Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/andy-goryachev/passwordsafe

Cross platform password manager.
https://github.com/andy-goryachev/passwordsafe

argon2 bouncycastle cross-platform java linux password-manager security swing xsalsa20 xsalsa20poly1305

Last synced: about 1 month ago
JSON representation

Cross platform password manager.

Host: GitHub
URL: https://github.com/andy-goryachev/passwordsafe
Owner: andy-goryachev
License: apache-2.0
Created: 2015-02-14T00:14:18.000Z (almost 10 years ago)
Default Branch: master
Last Pushed: 2023-07-21T05:46:18.000Z (over 1 year ago)
Last Synced: 2023-07-21T06:29:12.182Z (over 1 year ago)
Topics: argon2, bouncycastle, cross-platform, java, linux, password-manager, security, swing, xsalsa20, xsalsa20poly1305
Language: Java
Homepage: http://goryachev.com/products/password-safe/index.html
Size: 86.2 MB
Stars: 15
Watchers: 3
Forks: 0
Open Issues: 4
Metadata Files:
- Readme: Readme.md
- License: LICENSE

Awesome Lists containing this project

README

# Passwørd Safe

A simple, secure password storage tool which allows you to keep all your passwords in one encrypted file.
For Windows, Mac, Linux, Solaris.

![alt text](https://github.com/andy-goryachev/PasswordSafe/raw/master/screenshots/screenshot.png "Screenshot")

### Why?

This application is inspired by Bruce Schneier's Password Safe program.

At first, I needed to have a cross-platform tool that I could run on Mac, Windows, and Linux.

Then I discovered that a SHA-256 hash of the stretched key in the original Password Safe file is provided in the clear. The documentation explains that it "is used to verify that the user has the correct passphrase". I am not so sure. I don't know if the opposition has rainbow tables or specialized hardware to brute force 256 bit hashes, but it feels like a backdoor. In any case, this goal that can be easily achieved in a more secure way by using, for instance, authenticated encryption.

Encrypted data file format: [EncryptionHandlerV4](src/goryachev/password/data/v4/EncryptionHandlerV4.java).
Encryption relies on a memory-safe [Bouncycastle](https://github.com/bcgit/bc-java) fork [MemSafeCrypto](https://github.com/andy-goryachev/MemSafeCrypto).

### Software Requirements

Requires Java 17+.

### License

This project and its source code is licensed under the [Apache License 2.0](http://www.apache.org/licenses/LICENSE-2.0) and you should feel free to make adaptations of this work. Please see the included LICENSE file for further details.

### Official Site

goryachev.com

### Project Status

[Release Notes](Release%20Notes.md)