the cipher utility
$ ghm
usage: ghm [option]...
options:
-P progress
-V version
-X print authentication hex
-c int
cipher (1:AES-256-CTR, 2:ChaCha20) (default 1)
-d decrypt
-e int
security (0:1MB, 1:2MB, 2:4MB, 3:8MB, 4:16MB, 5:32MB, 6:64MB, 7:128MB, 8:256MB, 9:512MB, 10:1GB, 11:2GB, 12:4GB, 13:8GB, 14:16GB, 15:32GB, 16:64GB, 17:128GB, 18:256GB, 19:512GB, 20:1TB) (default 10)
-f overwrite
-h int
hash (1:SHA3-224, 2:SHA3-256, 3:SHA3-384, 4:SHA3-512, 5:SHA-224, 6:SHA-256, 7:SHA-384, 8:SHA-512, 9:SHA-512/224, 10:SHA-512/256) (default 6)
-i path
input path (default "/dev/stdin")
-k int
key derivation (1:HKDF, 2:Argon2id, 3:Scrypt) (default 2)
-o path
output path (default "/dev/stdout")
-p key
key
-s path
authentication path
-v verbose
-x hex
verify authentication hex
-z archive$ xp
usage: xp p > private.key # dh pair
xp x <private_hex> [public_hex] # dh exchange
xp x [public_hex] < private.key # dh exchange
xp g > private.key # dsa pair
xp s <message> <private_hex> > signature.bin # dsa sign
xp s <message> < private.key > signature.bin # dsa sign
xp s < private.key < message.bin > signature.bin # dsa sign
xp v <message> <public_hex> <signature_hex> # dsa verify
xp v <message> <public_hex> < signature.bin # dsa verify
xp v <public_hex> < signature.bin < message.bin # dsa verify