A CLI tool that allows you to create cryptographic slime with fun attributes! It supports a local SQLite database which stores information about each authslime.
Creates an Authslime:
- Creates Attributes of the Slime (ID, KeyID, Version, Name, Color, Template, and Accessories)
- Crypto actions (Create keypair, CSR, Issues X.509 Certificate, KeyWrapping)
- Creates Slime Picture, containing Attributes
- Inserts data(Slime attributes/certs/keys/picture) into a local Database (SQLite)
- Optional actions such as read actions / stats and graph for creation
According to the RNG, accessories will be chosen for the authslime (up to two). There are common, uncommon, and rare accessories.
| Rarity | Item |
|---|---|
| Common | sunglasses, sunhat |
| Uncommon | top hat, wizard hat, mustache |
| Rare | robin hood hat, santa hat, crown, golden top hat, golden sunglasses |
This tool performs many cryptographic actions(key wrapping, issuing X.509 Certificates). This requires:
-
RSA Keypair
keys/publickey.pem- used to encrypt the wrapping key that wraps the authslime's private keykeys/privatekey.pem(optional) if you wish to decrypt the authslime's private key -
Your Certificate authority(CA) keypair and certificate
ca/private/ca.key- The private key associated with your CA used for signing the authslime certificatesca/certs/ca.pem- The CA certificate
If you don't care about this, and just want to test out the script, you can run quickcryptosetup.sh. It is a bash script that creates the nessesary files.
sh quickcryptosetup.sh
For the rest of the dependancies, you can run:
pip install -r requirements.txt
usage: authslime.py [-h] -n NUMBER [-g] [-v] [-r] [-i] [-s SLEEP]
Authslime CLI tool
options:
-h, --help show this help message and exit
-n NUMBER, --number NUMBER
Define how many authslime you would like to create
-g, --graph Pass this if you would like to view a graph
-v, --verbose Print authslime information and creation times
-r, --rare Rare Detector: prints information when a rare occurance happens
-i, --images Prints the authslime image in the img/ directory
-s SLEEP, --sleep SLEEP
Add static backoff (sleep timer) in seconds to wait after creation of each authslime
-
Create 10 authslime, displaying a graph to show their creation times. Print Authlimes to img/ directory
python3 authslime.py -n 10 -g -i -
Create 15 authslime, being verbose to see them get created. Wait one second after each authslime creation.
python3 authslime.py -n 15 -v -s 1 -
Create 20 authslime, printing when there's a rare item, while showing a graph
python3 authslime.py -n 20 -r -g -
Create 100 authslimes with a graph, verbose, rare detector, add images to img/ and omit images from DB.
python3 authslime.py -n 100 -g -v -r -i -ndi
Cryptographic operations - Each Authslime gets an X.509 certificate issued by the referenced CA (ca/ directory). After issuance of the X.509 certificate, the associated Authslime private key gets wrapped (encrypted) by a symmetric key, using the local source of entropy. The wrapping symmetric key gets encrypted by the keypair (keys/publickey.pem).
Keypair (keys/publickey.pem)
|
| (Encrypts)
V
SymKey
|
| (Encrypts)
V
PrivateKey(Assocaited with the AuthslimeCert)
1) Create Symmetric Key, IV
2) Encrypt Slime Private Key with Symmetric Key = wrappedprivatekey
3) Encrypt Symmetric Key with Public Key = wrappedsymkey
4) Store wrappedsymkey and wrappedprivatekey (Also aad/tag/iv)
To decrypt, use keys/privatekey.pem to decrypt symmetric key.
Use symmetric key to decrypt wrappedprivatekey. This is shown in the function decrypt_test() in x50slime.py
After image creation, this information gets put into the local SQLite database.
+-------------------+ +-------------------+
| Slime | | Keys |
+-------------------+ +-------------------+
| Slime ID (PK) | | |
| KeyID (FK) | -----> | KeyID (PK) |
| Version | | WrappedPrivateKey |
| Name | | PublicKey |
| Color | | Certificate |
| Template | | WrappedSymKey |
| AuthslimeImage | | IV |
+-------------------+ | AAD |
| Tag |
^ +-------------------+
|
+-------------------+
| Accessories |
+-------------------+
| SlimeID (FK) |
| AccessoryName |
+-------------------+
Here is a diagram of the flow:
