You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 4-6.RSVP
Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

krptn

Package Overview
Dependencies
Maintainers
1
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

krptn

IAM and data encryption at rest

0.8.6
pipPyPI
Maintainers
1

Apache-2.0 Last Release status codecov

We also have a homepage and documentation for you to check out.

Krptn

pip install krptn

What problem do we solve?

We all love Django and other web frameworks! However, their primary focus is creating websites - not implementing secure storage for user data. Django makes it easy to store data. While it hashes the password, it does not encrypt user data for you. In case of a data breach, malicious actors could access any data from the DB. Encryption is left to the developer...

Wouldn't it be nice if encryption would also be handled? Perhaps it could be handled in a way that keys are derived from credentials, such that, without the user entering credentials, not even the database administrator can read it?! This is exactly what we do!

We also handle user authentication, including MFA, and passwordless authentication.

Krptn also runs in the same server instance as your web app. So you don't have to host anything new. Just install the extension for Python.

To prove that such is possible, we have a Flask and Django example on GitHub.

What do we do exactly?

We are building a user authentication and access management system (IAM) with data encryption at rest derived from credentials. It is available as a python extension module. However we have certain limitations.

How we achieve this?

  • All data is encrypted (any data can be requested by the developer to be secured)
  • Only the appropriate users' credentials can unlock the cryptosystem (this protects you from server-side attacks)

This gives you security from encryption without ever needing to even notice it! It protects you from server side attacks.

Here is an example usage:

from krypton.auth.users import userModel

model = userModel.standardUser(None)
model.saveNewUser("Test_UserName", "Test_Password")
model.data.email = "test@example.com" # The email will be encrypted, and securely stored

Krptn Visualisation

Try it out

Quickly install the package with pip for Python>3.9:

pip install krptn

Have a look at our User Authentication documentation, and create some users.

Ready to integrate it into your WebApp? Have a look at some of our integration's available with Django and Flask!

FAQs

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

TC39 Advances 11 Proposals for Math Precision, Binary APIs, and More

Security News

TC39 Advances 11 Proposals for Math Precision, Binary APIs, and More

TC39 advances 11 JavaScript proposals, with two moving to Stage 4, bringing better math, binary APIs, and more features one step closer to the ECMAScript spec.

By Sarah Gooding  -  Aug 06, 2025
Critical Vulnerability in NestJS Devtools: Localhost RCE via Sandbox Escape

Research

/

Security News

Critical Vulnerability in NestJS Devtools: Localhost RCE via Sandbox Escape

A flawed sandbox in @nestjs/devtools-integration lets attackers run code on your machine via CSRF, leading to full Remote Code Execution (RCE).

By Jonathan Leitschuh  -  Aug 01, 2025