ββββββ ββββ β ββββββ ββββββ βββ βββ ββββββ βββββββββ
ββ β ββ ββ β ββββ ββ βββ β ββββββ βββββββ ββββ βββ ββ
ββββ βββ ββ ββββββ β βββ βββ β βββ βββββββ βββββ ββββ ββ
βββ β ββββ βββββββββ βββββββββββ β ββββββββββββ ββ ββββ β
βββββββββββ βββββ βββββ βββββ ββββ β βββββββββ β β ββββ β
ββ ββ ββ ββ β β β ββ β ββ ββ ββββ βββββ ββββ β β β ββ
β β ββ ββ β ββ β β ββ β βββββ βββ ββ β β
β β β β β ββ β β β ββ ββ β
β β β β β β β β
β β β
==============================================================
To access our main server, please email us your hash so we can grant you access.
HASH : A95E0C74EA743324E8FDE710FD34BCB0D5D65B791CC1B21EE4A062BD66602D9E
IP : 104.244.77.14
PORT : 10101
CONTACT : hello@e-n-c-r-y-p-t.cc
Peer Connection Requirements:
|
|- For a peer to successfully connect to the system, its IP address must satisfy the following conditions:
| |-> Present in allowed_hashes.txt: The SHA-256 hash of the peer's IP address must be listed in the allowed_hashes.txt file.
| |-> Present in trusted_hashes.txt: The same SHA-256 hash must also be found in the trusted_hashes.txt file.
| |-> Both conditions must be met simultaneously. If the peer's IP hash is absent from either file, the connection will be denied.
|
|- This dual-check mechanism ensures that only trusted and explicitly allowed peers can establish a connection,
enhancing the security and integrity of the network.
==============================================================
π
A peer-to-peer application that securely exchanges random data between peers using TLS encryption.
==============================================================
π
Overview
This project implements a TLS-encrypted P2P communication system where each peer authenticates the other using a custom challenge-response mechanism based on X.509 certificates exchanged after the TLS handshake.
The system includes additional security and privacy features such as:
π Post-handshake certificate exchange (manual verification)
π‘οΈ Challenge-response authentication using public/private key cryptography
π Continuous transmission of random, obfuscated data to thwart traffic analysis and fingerprinting
π Support for asynchronous send/receive over secure TLS sockets
==============================================================
βοΈ
Key Features
1. π TLS Connection Setup
Establishes a secure TLS connection between peers.
Uses OpenSSL for encrypted transport.
After the TLS handshake completes, peers exchange their public certificates.
2. π Post-Handshake Certificate Exchange
Unlike typical TLS mutual authentication, certificates are exchanged after TLS is established.
Allows flexible certificate management without requiring TLS client authentication during handshake.
Peers send their certificates over the established TLS channel.
3. π Custom Challenge-Response Authentication
Once each peer has the other's certificate, it generates a random challenge (nonce).
The challenge is sent to the peer, who must sign it with its private key.
The signature is sent back and verified against the public key in the received certificate.
Only a peer that holds the private key corresponding to the public certificate can successfully authenticate.
4. π² Obfuscated Random Data Transmission
To prevent traffic analysis and timing attacks, peers continuously send randomly generated obfuscated data.
This data is indistinguishable from normal traffic but carries no meaningful payload.
Helps to mask communication patterns and defend against fingerprinting.
5. π¬ Communication Protocol
After successful mutual authentication, peers can securely exchange randomly generated obfuscated data.
==============================================================
ποΈ How it works
Peer A Peer B
βββββββββββββββββ βββββββββββββββββ
β TLS Handshake β <----------------------------> β TLS Handshake β
β (ClientHello) β β (ServerHello) β
βββββββββββββββββ βββββββββββββββββ
β β
β<----- Post-handshake certificate exchange ------->β
β β
β------------- Challenge (nonce) ------------------>|
β<------------ Challenge signature response --------|
β β
β Verify signature against peer's public key |
β β
β<----------- Secure, authenticated comm ---------->β
β β
β<------- Random obfuscated data streams ---------->β
Cypherpunks write code. We know that someone has to write software to defend privacy, and since we can't get privacy unless we all do, we're going to write it. We publish our code so that our fellow Cypherpunks may practice and play with it. Our code is free for all to use, worldwide. We don't much care if you don't approve of the software we write. We know that software can't be destroyed and that a widely dispersed system can't be shut down.
Made with β€οΈ in πΈπ°