zedalaye · May 19, 2022 14:53
diff --git a/README.md b/README.md
diff --git a/protect_sensitive.rb b/protect_sensitive.rb
 #!/bin/env ruby

 file = ARGV[0]

 abort "Syntax: #{$0} <file>" if file.nil?
 abort "#{file} does not exist" unless File.exists?(file)

 require 'openssl'
 require 'base64'
 require 'json'

 cipher = OpenSSL::Cipher.new('aes-256-cbc')
 cipher.encrypt
 key = { key: cipher.random_key, iv: cipher.random_iv }

 buf = ''
 File.open(file + '.enc', 'wb') do |outf|
  File.open(file, 'rb') do |inf|
    while inf.read(4096, buf)
      outf << cipher.update(buf)
    end
    outf << cipher.final
  end
 end

 key.transform_values! { |v| Base64.encode64(v) }
 File.open('master.key', 'wb') do |f|
  f << key.to_json
 end

 File.rename(file, file + '.hidden')
diff --git a/public_class.rb b/public_class.rb
 class MyClass
    def self.hello
        puts "Hello World"
    end
 end
diff --git a/sample.rb b/sample.rb
 #!/bin/env ruby

 require_relative 'sensitive'

 require_relative 'public_class'
 require_sensitive 'sensitive_methods', 'master.key'

 puts MyClass.hello
 puts MyClass.sensitive if MyClass.respond_to?(:sensitive)
diff --git a/sensitive.rb b/sensitive.rb
 def require_sensitive(file, keyfile, outside_binding = binding)
  if File.exists?(file + '.rb')
    require_relative(file)
  elsif File.exists?(keyfile) && File.exists?(file + '.rb.enc')
    require 'openssl'
    require 'base64'
    require 'json'

    key = JSON.load_file(keyfile)
    cipher = OpenSSL::Cipher.new('aes-256-cbc')
    cipher.decrypt
    cipher.key = Base64.decode64(key['key'])
    cipher.iv = Base64.decode64(key['iv'])

    begin
    
        code = ''
        buf = ''
        File.open(file + '.rb.enc') do |f| 
        while f.read(4096, buf)
            code << cipher.update(buf)
        end
        code << cipher.final
        end

        eval(code, outside_binding, file)

    rescue OpenSSL::Cipher::CipherError
        # Ignore bad decrypt
    end
  end
 end
diff --git a/sensitive_methods.rb b/sensitive_methods.rb
 class MyClass
    def self.sensitive
        puts "I'm a sensitive method"
    end
 end
	#!/bin/env ruby

	file = ARGV[0]

	abort "Syntax: #{$0} <file>" if file.nil?
	abort "#{file} does not exist" unless File.exists?(file)

	require 'openssl'
	require 'base64'
	require 'json'

	cipher = OpenSSL::Cipher.new('aes-256-cbc')
	cipher.encrypt
	key = { key: cipher.random_key, iv: cipher.random_iv }

	buf = ''
	File.open(file + '.enc', 'wb') do \|outf\|
	File.open(file, 'rb') do \|inf\|
	while inf.read(4096, buf)
	outf << cipher.update(buf)
	end
	outf << cipher.final
	end
	end

	key.transform_values! { \|v\| Base64.encode64(v) }
	File.open('master.key', 'wb') do \|f\|
	f << key.to_json
	end

	File.rename(file, file + '.hidden')
	#!/bin/env ruby

	require_relative 'sensitive'

	require_relative 'public_class'
	require_sensitive 'sensitive_methods', 'master.key'

	puts MyClass.hello
	puts MyClass.sensitive if MyClass.respond_to?(:sensitive)
	def require_sensitive(file, keyfile, outside_binding = binding)
	if File.exists?(file + '.rb')
	require_relative(file)
	elsif File.exists?(keyfile) && File.exists?(file + '.rb.enc')
	require 'openssl'
	require 'base64'
	require 'json'

	key = JSON.load_file(keyfile)
	cipher = OpenSSL::Cipher.new('aes-256-cbc')
	cipher.decrypt
	cipher.key = Base64.decode64(key['key'])
	cipher.iv = Base64.decode64(key['iv'])

	begin

	code = ''
	buf = ''
	File.open(file + '.rb.enc') do \|f\|
	while f.read(4096, buf)
	code << cipher.update(buf)
	end
	code << cipher.final
	end

	eval(code, outside_binding, file)

	rescue OpenSSL::Cipher::CipherError
	# Ignore bad decrypt
	end
	end
	end
	class MyClass
	def self.sensitive
	puts "I'm a sensitive method"
	end
	end