Skip to content

Latest commit

 

History

History
137 lines (124 loc) · 9.95 KB

README.md

File metadata and controls

137 lines (124 loc) · 9.95 KB

SimpleDiscordCrypt Extended

Discord message end-to-end client side encryption plugin with automatic key exchange. Also runs without BetterDiscord.

If you have Discord installed, use the installer (Alt+Click the link to download)
For mobile you should try the Kiwi Browser, it's Chromium based and supports extensions, such as Tampermonkey, with which you can install the userscript (see below).
Firefox is kind of supported but there is incompatibility because of https://bugzilla.mozilla.org/show_bug.cgi?id=1048931
To install it as a userscript (with Tampermonkey) or include the js file somehow else

Please do not download this plugin from untrusted sources, for example there is one in Chrome web store with the same name.

This is a fork of the original SimpleDiscordCrypt repository that aims to fix bugs and issues faster and to add more features. The original project by An0 can be found here.

Improvements over the original version

  • Manual updates => no trust required
  • Bugfixes
  • Less dependent on random image CDNs when loading icons
  • More embeds (e.g. Tenor)

Tips and Tricks

Right click on the lock icon to open the menu

If you would like to download an encrypted image, middle click on the image

You can toggle the encryption with the lock icon. You can also use the :ENC:, ENC or NOENC prefix at the start of your message, but prefixes are deprecated since Discord starts uploads before you even send your message.

If you want to change from one installation to another, export and import your database
If you would like to use the plugin on multiple devices; choose a main one, export the database from that and click on secondary when importing to others, after new key exchanges you'll have to repeat these steps

ECDH P-521 is used for the key exchange and AES256-CBC for the messages offering the equivalent security of 256-bits



Here is a link to the original DiscordCrypt for BetterDiscord users
It has been discontinued. The two versions are not compatible! SimpleDiscordCrypt also works with BetterDiscord installed.


Database

The database password is optional but the database isn't! The database stores stuff like your keys and channel settings.
You should only have one database as having multiple will mess things up. In order to manage this, you should keep backups by exporting your database.
If you are using multiple devices with the same account, select one as the main and import its database as secondary to the other(s).
If you import the database as secondary you can still export it and import it normally again. The difference is that a client with the secondary setting will ignore key exchanges, which means you have to update your secondary devices with the new database.

Cleaning the database You can paste these into the Ctrl+Shift+I console
SdcClearChannels(filterFunc)
deleteBefore = (now = new Date()).setMonth(now.getMonth() - 6);
SdcClearChannels((channel) => (
    //Number(channel.lastseen) ms precision unix timestamp
    //String(channel.descriptor) descriptor from the channel manager
    //Boolean(channel.encrypted) is the encryption toggled on

    channel.lastseen < deleteBefore && //not seen in 6 months
    /^DM with \d{17,20}$/.test(channel.descriptor) //name resolution failed

    //'true' return value deletes the record
));
SdcClearKeys(filterFunc)
deleteBefore = (now = new Date()).setMonth(now.getMonth() - 6);
SdcClearKeys((key) => (
    //Number(key.lastseen) ms precision unix timestamp
    //String(key.descriptor) descriptor from the key manager
    //Boolean(key.hidden) is the key hidden
    //String(key.type) one of ['GROUP', 'CONVERSATION'/*DM*/, 'PERSONAL']
    //Number(key.registered) when the key was added to the database

    key.lastseen < deleteBefore && //not seen in 6 months
    /^(?:DM key with \d{17,20}|\d{17,20}'s personal key)$/.test(key.descriptor)
    //name resolution failed if the id is used as name

    //'true' return value deletes the record
));

Keys

The things you use to encrypt messages (plus there is the database key for encrypting the plugin's local database)
You can select which key to use for the channel at the top, besides the lock icon.

Key Types

Personal key: Everyone has this (and it's different for everyone), you can use it to encrypt messages in channels where there are no other options.
It is shared with everyone you key-exchange with, so the security of it varies.
Group key: You can make these from the plugin's menu if you are in a guild channel.
It is advised that you change the name of the key right away to spot if someone accidentally generated a different key for your channel. You can do this in the Key Manager.
After generating the group key, you can use it in other channels too.
If you set a group key as hidden in the Key Manager it will no longer show up in your key selector and it won't be automatically shared with your friends.
If you really want to know if the other is using the same key as you, compare the first few characters (up to 16) of the encrypted message.
DM key: These keys are generated by a Diffie-Hellman key exchange between two users, it provides a secure connection over unsafe medium.

Key Exchanges

If the plugin comes across a message with a key that you don't have it will attempt to get that key by a key exchange with the message's sender.
You need to be able to DM the other user for the key exchange.
If a group key isn't set as hidden it will automatically be shared with a friend if they ask for it.
In order to share a key you need to establish a secure connection with an initial key exchange, it is usually automatic but you can start it manually from the menu by clicking on Start Key Exchange from the DM channel.
You can manually share keys by using the Share Keys menu option.
During a key share, the sharing party will suggest you channels to use so it's advised to not set anything for the channel (or toggle encryption) before you have the key for it.

Key Rotation and Trusted Keys

Use the SdcSetKeyRotation(7) console command to start a key rotation on the key of the current channel. This will periodically generate a new key and switch to it in all the channels that use the rotated key.
In the example above, it's every 7 days (by default this is aligned to arbitrary points so if you use the same command on your other primary devices within a day, it will do the same).
If the key is set to hidden, the new key will be hidden too.
Trusted Keys can be enabled in the Key Visualizer (in DM), this feature can be used to do automatic key exchange for hidden keys and/or rotated keys.
Keys shared with trusted keys can swap keys for channels automatically, which is useful for rotated keys.

Extras

You can click on an already enlarged image to further enlarge it, you can also drag the enlarged image if it doesn't fit the screen.
Use the arrow keys to navigate like a gallery when zoomed in.
You can use any emote (animated too) in encrypted messages.
Messages above 1600 characters will be compressed, but this feature might have incompatibilities with future versions. This also means that the messages can be 2000 character long if they are mostly made of normal characters.
For large audio and video files, you can use Mega, it automatically embeds.
The encryption is completely secure unless someone at Discord replaces your messages right when you secure your DMs, to make sure you have the right keys, you can use the Key Visualizer and compare your result with the other party.

Getting notifications on custom phrases This feature should be a good compensation for no searches and role mentions
Use the SdcSetPingOn(regexStr) console command to set the match string or regex for the extra pings
For example SdcSetPingOn('An0') will only ping if the message contains that exact word, SdcSetPingOn(/\bAn[0o]\b/i) will match every form of it
Sample regex for role mentions: /<@&(?:473998238156849152|474006463749160992)>/ you can get the role ids with \@Role in the chat



To uninstall, just delete it from %localappdata% and make new shortcuts.


𝘚𝘪𝘮𝘱𝘭𝘦𝘋𝘪𝘴𝘤𝘰𝘳𝘥𝘊𝘳𝘺𝘱𝘵
Or according to google: simple discord crypt

Trademarks

SimpleDiscordCrypt-Extended is released into the public domain according to the LGPL 3.0 license by the copyright holders.

Disclaimer: This repository and the used names "Discord", "Hammer & Chisel" in this project are not affiliated with or endorsed by Discord Inc., Hammer & Chisel Inc. or other third parties. This repository and the used name "Discord" are also not affiliated with any existing trademarks.

This repository does not infringe any copyright of proprietary software, as it only adds features to Discord on the end user's computer, without having any copyright-protected code or text included in this repository.