• Stars
    star
    115
  • Rank 305,916 (Top 7 %)
  • Language
    Python
  • License
    Do What The F*ck ...
  • Created about 9 years ago
  • Updated about 7 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Open Source Your Password (Mismanagement)!

GitPass - Open Source Your Password (Mismanagement)!

What?

GitPass is an Open Source Password Mismanager, using Military Strength Fernet Cryptography and High Availability Cloud Hosting Services

Features

  • MILITARY STRENGTH Fernet Cryptography!
  • Password history, thanks to the wonderful powers of Git!
  • Command Line Interface!
  • High Availabilty Cloud Hosting Service for Password Storage!
  • Notifies you when you should change your passwords! (Coming Soon!)
  • Free and Open Source Software!
  • Written in Python! Batteries are DEFINITELY included!
  • Unnecessary Amounts of Hyperbole!

How does it work?

You will need exactly two things for this to work.

  1. A Github Account
  2. Passwords to store

You run the program. On first run, you make a Master Password, and add credentials for your Github Account, along with the name of the repository you want to store your passwords in. The credentials are put in a JSON file and encrypted for future use using the Master Password, along with the repository name.

You then can start adding passwords to the program. These are stored in an encrypted JSON container (using your Master Password), and put into The Cloud by the Git Magicks into the Github Repository.

To retrieve passwords, you can "list", "retrieve", "add", "update", and "delete". You simply select the account you want to Mismanage, and manage away! It even notifies you on initialization if one of your passwords has not been changed in a while, and encourages you to update it!

It is advisable that you use a private repository for your keystore, however, it is mathematically improbable that, provided you choose good master password, the keystore can be cracked. Still, better safe than pwned!

Requirements

  • A computer with Python installed (only tested on GNU/Linux).
  • Half a brain cell
  • The following Python modules (which you can install via pip install -r requirements.txt

Screenshots

Initialization and help menu

initandhelp

Demo of List/Insert/Retrieve/Update functions

demolistetc

Cryptography

This project uses the Fernet encryption standard as implemented in the cryptography.io library. Fernet is a symmetric encryption algorithm using AES in CBC mode with a 128 bit key for encryption, using PKCS7 for padding. For more information about Fernet, consult the Fernet Spec Document. We have avoided the use of home-rolled crypto here, and went with a believed-to-be-safe set of primitives using a supposedly-safe encryption library. Audits are much appreciated.

Licence

Licenced under the WTFPL (do Whatever The Fuck you want Public Licence)

Beer?

Send yer cryptologically generated beer tokens to fuel further opensource software:
coinbase, for convenience, or the following bitcoin address: 13rZ67tmhi7M3nQ3w87uoNSHUUFmYx7f4V

Bug Reports and Feature Requests

Please submit all bug reports and feature requests to the Github Issue Tracker

Footnote

Those who cannot recognise parody when they see it are doomed to a miserable existance.

More Repositories

1

linux.mirai

Leaked Linux.Mirai Source Code for Research/IoC Development Purposes
C
554
star
2

CiscoRV320Dump

CVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit!
Python
224
star
3

ssh_keyscanner

ssh public host key scanner using shodan
Python
117
star
4

TheItalianJob

Uses Shodan to locate HackingTeam C&C Servers.
Python
78
star
5

apkpure_get

apkpure.com apk downloader
Python
54
star
6

shodan_key_checker

Quick script written for sorting and categorizing Shodan API keys acquired via scraping the internet.
Python
54
star
7

sebd-0.2

put this here because archival reasons.
C
28
star
8

EquationSmasher

NSA EquationGroup C&C Hunter using the Shodan API
Python
28
star
9

clypdown

Downloader for https://clyp.it
Python
26
star
10

irssi-shakespeare-insult

Shakespearean Insult generator script for IRSSI IRC client.
Python
11
star
11

transfer.py

Simple python client to upload files to the transfer.sh service
Python
10
star
12

mod_rootme

mod_rootme patched for apache 2.2
C
10
star
13

coinbase_checker

utility script to check and log coinbase balances
Python
10
star
14

hfsdump

Dump/Backup a "HFS" (HTTPFileServer) Server with no auth
Python
9
star
15

wargames

wargame/challenge solutions
Python
8
star
16

BritCrypt

Theresa May Approved Crypto for British Citizens
Perl
7
star
17

catfacts

Cat Facts SMS Sending Tool using Twilio API.
Python
6
star
18

hexchat-shakespeare-insult

Shakespearean Insult generator script for HexChat IRC client.
Python
6
star
19

encryption-to-magic

JavaScript
5
star
20

imgurup

Commandline Imgur Uploader
Python
5
star
21

0x27.github.io

Github Pages Site - 0x27.me
HTML
4
star
22

imgurscrot

imgur/scrot screengrabber/uploader
Python
4
star
23

metah

metaheuristike
JavaScript
2
star
24

relaycheck

Tool for checking the status and restarting my Tor relays
Python
2
star
25

mrw-code

Fork made to fix some bugs, upstream deleted their repo, so archiving. Original owner is @matthew1001
JavaScript
1
star
26

scripts

vps scripts
Shell
1
star
27

ctftrolol

Python
1
star
28

be-utils

utility scripts and such for working with the binaryedge platform
Python
1
star
29

surveilling.me

Surveilling.me - Tests routes you are using for surveillance equipment
CSS
1
star
30

Flowman

Workflow Manager
JavaScript
1
star
31

WikiMon

Monitors a MediaWiki Instance for page creation and deletion events in a loop
Python
1
star
32

Generator

Generator page for the website. Found at http://algorithm.tantium.org
JavaScript
1
star
33

twilightpam

Python-PAM 2-Factor Authentication using Twilio
Python
1
star
34

nasadmin

1
star