A secure local password manager
Project description
๐ Password Manager
A secure Password Manager built with Python that securely stores your passwords locally using strong encryption.
๐ Features
- Secure Storage: All passwords encrypted with Fernet symmetric encryption
- Password Management: Add, view, edit, and delete passwords
- Security Analysis: Password strength evaluation and suggestions
- Password Generator: Create strong, random passwords
- Master Password: Protect access with a master password
- Two-Factor Authentication: Additional security with TOTP (Time-based One-Time Password)
- Categorization: Organize passwords by category
- Security Audit: Find weak, reused, expired, or breached passwords
- Backup & Restore: Export/import functionality
- Password Expiration: Set expiry dates for passwords
- Command-Line Interface: User-friendly CLI with color formatting
- GUI Interface: Optional PyQt5 graphical interface
- Activity Logging: Track all important actions
๐ ๏ธ Installation
Option 1: Install from PyPI (Recommended)
The simplest way to install Secure Password Manager:
pip install secure-password-manager
After installation, you can run the application with:
# For the command-line interface
password-manager
# For the graphical interface
password-manager-gui
Option 2: Install from Source
-
Clone the repository:
git clone https://github.com/ArcheWizard/password-manager.git cd password-manager
-
Create and activate a virtual environment:
python3 -m venv venv source venv/bin/activate # On Windows: venv\Scripts\activate
-
Install the package in development mode:
pip install -e .
๐ก๏ธ Requirements
- Python 3.8+
- Core dependencies (installed automatically):
cryptography: For secure encryptionPyQt5: For the GUI interfacezxcvbn: For password strength analysispillow: For image processing- Additional dependencies as listed in
requirements.txt
๐ Project Structure
The project is organized into modules for maintainability and separation of concerns:
password-manager/
โโโ apps/ # Application code
โ โโโ __init__.py # Package initialization
โ โโโ app.py # CLI application entry point
โ โโโ gui.py # GUI application entry point
โโโ utils/ # Core utilities
โ โโโ auth.py # Authentication
โ โโโ backup.py # Import/export
โ โโโ crypto.py # Encryption/decryption
โ โโโ database.py # Database operations
โ โโโ interactive.py # CLI input utilities
โ โโโ logger.py # Logging facilities
โ โโโ password_analysis.py # Password evaluation
โ โโโ security_analyzer.py # Breach checking
โ โโโ security_audit.py # Security auditing
โ โโโ two_factor.py # 2FA implementation
โ โโโ ui.py # UI formatting
โโโ tests/ # Unit & integration tests
โโโ README.md # Project documentation
๐ธ Screenshots
Home Screen
Adding a Password
Editing a Password
Security Audit
Backup Options
Exporting Passwords
Importing Passwords
๐ How It Works
Security Model
This Password Manager uses a multi-layered security approach:
-
Master Password: Access to the application is protected by a master password that is never stored directly. Instead, a salted hash is stored using PBKDF2 with 100,000 iterations.
-
Encryption: All passwords are encrypted using Fernet symmetric encryption (AES-128 in CBC mode with PKCS7 padding).
-
Key Management: The encryption key is stored locally and is used for encrypting/decrypting the stored passwords.
-
Database: Passwords are stored in a local SQLite database, with the password values stored as encrypted binary data.
-
Backup Protection: When exporting passwords, the entire backup file is encrypted using the same strong encryption.
Data Flow
-
When adding a password:
- Password is encrypted using the local key
- Encrypted data is stored in the SQLite database
-
When viewing passwords:
- Encrypted data is retrieved from the database
- Each password is decrypted for display
-
When exporting passwords:
- All passwords are decrypted
- The entire password list is serialized to JSON
- The JSON is encrypted and written to a file
๐ Future Improvements
- โ Add a Master Password authentication
- โ Password strength evaluation and generator
- โ Unit tests for critical functions
- โ Backup and restore functionality
- โ Add a search function for passwords
- โ Add password categories/tags
- โ Add password expiration notifications
- โ GUI version (PyQT)
- โ Package available on PyPI
- Two-factor authentication
- Password history tracking
- Cross-platform desktop application (using PyInstaller)
- Docker support
๐จโ๐ป Author
- ArcheWizard โ GitHub Profile
๐ License
This project is licensed under the MIT License - see the LICENSE file for details.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file secure_password_manager-1.7.0.tar.gz.
File metadata
- Download URL: secure_password_manager-1.7.0.tar.gz
- Upload date:
- Size: 38.7 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
57d74ea4f417ab148cb8cd71c7211dbde784d698b1327f8d3e63d4edbb01fb80
|
|
| MD5 |
eed1cfb995fc15196171cff93cde68b2
|
|
| BLAKE2b-256 |
52d81e0101387254f7aad5657f0d6bb2aaadff67f61c9ca2989884f973d6385d
|
File details
Details for the file secure_password_manager-1.7.0-py3-none-any.whl.
File metadata
- Download URL: secure_password_manager-1.7.0-py3-none-any.whl
- Upload date:
- Size: 41.2 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
4feeed383f0219a6de350bd824263e8e0024b199cfebeea936e2801f29ffe4ed
|
|
| MD5 |
582216a2f393f9f65668ce2f6bdf333c
|
|
| BLAKE2b-256 |
eeddf2f3e4bda245d3e4b0fa1d7fe5449a4fa38ac0914e0375fec3c413cadd11
|
