EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Add SSH/SFTP functionality to your Web applications


SecureBlackbox product diagram

Extend your PHP Web server by adding SSH and SFTP support to your Web applications!

SFTPBlackbox includes functions for adding SSH and SFTP functionality to your PHP Web servers and implementing secure file transfer functionality in your Web applications. SFTP class library implements secure file uploads and downloads, offering easy batch operations and allowing transferring and synchronizing entire directories to and from remote servers.

All these operations are carried out using the SFTP (SSH File Transfer Protocol), also called Secure File Transfer Protocol or Secure FTP.

The SFTP protocol is extends the SSH2 family of protocols, adding secure file transfers over the SSH channel. The SFTP protocol is an integral part of SSH2, and is supported by all SSH servers. Note that despite naming similarities, the SFTP protocol is completely unrelated to the FTP protocol or its secure extension, FTPS, which are defined by RFC 959. If you are looking for a set of PHP classes supporting FTP or FTPS, please check out our FTPS class library.

Download and try now

Download SecureBlackbox (PHP edition) including SFTPBlackbox

SFTPBlackbox (PHP edition, part of SecureBlackbox) is a collection of server-side functions and classes for using in PHP Web applications.

You can even build a lightweight SSH/SFTP server in PHP (stand-alone).

Why choose SFTPBlackbox

  • Standard-compliand implementation. Guaranteed to work with all SSH servers
  • Single-file and bulk transfers
  • Full directory uploads, downloads and synchronization
  • Typical tasks can be implemented in a matter of minutes using the ElSimpleSFTPClient class
  • Full control over SFTP and SSH layers available via ElSFTPClient and ElSSHClient classes
  • Build your own SFTP server using TElSFTPServer or TElSimpleSFTPServer class
  • Server-side class library with no external dependencies suitable for use in Web applications
  • Low-level functions available for manipulating files and directories on remote file system
  • Built-in compression and pipelining for maximum transfer speed
  • In addition to SFTP, SFTPBlackbox includes full SSH support at no extra charge
  • Free developer-level technical support available from the first day of evaluation
Check out the Comparison Table to discover how SecureBlackbox combines rich feature set with affordable price.
Plenty of sample code available for PHP.

Main features

  • Server-side and client-side functions for your PHP Web server
  • Supports wildcards and regular expressions for bulk file transfers question mark
  • Supports low-level file system operations question mark
  • Supports all standard SSH encryption algorithms including AES, Blowfish and Twofish question mark
  • Implements SSH key creation and management question mark
  • Royalty-free licensing question mark
  • Plenty of sample code available for PHP
  • Unlike free open source libraries, SecureBlackbox comes with developer-level technical support at no extra charge question mark
Check the complete list of features.



Read more about SFTPBlackbox

Compression gives an additional level of security and lets you increase transfer speed significantly and reduce the network load and storage space requirements.

Synchronous operation mode gives you a linear programming approach without complicated callback functions. This approach saves your development time and reduces the number of errors.

Asynchronous operation mode, on the other hand, gives you flexibility and complete control over your application communications.

Synchronous operation mode gives you a linear programming approach without complicated callback functions. This approach saves your development time and reduces the number of errors. Simple SecureBlackbox components can be used for reliable data transfer no matter what type of proxy or firewall is used to protect the network.
HTTPS proxy access includes support for Basic, Digest and Windows Integrated (NTLM) authentication mechanisms.
You can process huge files and not be bound by restrictions of 32-bit environments. This feature works on both 32-bit and 64-bit systems without any limitations. To limit and control network load and bandwidth consumption you can setup maximum upload and download speed for the data transfer components. Transport (SSL, FTP, HTTP, SMTP, POP3, IMAP, WebDAV, LDAP, SSH, SFTP) components can be used in IPv6 networks without any problems, address conversions or packet wrapping. Transport (SSL, FTP, HTTP, SMTP, POP3, IMAP, WebDAV, LDAP, SSH, SFTP) components understand and make use of non-latin domain names (so-called International Domain Names, IDN). In FIPS operation mode SecureBlackbox uses only certified CryptoAPI modules of Windows to perform any cryptographic operations.
FIPS mode is available only on Windows platform.
Virtual File System adapters let SecureBlackbox components, which operate with files, work with various backend file storages and not just with "physical" disk.
For example, in WebDAV, SFTP, HTTP(S) and FTP(S) servers you can provide a personal storage space for each connected user.
Out of the box file system adapter and SolFS virtual file system adapter are included and you can easily create your own adapter.
With DNSSEC support enabled you protect your socket connection from being fooled by possible DNS cache poisoning and other malicious DNS activities.
DNSSEC requires that the DNS record for the destination server contains a certified signature.
Distributed Crypto modules let web site visitors use certificates accessible only on the client system to sign the data, stored on the server (no need to download this data).
This is done with help of client-side modules (Java applet, ActiveX control, Flash applet), embedded into the web page.
Cryptographic hardware gains more and more popularity every day. If your software deals with X.509 certificates or PKI in general (RSA keys etc.), it is time to support cryptocards and USB tokens.
To use cryptographic hardware you need a license for PKIBlackbox.
SecureBlackbox was written from the ground up by EldoS developers. It doesn't use third-party code to implement its cryptographic functions. This means that you are not bound by CryptoAPI or OpenSSL version when you need to use certain algorithm.
At the same time it's possible to plug third-party security libraries and hardware modules by utilizing the pluggable architecture of SecureBlackbox.
No royalties means the licensing procedure which is clear and easy to understand and manage. Pay for the license once and use it for development and deployment with no other payments. We provide free technical support via web-based Forum and HelpDesk. Support is available for everyone, and the requests from clients who purchased a license are given priority. Also you can use our extensive knowledgebase. With SecureBlackbox you can create and convert SSH keys without the need for external key management software. SSHBlackbox package includes functions that let you generate and manage SSH keys in several formats. SecureBlackbox is the only component collection that lets you build SSH servers as well as SSH clients. Client-side components support connecting to old but still used SSH 1 servers as well as modern SSH 2 servers. With the wide choice of encryption, authentication and key exchange algorithms supported by SSHBlackbox, you will be able to meet the security requirements and get compatibility with the wide choice of differently configured servers and clients. SSH and SFTP protocols offer the number of very useful features, which don't actually require TCP transport. The protocols can be used with any low-level transport protocols, and SecureBlackbox makes this possible. SSH protocol can transport many connections of different types over one secured SSH connection. Tunnels are the types of simultaneous transport that you can use. It's handy to have an SFTP tunnel used in parallel with SSH shell tunnel so that you can transfer files and operate remote system at the same time.

SecureBlackbox supports all types of tunnels, defined by SSH protocol specification.

SSH protocol can transport many connections of different types over one secured SSH connection. Tunnels are the types of simultaneous transport that you can use. Ability to open and close connections on-the-fly extends your possibilities and adds flexibility to your application. SSH protocol can transport many connections of different types over one secured SSH connection. Tunnels are the types of simultaneous transport that you can use. Ability to create custom tunnel types (subsystems) extends your possibilities and adds flexibility to your application. Shell and command tunnels are used to execute commands on the remote system by using terminal / shell application (in shell tunnels) or by executing the commands directly (using command tunnels). Support for both types of tunnels adds flexibility to your application by letting you execute commands without parsing the shell prompts and extra messages or emulating a full-featured terminal. With extensive authentication support you can build multi-level authentication schemes, thus increasing security and reducing the risks when the sensitive resources are accessed. With SFTPBlackbox you don't need to care about the versions of SSH and SFTP protocols supported by the remote side. SFTPBlackbox lets you connect to any SSH/SFTP imlementation used nowadays.

SecureBlackbox is the only component collection that lets you build SSH / SFTP servers as well as SSH / SFTP clients.

With SFTPBlackbox you don't need to care about the versions of SSH and SFTP protocols supported by the remote side. SFTPBlackbox lets you connect to any SSH/SFTP imlementation used nowadays. Custom command support lets you extend the scope of operations, performed by the component in client-server environments, and execute your own commands over SSH channel. Custom commands must be supported by both sides of the communication. SFTP protocol itself doesn't include security (encryption and authentication are provided by SSH protocol, which is the carrier for SFTP), however it has a number of useful features, that make it a better choice for file transfer and remote file access, than common FTP protocol. This is why we made it possible to use SFTP components (both client and server) able to work without SSH layer. SFTP protocol is not just file transfer protocol. It also features operations with remote files and file systems, such as low-level random-access file read / write / block operations and more. SFTPBlackbox is the only component that provides support for full scope of low-level SFTP operations. With SFTPBlackbox you can retrieve and set wide range of file and directory attributes as defined by various versions of SFTP protocol specification. This includes Unix- and Windows-specific attributes as well as common file and directory attributes. Attribute manipulation can be needed both for file transfer and also when you create a full-featured SFTP client application. With SFTPBlackbox you can create and manipulate symbolic links and hard links. When you need more than just file upload function, this functionality will add value to your product. High-level file transfer methods save your development time and reduce the number of errors. ElSimpleSFTPClient keeps the simplicity of operations while providing full power of SSH protocol security features.

You can tune-up the component for connecting to various servers that implement SSH diferently. When you need to automate some operations without writing applications, SFTPBlackbox will work for you too by providing the component which you can call from Windows Scripting Host and other scripting engines.

|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!