https://github.com/lyubick/passha

Open Source Password Manager with SHA-2 and RSA algorithms in basis.
https://github.com/lyubick/passha

hash password password-generator password-manager rsa sha sha-512

Last synced: about 2 months ago
JSON representation

Open Source Password Manager with SHA-2 and RSA algorithms in basis.

• Host: GitHub
• URL: https://github.com/lyubick/passha
• Owner: lyubick
• Created: 2015-02-01T11:53:08.000Z (over 10 years ago)
• Default Branch: master
• Last Pushed: 2023-05-01T21:12:39.000Z (about 2 years ago)
• Last Synced: 2025-02-11T15:24:36.043Z (4 months ago)
• Topics: hash, password, password-generator, password-manager, rsa, sha, sha-512
• Language: Java
• Homepage:
• Size: 3.75 MB
• Stars: 1
• Watchers: 2
• Forks: 0
• Open Issues: 21
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# pasSHA

## Overview.

The purpose of this Project is to create perfectly safe **Password Manager and Generator** - *pasSHA*.

*pasSHA* allows User, while remembering **only one Password**, maintain different Passwords for all the WEB and beyond.

The main idea is that *pasSHA* will **NOT keep passwords** in any form, but generate them *on-the-fly*.

Existing alternative tools keep generated Passwords in encrypted files.

*pasSHA* is not keeping Passwords in any way (encrypted or not) and that gives assurance, if a file compromised and decrypted **NO information will be disclosed**.

### How *pasSHA* avoids keeping the Password directly?

**Step 1:** Tool uses **SHA-512** to get Hash Value from **User Password** (aka **Primary**).

**Step 2:** Tool generates random number **A** from *10* to *255*.

**Step 3:** Hash Value put through SHA-512 for **A** times. [Salt](http://en.wikipedia.org/wiki/Salt_%28cryptography%29) added to avoid overlapping.

**Step 4:** Final Hash Value used to generate all Passwords (aka **Secondary**).

**Finally:** Only value **A** kept in User file, to reproduce a key.

### How secure is it?

[This](https://www.youtube.com/watch?v=S9JGmA5_unY&ab_channel=3Blue1Brown) video shows how secure SHA-256 is. *pasSHA* uses next version, so more security.

### Are there additional secure measures?

Yes! User data encrypted using RSA-4096 (in version 3.0).

### What rules can be applied to Generated Passwords?

By default, Password will contain numbers and lower case characters. Additionally, user can switch on $peci@l Characters and UPPER CASE Characters.

### How strong are Generated Passwords ?

Generated Passwords are non-trivial. Most of the WEB sites, applications etc. recognizes passwords as strong.

### What languages does Tool supports ?

Currently, Tool support only English language.