首页 生产工具 CryptoPass

CryptoPass

用户数 : 391 分类 : 生产工具 扩展大小 : 21.48KiB 最后更新时间 : 2019-07-23 版本 : 1.12
prev extension banner next extension banner
                            Create strong passwords for different websites (or anything else) using a single secret key. If you lose your password for a website, you can regenerate it if you remember your secret key, username, and address of the web site. There's no need to remember or store multiple passwords if you can derive them from your master key.

How to use
----------------

1. Make up a secret master key (at least 16 characters for better security) and remember it. Keep it secret! You will use it every time you need to generate a password.

2. Click on the extension icon.

3. Enter your username for the website. It can be anything, you just need to remember it.

4. Enter URL of the website (it is prefilled).

5. Click a button: "Show" to generate and show password, or "Fill" to generate password and try to fill form on the current webpage with username and password (pressing Enter does "Fill").


Examples
--------------

For example, your secret key is: "my super secret" (do not actually use this, think of something better and longer)

Username: tester
URL: google.com

Your generated password will be: Juq5MzGrXU7zivT13MHdpXGzq 
Use it for your account.

Username: somebody_else
URL: twitter.com
Generated password: ydPFMc7isTa1mBlFOFiYSmjXV

Every time you enter "my super secret" plus "somebody_else" as username and "twitter.com" as URL, you will get exactly the same generated password as above.


Algorithm
--------------

password = base64(pbkdf2(secret, username@url))

PBKDF2 uses SHA-256 and 5000 iterations. Cuts password to specified length (25 by default).


Source code: https://github.com/dchest/cryptopass/

This extension doesn't use any web services, everything is done on your computer.

Warning for reasonably paranoid: there is a security risk in how Chrome handles autoupdates of extensions: if somebody gains access to Google servers or my developer account, they could put backdoor in this extension and re-upload it. You would get this modified version, and Chrome would not notify you. If you want to avoid this risk, use the source code linked above to install the extension on your own.

---

Unofficial Android versions (the author of this extension is not responsible for these apps):

CryptoPass: https://play.google.com/store/apps/details?id=krasilnikov.alexey.cryptopass

Simple CryptoPass: https://play.google.com/store/apps/details?id=no.haitech.simplecryptopass
                        
查看更多
下载 如何离线安装? Chrome store

分享

全部评论

    展开更多评论

    错误提示保存失败
    成功提示保存成功
    close
    qr-code

    为打击盗链困扰,本站已启用公众号验证
    微信扫码关注上方公众号,回复“插件”二字获得验证码,验证码5分钟内全站有效。

    正在验证
    验证成功
    下载遇到问题?请添加QQ群:398095333
    close
    qr-code

    为打击盗链困扰,本站已启用公众号验证
    微信扫码关注上方公众号,回复“脚本”二字获得验证码,验证码5分钟内全站有效。

    正在验证
    验证成功