HashPass

HashPass deterministically generates secure passwords by combining your master password with a unique slug, e.g. the name of the service the password is for.

There are currently three interfaces: a command-line program, a GUI, and a web app.

Using the command line program

Usage: hashpass [options] [<website>]

If you provide <website>, HashPass will prompt you for your master password and output the generated password to your clipboard. If you didn't, it ask continuously for website names until you kill it.

Options:

-s --show Display the password instead of putting it in the clipboard

If this is the first time using HashPass on this computer, it will ask you for your master twice, to confirm it's correct and save the hash securely on disk, to prevent future typos.

Using the web app

I am hosting it on https://jesskenney.com/hashpass. You can host it yourself by simply serving the web/ directory (it's completely static). If you serve it over HTTP instead of HTTPS it will give a big ugly warning.

How does it work / why is this a good idea / etc?

See manifesto.md for a full explanation of the algorithm and why it's secure.

Running the tests.

To run the tests for the python client run:

python tests.py

To run the tests for the web client run visit web/tests.html.

Name		Name	Last commit message	Last commit date
Latest commit History 141 Commits
web		web
.gitignore		.gitignore
README.md		README.md
agent.py		agent.py
agent_client.py		agent_client.py
alg.py		alg.py
cliptime.sh		cliptime.sh
hashpass		hashpass
hashpass-gui.py		hashpass-gui.py
hashpasslib.py		hashpasslib.py
manifesto.md		manifesto.md
pinentry.py		pinentry.py
requirements.txt		requirements.txt
sha1it.py		sha1it.py
socksend.py		socksend.py
tests.py		tests.py

seveneightn9ne/hashpass

Folders and files

Latest commit

History

Repository files navigation

HashPass

Using the command line program

Using the web app

How does it work / why is this a good idea / etc?

Running the tests.

About

Resources

Stars

Watchers

Forks

Languages