Skip to content

foxhackerzdevs/FoxPipe

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
foxpipe.py
foxpipe.py
 
 
pyproject.toml
pyproject.toml
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

🦊 FoxPipe v1.9

Secure • Simple • Reliable Data Streaming

FoxPipe is a minimalist CLI tool for end-to-end encrypted, optionally compressed data transfer between two machines — no setup, no accounts, just a shared password.

🚀 Why FoxPipe?

Simple No servers, no login. Just run sender and receiver.

Efficient Built-in zlib streaming compression reduces bandwidth usage automatically.

Secure by Design Uses AES-256-GCM (AEAD) for encryption and Scrypt for strong key derivation.

Resilient Includes chunk limits, decompression guards, session validation, and timeouts.

📥 Installation

Install directly from PyPI:

pip install foxpipe

🛠️ Usage

1️⃣ Receiver (Destination)

Start this first:

foxpipe receive 8080 -p "secure-pass" > backup.sql

Allow external connections:

foxpipe receive 8080 -p "secure-pass" --public > backup.sql

2️⃣ Sender (Source)

cat backup.sql | foxpipe send 192.168.1.5 8080 -p "secure-pass"

📦 Advanced Usage

📁 Directory Transfer (Recommended)

# Sender
tar -cf - ./project | foxpipe send 1.2.3.4 9000 -p secret

# Receiver
foxpipe receive 9000 -p secret | tar -xf -

📄 Direct File Transfer

foxpipe send 1.2.3.4 8080 -p secret --file image.iso

🚫 Disable Compression

For already compressed files:

foxpipe send 1.2.3.4 8080 -p secret --file video.mp4 --no-compress

🔒 Security Model (v1.9)

  • Encryption: AES-256-GCM (authenticated encryption per chunk)
  • Key Derivation: Scrypt (N=2¹⁵, r=8, p=1)
  • Handshake Authentication: HMAC-SHA256
  • Session Binding: Random session ID prevents replay across sessions
  • Integrity & Authenticity: Provided by AES-GCM (AEAD)

⚠️ HMAC is used only for handshake authentication, not for data chunks.

⚠️ Safety Measures

  • Max Chunk Size: 10 MB
  • Session Timeout: 300 seconds (idle)
  • Connection Timeout: 15 seconds
  • Safe Streaming Decompression: Protects against zip-bomb style attacks
  • DoS Protection: Receiver enforces a global transfer limit (default 5GB). Adjust using --limit (e.g., --limit 100 for 100GB).

🧠 Design Notes

  • Uses streaming compression (single zlib stream)
  • Uses random nonce per chunk (safe for AES-GCM usage)
  • Uses constant-time HMAC comparison
  • Avoids buffering entire files → supports large transfers
  • Minimal protocol → low overhead, easy to audit

⚡ Quick Example

# Receiver
foxpipe receive 9000 -p pass --public > file.txt

# Sender
foxpipe send <IP> 9000 -p pass --file file.txt

⚠️ Limitations

  • Single connection only
  • No resume support
  • No file metadata (name/size handled externally)

🦊 Philosophy

Build simple tools that are hard to misuse and easy to trust.

About

Secure • Simple • Reliable data streaming via end-to-end encrypted Unix pipes.

foxhackerzdevs.github.io/FoxPipe/

Topics

python cli security devops compression encryption networking tcp sockets scrypt stdout sysadmin data-transfer aes-gcm file-transfer stdin end-to-end-encryption unix-pipe netcat-alternative secure-transfer

Resources

Readme

License

MIT license
Activity

Stars

4 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 10

v1.9 Latest
Apr 19, 2026
+ 9 releases

Packages

 
 
 

Contributors

Languages