DotNetExtras.Security 1.0.8

.NET 8.0 This package targets .NET 8.0. The package is compatible with this framework or higher. 
dotnet add package DotNetExtras.Security --version 1.0.8
                    


                    

                
NuGet\Install-Package DotNetExtras.Security -Version 1.0.8
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package. 
<PackageReference Include="DotNetExtras.Security" Version="1.0.8" />
For projects that support PackageReference, copy this XML node into the project file to reference the package. 
<PackageVersion Include="DotNetExtras.Security" Version="1.0.8" />
                    


                            Directory.Packages.props
                        

                    

                
<PackageReference Include="DotNetExtras.Security" />
                    


                            Project file
For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package. 
paket add DotNetExtras.Security --version 1.0.8
                    


                    

                
#r "nuget: DotNetExtras.Security, 1.0.8"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package. 
#:package DotNetExtras.Security@1.0.8
#:package directive can be used in C# file-based apps starting in .NET 10 preview 4. Copy this into a .cs file before any lines of code to reference the package. 
#addin nuget:?package=DotNetExtras.Security&version=1.0.8
                    


                            Install as a Cake Addin
                        

                    

                
#tool nuget:?package=DotNetExtras.Security&version=1.0.8
                    


                            Install as a Cake Tool

DotNetExtras.Security

DotNetExtras.Security is a .NET Core library that implements frequently used security operations.

Use the DotNetExtras.Security library to:

  • Generate random passwords.
  • Encrypt and decrypt data using the AES/Rijndael algorithm with 256-bit key and random salt.
  • Hash data and validate data hashes using secure SHA hashing algorithms and random salt.
  • Generate and validate JSON web tokens (JWT).
  • Convert objects to JSON strings with sensitive properties masked (using the System.Text.Json serialization).
  • Automatically mask sensitive object properties written to the logs (using the System.Text.Json serialization).

Usage

The following examples illustrates various operations implemented by the DotNetExtras.Security library.

DotNetExtras.Security.Password class

Generate a random password between 12 and 16 characters long.

string randomPassword = Password.Generate(12, 16);

DotNetExtras.Security.Crypto class

Encrypt and decrypt data using the AES/Rijndael algorithm with 256-bit key and random salt:

string plainText = "Hello, world!";
string password = "never-hard-code-passwords!";

// Encrypt the plain text using the password to generate the symmetric key and a random salt value.
string encrypted = Crypto.Encrypt(plainText, password)

// Decrypt the cipher text using the same password to get the original plain text.
string decrypted = Crypto.Decrypt(encryptedText, password);

DotNetExtras.Security.Hash class

Generate and validate hash values using the SHA-256 hashing algorithms and random salt:

string plainText = "Hello, world!";

// Use either option to generate the hash value.
// string hashText = Hash.Generate(HashType.SHA256, plainText);
// or
string hashText = plainText.ToHash(HashType.SHA256)

// Given the hash value, validate the plain text.
bool valid = Hash.Validate(HashType.SHA256, hashText, "Hello, World!")

DotNetExtras.Security.Jwt class

Generate and validate JSON web tokens (JWT):

string secret = "never-hard-code-passwords!";
string email = "joe.doe@sample.com";

int    tokenExpirationSeconds = 3600; // 1 hour

Jwt jwt = new(secret, tokenExpirationSeconds);

string token = jwt.Generate(email);

System.Security.Claims.ClaimsPrincipal principal = jwt.Validate(token);

// Extract the email claim from the validated principal.
string email2 = principal.FindFirst(ClaimTypes.Email)?.Value;

DotNetExtras.Security.Json.JsonExtensions class

Mask sensitive properties when serializing any objects to JSON via System.Text.Json:

User user = new()
{   
    UserName = "joe.doe",
    Password = "never-hard-code-passwords!",
    Email = "joe.doe@sample.com",
    PersonalData = new()
    {
        Ssn = "123-45-6789"
    }
};

string? json;

// Serialize the user object to JSON, 
// replacing the Password property value with null.
json = user.ToJson("Password");

// Serialize the user object to JSON, 
// replacing the Password and PersonalData.Ssn property values with "###".
json = user.ToJson("###", "Password", "PersonalData.Ssn");

// Serialize the user object to JSON, 
// masking the Password and PersonalData.Ssn property values
// with the asterisk characters,
// but leaving the first 2 and last 1 characters in plain text.
json = user.ToJson('*', 2, 1, "Password", "PersonalData.Ssn");

Mask sensitive properties when serializing your objects to JSON via System.Text.Json:

public class Demo
{
    // Value will be replaced with null.
    [Mask(null)]
    public string? Secret1 { get; set; }

    // Value will be replaced with an empty string.
    [Mask("")]
    public string? Secret2 { get; set; }

    // Value will be replaced with the literal string "***masked***".
    [Mask("***masked***")]
    public string? Secret3 { get; set; }

    // Value will be replaced with the asterisks
    // and two first and one last characters will be left in plain text.
    [Mask('*', 2, 1)]
    public string? Secret4 { get; set; }

    // Value will be replaced with the hex-encoded SHA-256 hash.
    [Mask(HashType.SHA256)]
    public string? Secret5 { get; set; }
}

Documentation

For complete documentation, usage details, and code samples, see:

Package

Install the latest version of the DotNetExtras.Security NuGet package from:

See also

Check out other DotNetExtras libraries at:

Product Compatible and additional computed target framework versions.
.NET net8.0 is compatible.  net8.0-android was computed.  net8.0-browser was computed.  net8.0-ios was computed.  net8.0-maccatalyst was computed.  net8.0-macos was computed.  net8.0-tvos was computed.  net8.0-windows was computed.  net9.0 was computed.  net9.0-android was computed.  net9.0-browser was computed.  net9.0-ios was computed.  net9.0-maccatalyst was computed.  net9.0-macos was computed.  net9.0-tvos was computed.  net9.0-windows was computed.  net10.0 was computed.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

NuGet packages

This package is not used by any NuGet packages.

GitHub repositories

This package is not used by any popular GitHub repositories.

Version Downloads Last Updated
1.0.8 0 9/12/2025
1.0.7 120 9/10/2025
1.0.6 162 8/29/2025
1.0.5 171 8/28/2025
1.0.4 174 8/28/2025
1.0.0 127 8/11/2025

Improved random password generator, updated dependencies.