KeePassXC Audit Report

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
Keepassxc Keepass password-manager Linux Windows

SurveyJS - Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App
With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.
surveyjs.io
featured
InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured

  • browserpass-extension

    Browserpass web extension

    • pass (passwordstore.org) backed by a remote git repo works well across Linux, Windows, macOS, iOS, and Android, as all of them have decent clients available and there is working browser integration for all popular browsers using browserpass (https://github.com/browserpass/browserpass-extension).

    The learning curve to understand all the moving pieces and the initial setup can be more hassle than many are willing to put up with, but after the initial legwork is done, adding new devices is not that much more complicated than what it is on paid services, and using it is as simple as any of the popular services, IMHO.

  • csync

    • I encrypt with gpg and upload the .xkdb file (itself already encrypted) to a server I have access to with scp.

    Not manually, and not only for this file: this is a system I have to sync the files I want in different machines, by running a little program I wrote (https://gitlab.com/jordibc/csync just in case). I would use syncthing otherwise, but this system has several advantages for me.

    If I hadn't access to an online server, I'd use some cloud storage for the same thing.

  • SurveyJS

    Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App. With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.

    SurveyJS logo

  • keepassxc

    KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.

    • database is locked though. See https://github.com/keepassxreboot/keepassxc/issues/7335 for progress on this issue

    Then again, the PDF mysteriously doesn't indicate which words are hyperlinked and so maybe I just didn't wave my cursor over enough words to find those references

    Also, because the outer blogpost didn't mention it (although it is in the actual PDF) the auditor is https://molotnikov.de/cv and it says they work for AWS as a Senior Security Architect. I didn't see anything especially C++ focused, but I guess any independent audit is better than none

  • Cameleonica

    Safe cryptographic steganographic advanced filesystem

    • RAM does not get wiped when you power off[1] and cold boot attacks[2] are possible.

    [1] https://github.com/arekbulski/Cameleonica/blob/master/docume...

    [2] https://www.usenix.org/legacy/event/sec08/tech/full_papers/h...

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • I Stopped Using Passwords. It's Great–and a Total Mess

    1 project | news.ycombinator.com | 10 Feb 2024

  • Will Plasma 6 still keep X11 compatibility?

    1 project | /r/kde | 8 Dec 2023

  • Help a noob out, please.

    1 project | /r/archlinux | 7 Dec 2023

  • andOTP

    2 projects | /r/androidapps | 23 Oct 2023

  • Potential Weaponizing of Honeypot Logs

    1 project | news.ycombinator.com | 2 Sep 2023