Password Generator
Generates domain specific passwords
Password Generator
Update
Replaced MD5 with SHA2 as MD5 is broken .
Summary
A client side password generator.
Update: We have this for Android. https://play.google.com/store/apps/details?id=com.passgen.passwordgenrator
What is it
Its a chrome app to generate unique passwords for each site. Depending upon the domain and a master password a unique password is generated. It doesn't need any server and everything happens on the client side.
Why?
I want to use a unique password for each website. However, I don't want to use lastpass/1password as I find their interface confusing and overkill, and I don't want my password stored on remote servers.
I use a simple passwording scheme. I have one master password. For each site, I append the first two letters of the domain to master password and use that as the site password. This is sub-optimal as its easy to understand this scheme, if say two of my passwords are leaked.
I want to algorithmically generate the password on the client side, with a chrome app.
How does it work?
password_1 = SHA256(masterpassword+domain)
password = take_first_8_letters(password_1)
This will generate a per domain password with 8 characters of entropy and it depends only on master password and the domain.
In the UI side, it works like this:
You set your master password in the app.
You click the Chrome app button to generate a domain specific password. It generates the domain specific password and copies the password to clipboard.
You use the password to signup. Next time you want to login, you click the app to get the password.
Latest reviews
I highly recommend using this. 5 Stars.
I highly recommend using this. 5 Stars.
The passwords it generates are 4 bytes of hex, which can be brute forced almost instantly by anyone who cares to.
The passwords it generates are 4 bytes of hex, which can be brute forced almost instantly by anyone who cares to.
good programs
good programs
estou testando
So I was using this for a few months, and along comes heartbleed. So Now I have to change all my passwords. You can click on this thing all you want, but it doesn't generate a new password unless you change the master. It would be great if there were a short menu to click for "I need one special and one capitol letter in this one."
So I was using this for a few months, and along comes heartbleed. So Now I have to change all my passwords. You can click on this thing all you want, but it doesn't generate a new password unless you change the master. It would be great if there were a short menu to click for "I need one special and one capitol letter in this one."
Agreeing with previous reviewers, a good idea, just needs some customization. Length of password, allowed characters in password are the first that comes to mind.
Agreeing with previous reviewers, a good idea, just needs some customization. Length of password, allowed characters in password are the first that comes to mind.
Nice premise. I like the idea of providing a master password and having the same "random" password produced whenever I need it by using the domain as a salt for the SHA2 encryption. But the current implementation doesn't allow you to generate longer passwords or specify complexity parameters for sites that require more "secure" passwords.
Nice premise. I like the idea of providing a master password and having the same "random" password produced whenever I need it by using the domain as a salt for the SHA2 encryption. But the current implementation doesn't allow you to generate longer passwords or specify complexity parameters for sites that require more "secure" passwords.
I love this idea, though i would like add a suffix are a prefix to generated password. I just need help from you buddies that I need a compatible "android app" for this software, so I could use it everywhere.
I love this idea, though i would like add a suffix are a prefix to generated password. I just need help from you buddies that I need a compatible "android app" for this software, so I could use it everywhere.
