays:

```

secret := []byte("isolateIndoors")

enc, _ := dpapi.EncryptBytes(secret)

dec, _ := dpapi.DecryptBytes(enc)

```

An encrypted string looks like this: 

AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAAQ5GMbx570mklMuNAyFRhgAAAAACAAAAAAAQZgAAAAEAACAAAACe7tibTHuzIsKVO2adNjiXU9TM9F1eR95Yk0Wk8Kzj7gAAAAAOgAAAAAIAACAAAAA7quouOuNvn7eicqjE9aa75UZN+TAbokD35hTXbE7UOBAAAADEFNscRxOqxxheOIVdtbiQQAAAAC+UCYzQFtF7uRyhjXKnqCii8OHUtmB5LwIgJTx46uLukKGsOp60rGVPGn6ufiYYCRXiCQPAmQEKjsEE1jwqZto=

The package also supports machine specific encryption and encryption using entropy.

Developing

----------

There is an application in `/cmd/stable` that creates a JSON file of encrypted values.  The purpose is to create a stable encrypted value and then verify it can still be decrypted after any changes are made.

It creates a file named `domain.computer.user.stable.json` on the first run.  On subsequent runs it tries to decrypt the values in the JSON file.  It currently only tests per-user encryption.  But this should allow testing of machine encryption and encryption with entropy.

References

----------

* [Data Protection API](https://en.wikipedia.org/wiki/Data_Protection_API) (wikipedia.org)

* [Windows Data Protection](https://docs.microsoft.com/en-us/previous-versions/ms995355(v=msdn.10)?redirectedfrom=MSDN) (microsoft.com)

* [Troubleshooting the DPAPI](https://support.microsoft.com/en-us/help/309408/how-to-troubleshoot-the-data-protection-api-dpapi) (microsoft.com)

* [CryptProtectData function](https://docs.microsoft.com/en-us/windows/win32/api/dpapi/nf-dpapi-cryptprotectdata) (microsoft.com)

* [Example C Program: Using CryptProtectData](https://docs.microsoft.com/en-us/windows/win32/seccrypto/example-c-program-using-cryptprotectdata) (microsoft.com)