Skip to main content

Deterministic password generation and password storage.

Project description


PyPI PyPI: supported Python Build status Code coverage Code style

A command line application for deterministic password generation and password storage.

Getting started

Install it using

pip install passthesalt

and start storing secrets with

pts add

How does it work?

Secrets are generated on the fly using the same secure algorithm each time which uses a master password and a description of the password. Only the description of the secret is stored. This means the secrets are not stored anywhere.

The generation algorithm is PBKDF2 using 2048 iterations of HMAC-SHA-256, applied to (full name + master password) as the key and the description as the salt.

Since sometimes you cannot choose your passwords the application also has provision to securely encrypt secrets with the master password.


The command-line interface has the following commands

add      Add a secret.
diff     Compare two stores.
edit     Edit a secret.
encrypt  Encrypt a secret.
get      Retrieve a secret.
ls       List the secrets.
mv       Relabel a secret.
pull     Retrieve a remote store.
push     Update the remote store.
rm       Remove a secret.

All commands and options are documented in the cli. You can use the --help option with any command.


This project is licensed under the MIT license (LICENSE or

Project details

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

passthesalt-3.2.2.tar.gz (16.7 kB view hashes)

Uploaded source

Built Distribution

passthesalt-3.2.2-py3-none-any.whl (18.0 kB view hashes)

Uploaded py3

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page