Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/avahowell/masterkey

secure interactive password manager with xchacha20poly1305, argon2id, and Go
https://github.com/avahowell/masterkey

cryptography interactive password-manager security unix vault

Last synced: 1 day ago
JSON representation

secure interactive password manager with xchacha20poly1305, argon2id, and Go

Host: GitHub
URL: https://github.com/avahowell/masterkey
Owner: avahowell
License: apache-2.0
Created: 2016-11-23T08:07:17.000Z (about 8 years ago)
Default Branch: master
Last Pushed: 2021-04-25T07:13:48.000Z (almost 4 years ago)
Last Synced: 2024-06-18T21:43:02.319Z (8 months ago)
Topics: cryptography, interactive, password-manager, security, unix, vault
Language: Go
Homepage:
Size: 9.9 MB
Stars: 275
Watchers: 20
Forks: 19
Open Issues: 2
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# masterkey

[![Go Report Card](https://goreportcard.com/badge/github.com/avahowell/masterkey)](https://goreportcard.com/report/github.com/avahowell/masterkey)
[![Build Status](https://travis-ci.org/avahowell/masterkey.svg?branch=master)](https://travis-ci.org/avahowell/masterkey)

![masterkey](img/screen.png?raw=True "screenshot")

masterkey is a simple, secure password manager written in Go. It uses `xchacha20poly1305` for authenticated encryption and `argon2id` for key derivation. It stores credentials given a `location`, where each credential is represented by a `Username` and a `Password`. Locations, Usernames, and Passwords are always encrypted using a argon2id key derived from the input passphrase. Unlike `password-store` and a few other password managers, an attacker with access to the encrypted database can not discern exactly how many passwords are stored, the labels (`locations`) for the passwords, or the usernames associated with the passwords.

## Example Usage

Install `masterkey` either by downloading a release or using `go get`:

`go get github.com/avahowell/masterkey`

Now create your vault, in this example we'll create it at `./vault.db`. New vaults are created using the `-new` flag, existing vaults can be opened by simplly omitting the `-new` flag.

Next, launch the terminal UI using `masterkey vault.db`, or use `masterkey -repl vault.db` to use the developer shell which has a bit more functionality.

Note that as with all password managers, your vault is only as secure as your master password. Use a strong, high entropy master password to protect your credentials.