KeePassium
google-authenticator
KeePassium | google-authenticator | |
---|---|---|
28 | 24 | |
1,089 | 4,501 | |
- | - | |
9.1 | 0.8 | |
28 days ago | over 3 years ago | |
Swift | Java | |
GNU General Public License v3.0 or later | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
KeePassium
- KeePassium – KeePass-compatible password manager for iOS
-
KeePass vs VaultWarden
Best KeePass iOS client: KeePassium (by far!)
-
FBI director Chris Wray said China has “a bigger hacking program than every other major nation combined and have stolen more of our personal and corporate data than all other nations—big or small—combined.”
For the paranoid, there's always KeePass + cloud storage, which is also free. It's what I use. I tend to use KeePassXC, a cross-platform KeePass-compatible application that works on Linux, Mac, and Windows, and I use Dropbox free for my cloud storage, since it actually has a Linux client that works, no hassles, right out of the box. I use KeePassium on my iPhone, and there are plenty of Android KeePass-compatible apps out there, such as KeePassDX, which is open-source and, apparently, very nice. I USED to use KeePass2Android, which the community seems to still like, but I'd probably be using KeePassDX these days since it's fully open-source and available through F-Droid.
- [Keepass] 2022: Meilleure application iOS Keepassium ou Strongbox?
- [Keepass] 2022: Beste iOS -App Keepium oder Strongbox?
-
Ask HN: How do you start over with 2FA and losing your phone?
I use KeepassXC password manager[1], it keeps my TOTP information and makes it available to use on all my devices. It syncs between my devices using Dropbox. Kepassium[2] makes it available on iOS, and Keepass2Android[3] makes it available on Android. It also manages my SSH keys and adds them to the ssh-agent, even on Windows. and houses a backup of my GPG keys. I even found that it can manage my credentials for use in scripts and git using git-credential-keepassxc[4].
Similar functionality can be had from 1Password[5], of you're into the more fancy experience. As a bonus this approach makes it very easy to store all those backup codes that dotp services often give you. Won't help your current predicament but will prevent it from happening again :)
1: https://keepassxc.org/
2: https://keepassium.com/
3: https://github.com/PhilippC/keepass2android
4: https://github.com/Frederick888/git-credential-keepassxc
5: https://1password.com/
-
A Definitive Password Manager Comparison
KeePassium - Commercial Open-Source Password Manager for iOS. Free tier available.
-
LastPass users: Your info and password vault data are now in hackers’ hands
For the first question: https://keepassium.com/
-
LastPass has confirmed that cybercriminals stole its customers’ encrypted password vaults
I used to use Keepassium last time I had an iPhone, which worked pretty well. You can just copy the database file over, and it never leaves your devices. I agree that you're probably fine with most services, but the extra peace of mind is worth managing a few files manually IMO
-
What are the must have apps for privacy (iOS specifically)
Keepassium is great too https://keepassium.com/ if you don't trust Bitwarden. Maybe Bitwarden could get hacked?
google-authenticator
-
GitHub will disable non-2FA accounts?
otpauth:// is a de-factor standard, since Google Authenticator uses it: https://github.com/google/google-authenticator/wiki/Key-Uri-...
-
Creating 2fa with pyotp
Random question if you're using TOTP why not just give the user the secret when signing up as a Google Authenticator URI encoded in a QR code? Then you won't need to futz around with sending it to them afterwards. You can even use a library like qrcode.js so you don't generate the barcode server side either.
- why are all the totp secrets different styles?
-
Locker: Store secrets on your local file system.
Locker can generate Time Based OTP codes parsing TOTP urls stored under a special key named totp.
-
Does changing an email that has TOTP setup affect the "secret"?
(Examples> https://github.com/google/google-authenticator/wiki/Key-Uri-Format)
- Google Authenticator open source fork archived
- TOTP tokens on my wrist with the smartest dumb watch
- LastPass gehackt, Nutzerdaten aber anscheinend sicher
- Is google authenticator Private & Secure (Trustworthy) enough to be used for 2StepVerification?
-
Twilio, the people who own Authy, got hacked
If we're talking about the encrypted Authy TOTP secrets and IF they get cracked or guessed, Authy does store the email in the name of the item. Having the name, service and the secret within the QR code's URI is normal and the standard for TOTP. The only thing the hackers won't have is the password.
What are some alternatives?
Strongbox - A KeePass/Password Safe Client for iOS and OS X
Aegis - A free, secure and open source app for Android to manage your 2-step verification tokens.
Bitwarden - The core infrastructure backend (API, database, Docker, etc).
pyotp - Python One-Time Password Library
KeeAnywhere - A cloud storage provider plugin for KeePass Password Safe
keepassxc - KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.
keepass2android - Password manager app for Android
ios-application - A native, lightweight and secure one-time-password (OTP) client built for iOS; Raivo OTP!
lockwise-android - Firefox's Lockwise app for Android
andOTP - [Unmaintained] Open source two-factor authentication for Android
two-factor-auth - Two Factor Authentication Java code implementing the Time-based One-time Password Algorithm