Top 23 Password Open-Source Projects

  • hashcat

    World's fastest and most advanced password recovery utility

    Project mention: Hashcat / JTR | | 2023-01-25
  • keepassxc

    KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.

    Project mention: Attacker with access to XML config can trigger keepass.exe to obtain passwords | | 2023-01-27

    Does it affect KeepPassXC[1] in any way? It's not the same program but they both use the same KDBX format.


  • Appwrite

    Appwrite - The Open Source Firebase alternative introduces iOS support . Appwrite is an open source backend server that helps you build native iOS applications much faster with realtime APIs for authentication, databases, files storage, cloud functions and much more!

  • KeeWeb

    Free cross-platform password manager compatible with KeePass

    Project mention: The quest for a family-friendly password manager | | 2023-01-02

    Per their README it seems it’s implemented into “KeeWeb”.

    KeeWeb is a free cross-platform password manager compatible with KeePass“

  • SuperTokens Community

    Open source alternative to Auth0 / Firebase Auth / AWS Cognito

    Project mention: I created Atomic: Self Hosted Open Source Alternative to Reclaim, Clockwise & Motion | | 2023-01-22
  • Probable-Wordlists

    Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

    Project mention: hashcathelper: Convenience tool for hashcat - crack NT hashes by taking LM hashes into account; generate analytics for cracked passwords; visualize "SamePassword" clusters in Bloodhound | | 2022-08-30

    Instead of using Crackstation as the source for passwords, I would recommend using the Probable Password Lists

  • john

    John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs

    Project mention: Wallet dat | | 2023-01-26
  • MacPass

    A native macOS KeePass client

    Project mention: Secrets Password Manager Questions | | 2022-04-24

    I recommend MacPass. It’s free on GitHub

  • Klotho

    AWS Cloud-aware infrastructure-from-code toolbox [NEW]. Build cloud backends with Infrastructure-from-Code (IfC), a revolutionary technique for generating and updating cloud infrastructure. Try IfC with AWS and Klotho now (Now open-source)

  • lesspass

    :key: stateless open source password manager

    Project mention: Are there local-storage password managers for Chrome? | | 2022-12-30

    You can always try

  • cupp

    Common User Passwords Profiler (CUPP)

    Project mention: How do you create your own wordlist in Kali Linux? | | 2022-07-03

    Check out Cupp git clone

  • h8mail

    Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

    Project mention: Tool for looking into information associated with an email address? | | 2022-12-08
  • passport-local

    Username and password authentication strategy for Passport and Node.js.

    Project mention: passport-local: Username and password authentication strategy for Passport and Node.js. | | 2022-10-06
  • staticrypt

    Password protect a static HTML page

    Project mention: Free Jekyll hoster with access control | | 2023-01-24

    Something like StatiCrypt

  • huge

    Simple user-authentication solution, embedded into a small framework.

    Project mention: What are the more unknown frameworks you ever used? | | 2022-02-17

    Panique's Huge, probably this 2.0-beta release from 2013.

  • SecretScanner

    :unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

    Project mention: Securing the software supply chain in the cloud | | 2022-12-10


  • node-argon2

    Node.js bindings for Argon2 hashing algorithm

    Project mention: Quick notes on cryptography for js devs | | 2022-12-20
  • accounts

    Fullstack authentication and accounts-management for Javascript.

  • mentalist

    Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat and John the Ripper.

    Project mention: How to brute force KeePassXC | | 2023-01-15

    To create the worldlist i used mentalist (it creates passwords with key words) or type it by hand

  • bruteforce-database

    Bruteforce database

  • Picocrypt

    A very small, very simple, yet very secure encryption tool.

    Project mention: any alternatives for kakasoft software? | | 2023-01-05
  • PasswordPusher

    🔐 A dead-simple application to securely communicate passwords over the web. Passwords automatically expire after a certain number of views and/or time has passed.

    Project mention: Getting Passwords from co-workers. | | 2023-01-25
  • awesome-iam

    👤 Identity and Access Management knowledge for cloud platforms

  • Strongbox

    A KeePass/Password Safe Client for iOS and OS X

    Project mention: Best practice for sharing databases | | 2023-01-18

    I'd done some poking around open issues (e.g. Hadn't see the KeeShare one, not familiar with that. Will look into it more, thanks for the pointer.

  • passcore

    A self-service password management tool for Active Directory

    Project mention: AD question | | 2022-08-21
  • InfluxDB

    Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Platform where developers build real-time applications for analytics, IoT and cloud-native services. Easy to start, it is available in the cloud or on-premises.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2023-01-27.

Password related posts


What are some of the best open-source Password projects? This list will help you:

Project Stars
1 hashcat 16,476
2 keepassxc 14,844
3 KeeWeb 11,407
4 SuperTokens Community 7,926
5 Probable-Wordlists 7,793
6 john 7,241
7 MacPass 6,450
8 lesspass 5,358
9 cupp 3,233
10 h8mail 3,043
11 passport-local 2,649
12 staticrypt 2,529
13 huge 2,133
14 SecretScanner 1,890
15 node-argon2 1,507
16 accounts 1,449
17 mentalist 1,441
18 bruteforce-database 1,140
19 Picocrypt 1,074
20 PasswordPusher 1,044
21 awesome-iam 997
22 Strongbox 995
23 passcore 950
Write Clean JavaScript Code. Always.
Sonar helps you commit clean code every time. With over 300 unique rules to find JavaScript bugs, code smells & vulnerabilities, Sonar finds the issues while you focus on the work.