Skip to content

SecurePassManagement is a secure command-line tool that stores passwords and TOTP secrets in encrypted format. It supports password management, time-based one-time passwords (TOTP) for two-factor authentication (2FA), account search, and the ability to import/export credentials. Users can securely manage and generate TOTP codes.

License

Notifications You must be signed in to change notification settings

fam007e/SecurePasswd_MGMT

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

SecurePassManagement

Overview

SecurePassManager is a robust, command-line password manager and two-factor authenticator (TOTP) designed with security and ease of use in mind. It provides a secure solution for managing passwords and 2FA tokens locally, ensuring your sensitive data remains protected and easily accessible.

Version License

Table of Contents

  1. Features
  2. Requirements
  3. Installation
  4. Usage
  5. Security
  6. Project Structure
  7. Contribution
  8. License
  9. Disclaimer
  10. Support
  11. Acknowledgments

Features

  • Secure Password Management:
    • AES-256 encryption for all stored data
    • Add, retrieve, edit, and delete password entries
    • Search functionality for quick access to stored credentials
  • Two-Factor Authentication (TOTP):
    • Generate TOTP codes for 2FA-enabled accounts
    • Add and manage TOTP secrets
  • Data Portability:
    • Import and export password data securely
  • User-Friendly CLI: Intuitive command-line interface for all operations
  • Master Password Protection: Single point of access secured by a master password
  • Local Storage: All data stored locally for maximum privacy

Requirements

  • GCC compiler (version 7.5.0 or higher)
  • OpenSSL library (version 1.1.1 or higher)
  • liboath library (version 2.6.2 or higher)
  • POSIX-compliant operating system (Linux, macOS, etc.)

Installation

Prerequisites

Ensure you have the required libraries installed:

Ubuntu/Debian:

sudo apt-get install build-essential libssl-dev oathtool liboath0 liboath-dev

macOS (using Homebrew):

brew install gcc openssl oath-toolkit

Arch Linux:

sudo pacman -S gcc openssl oath-toolkit

Building from Source

  1. Clone the repository:

    git clone https://github.com/fam007e/SecurePasswd_MGMT.git
    cd SecurePasswd_MGMT
  2. Compile the project:

    make

The compiled binary securepass will be created in the project root directory.

Usage

Run the program:

./securepass

Follow the on-screen prompts to:

  • Set up your master password (on first run)
  • Add new passwords or TOTP accounts
  • Retrieve stored passwords
  • Generate TOTP codes
  • Import or export password data

Security

  • Encryption: AES-256 encryption for all stored data
  • Key Derivation: PBKDF2 with SHA-256 for secure key derivation from the master password
  • Memory Protection: Sensitive data is securely wiped from memory after use
  • No Network Access: All operations are performed locally without internet connectivity

For a detailed security analysis, see our Security Policy.

Project Structure

SecurePasswd_MGMT
├── CONTRIBUTION.md
├── data
│  └── README.md
├── lib
│  ├── liboath
│  │  └── oath.h
│  └── README.md
├── LICENSE
├── Makefile
├── README.md
├── SECURITY.md
└── src
   ├── csv_handler.c
   ├── csv_handler.h
   ├── encryption.c
   ├── encryption.h
   ├── main.c
   ├── totp.c
   ├── totp.h
   ├── utils.c
   ├── utils.h
   └── version.h

Contribution

We welcome contributions to SecurePassManager! Please read our Contribution Guidelines for details on our code of conduct and the process for submitting pull requests.

License

This project is licensed under the MIT License - see the LICENSE file for details.

Disclaimer

While SecurePassManager is designed with security as a top priority, no system can guarantee absolute security. Users are responsible for maintaining the confidentiality of their master password and for any risks associated with storing sensitive information.

Support

For bug reports, feature requests, or general requests:

  1. Search existing Issues on GitHub
  2. Open a new issue if your question remains unanswered

Acknowledgments

  • OpenSSL for cryptographic operations
  • liboath for TOTP functionality
  • All contributors who have helped improve this project

Thank you for choosing SecurePassManager. Your security is our priority!

About

SecurePassManagement is a secure command-line tool that stores passwords and TOTP secrets in encrypted format. It supports password management, time-based one-time passwords (TOTP) for two-factor authentication (2FA), account search, and the ability to import/export credentials. Users can securely manage and generate TOTP codes.

Resources

License

Security policy

Stars

Watchers

Forks

Packages

No packages published