---

---

1. Padloc? #

Simple, secure password and data management for individuals and teams. Padloc not only helps you remember all your passwords, but it also securely stores credit cards, notes, documents and more! It’s open source and end-to-end encrypted.

Lock away all your passwords, documents and other important information with this refreshingly simple password manager!

Features Offered by Padloc #

◆ DELIGHTFULLY SIMPLE ◆ #

As important as it is, we know that worrying about data security and password hygiene is about as much fun as doing your taxes. That’s why we made Padloc as beautiful, intuitive and dead simple to use as possible. No clutter, no distractions!

◆ EFFORTLESSLY PORTABLE ◆ #

Padloc is available on all major platforms and synchronizing your devices is fast and easy. We securely store your data in the cloud so you have access to it from anywhere, any time!

◆ TRANSPARENTLY SECURE ◆ #

Padloc believes that transparency and openness are the best foundation for trust so they are building Padloc completely out in the open. Their source code is developed under an open-source license so anyone can review it, provide feedback and even offer contributions at any time!

◆ BETTER TOGETHER ◆ #

If you Want to share your passwords and documents with your family or team members? No problem! Padloc makes it easy to share and manage your sensitive data within your family, business or any other kind of organization.

---

---

---

2. Buttercup Desktop #

> Buttercup for Desktop - Mac, Linux and Windows

About #

Buttercup is a free, open-source and cross-platform password manager, built on NodeJS with Typescript. It uses strong industry-standard encryption to protect your passwords and credentials (among other data you store in Buttercup vaults) at rest, within vault files (.bcup). Vaults can be loaded from and saved to a number of sources, such as the local filesystem, Dropbox, Google Drive or any WebDAV-enabled service (like ownCloud or Nextcloud ¹).

Why you need a password manager #

Password management is a crucial tool when you have any online presence. It’s vital that all of your accounts online use strong and unique passwords so that they’re much more difficult to break in to. Even if one of your accounts are breached, having unique passwords means that the likelihood of the attacker gaining further access to your accounts portfolio is greatly reduced.

Without a password manager, such as Buttercup, it would be very tedious to manage different passwords for each service. If you remember your passwords it’s a good sign that they’re not strong enough. Ideally you should memorise a primary password for your vault, and not know any of the account-specific passwords off the top of your head.

Precautions #

Buttercup securely encrypts your data in protected files, but this security is only as strong as the weakest component - and this is very often the primary password used to lock and unlock your vault. Follow these basic guidelines to ensure that your vault is safe even if exposed:

• Choose a unique password that is not used elsewhere
• Use a highly-varied set of different characters - such as alpha-numeric, symbols and spaces
• Use a long password - the longer the better
• Don’t include words or names in the password
• Never share your password with anyone

It is very important to note that no one associated with Buttercup will ever request your personal vault or its primary password. Do not share it or any of its related details with anyone. Developers or contributors working with Buttercup may request example vaults created via your system to try and reproduce issues, but please ensure to never use your real password or store actual credentails within such vaults.

Versions #

The current stable version is 2. We recommend upgrading if you’re still on v1, as it is no longer being actively maintained. You can still browse the v1 source and documentation here.

Operating Systems #

Buttercup Desktop is officially supported on:

• Most linux distributions (x64), such as Ubuntu
• MacOS (x64, non-ARM)
• Windows 10 (x64)

---

---

---

3. KeePassXC #

KeePassXC is a modern, secure, and open-source password manager that stores and manages your most sensitive information. You can run KeePassXC on Windows, macOS, and Linux systems. KeePassXC is for people with extremely high demands of secure personal data management. It saves many different types of information, such as usernames, passwords, URLs, attachments, and notes in an offline, encrypted file that can be stored in any location, including private and public cloud solutions. For easy identification and management, user-defined titles and icons can be specified for entries. In addition, entries are sorted into customizable groups. An integrated search function allows you to use advanced patterns to easily find any entry in your database. A customizable, fast, and easy-to-use password generator utility allows you to create passwords with any combination of characters or easy to remember passphrases.

Quick Start #

The QuickStart Guide gets you started using KeePassXC on your Windows, macOS, or Linux computer using pre-compiled binaries from the downloads page. Additionally, individual Linux distributions may ship their own versions, so please check your distribution’s package list to see if KeePassXC is available. Detailed documentation is available in the User Guide.

Features List #

KeePassXC has numerous features for novice and power users alike. Our goal is to create an application that can be used by anyone while still offering advanced features to those that need them.

Basic #

• Create, open, and save databases in the KDBX format (KeePass-compatible with KDBX4 and KDBX3)
• Store sensitive information in entries that are organized by groups
• Search for entries
• Password generator
• Auto-Type passwords into applications
• Browser integration with Google Chrome, Mozilla Firefox, Microsoft Edge, Chromium, Vivaldi, Brave, and Tor-Browser
• Entry icon download
• Import databases from CSV, 1Password, and KeePass1 formats

Advanced #

• Database reports (password health, HIBP, and statistics)
• Database export to CSV and HTML formats
• TOTP storage and generation
• Field references between entries
• File attachments and custom attributes
• Entry history and data restoration
• YubiKey/OnlyKey challenge-response support
• Command line interface (keepassxc-cli)
• Auto-Open databases
• KeeShare shared databases (import, export, and synchronize)
• SSH Agent integration
• FreeDesktop.org Secret Service (replace Gnome keyring, etc.)
• Additional encryption choices: Twofish and ChaCha20

---

---

---

4. Vault #

Vault is a tool for securely accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, and more. Vault provides a unified interface to any secret, while providing tight access control and recording a detailed audit log.

A modern system requires access to a multitude of secrets: database credentials, API keys for external services, credentials for service-oriented architecture communication, etc. Understanding who is accessing what secrets is already very difficult and platform-specific. Adding on key rolling, secure storage, and detailed audit logs is almost impossible without a custom solution. This is where Vault steps in.

The key features of Vault are:

• Secure Secret Storage: Arbitrary key/value secrets can be stored in Vault. Vault encrypts these secrets prior to writing them to persistent storage, so gaining access to the raw storage isn’t enough to access your secrets. Vault can write to disk, Consul, and more.

• Dynamic Secrets: Vault can generate secrets on-demand for some systems, such as AWS or SQL databases. For example, when an application needs to access an S3 bucket, it asks Vault for credentials, and Vault will generate an AWS keypair with valid permissions on demand. After creating these dynamic secrets, Vault will also automatically revoke them after the lease is up.

• Data Encryption: Vault can encrypt and decrypt data without storing it. This allows security teams to define encryption parameters and developers to store encrypted data in a location such as a SQL database without having to design their own encryption methods.

• Leasing and Renewal: All secrets in Vault have a lease associated with them. At the end of the lease, Vault will automatically revoke that secret. Clients are able to renew leases via built-in renew APIs.

• Revocation: Vault has built-in support for secret revocation. Vault can revoke not only single secrets, but a tree of secrets, for example, all secrets read by a specific user, or all secrets of a particular type. Revocation assists in key rolling as well as locking down systems in the case of an intrusion.

---

---

---

5. LessPass #

LessPass is a stateless password manager.

Stop wasting your time synchronizing your encrypted vault. Remember one master password to access your passwords, anywhere, anytime. No sync is needed.

---

---

---

6. Passwordcockpit #

Passwordcockpit is a simple, free, open source, self hosted, web based password manager for teams. It is made in PHP, Javascript, MySQL and it run on a docker service. It allows users with any kind of device to safely store, share and retrieve passwords, certificates, files and much more.

---

---

---

7. Bitwarden #

The core infrastructure backend (API, database, Docker, etc). The Bitwarden Server project contains the APIs, database, and other core infrastructure items needed for the “backend” of all bitwarden client applications.

The server project is written in C# using .NET Core with ASP.NET Core. The database is written in T-SQL/SQL Server. The codebase can be developed, built, run, and deployed cross-platform on Windows, macOS, and Linux distributions.

---

---

---

8. AuthPass #

AuthPass - Password Manager based on Flutter for all platforms. Keepass 2.x (kdbx 3.x) compatible. Free and Open Source password manager for Android, iOS, MacOS, Linux and Windows.

---

---

---

9. Clipperz #

Clipperz is a smart online vault where you can store confidential data without worrying about security. It can be used to save and manage passwords, private notes, burglar alarm codes, credit and debit card details, PINs, software keys, … Since passwords are the most common type of private information that you need to protect, we have added a great deal of functionality to make Clipperz a great online password manager. The open-source version of Clipperz is suitable for testing and educational purposes only.

As an example, the current PHP backend lacks several critical capabilities such as bot protection and concurrent session management, moreover, it could be vulnerable to serious threats (SQL injections, remote code execution, …).

Please note: the actual Clipperz service uses a far more robust backend, but the communication protocol between the backend and frontend is of course identical.

---

---

---

10. Passbolt #

Passbolt CE Backend, a JSON API written with Cakephp.Open source password manager for teams. Passbolt is an open source password manager for teams. It allows you to securely share and store credentials. For instance, the wifi password of your office, the administrator password of a router or your organization’s social media account passwords, all of them can be secured using passbolt.

Passbolt is different from the other password managers because:

1. It is primarily designed for teams and not individuals
2. It is free & open source
3. It is respectful of privacy
4. It is based on OpenPGP, a proven cryptographic standard
5. It is easy to use for both novices and IT professionals alike
6. It is extensible thanks to its RESTful API

---

---

---