Description
A simple, powerful, cross-platform and military grade (marketing bs!) secure credential management.
Credman alternatives and similar packages
Based on the "Security" category.
Alternatively, view Credman alternatives based on common mentions on social networks and blogs.
-
Lean and Mean Docker containers
Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source) -
age
A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability. -
CertMagic
Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal -
memguard
Secure software enclave for storage of sensitive information in memory. -
acmetool
:lock: acmetool, an automatic certificate acquisition tool for ACME (Let's Encrypt) -
Coraza
OWASP Coraza WAF is a golang modsecurity compatible web application firewall library -
Themis by Cossack Labs
Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms. -
acra
Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL. -
ToRat
ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication -
dongle
A simple, semantic and developer-friendly golang package for encoding&decoding and encryption&decryption -
beelzebub
A secure low code honeypot framework, leveraging AI for System Virtualization. -
go-password-validator
Validate the Strength of a Password in Go -
firewalld-rest
A rest application to update firewalld rules on a linux server -
BadActor
BadActor.org An in-memory application driven jailer written in Go -
passlib
:key: Idiotproof golang password validation library inspired by Python's passlib -
teler-waf
teler-waf is a Go HTTP middleware that provides teler IDS functionality. -
simple-scrypt
A convenience library for generating, comparing and inspecting password hashes using the scrypt KDF in Go ๐ -
go-peer
A software library for creating secure and anonymous decentralized systems. Confirmed by theoretical works โ "Theory of the structure of hidden systems", "Monolithic cryptographic protocol", "Abstract anonymous networks", "Decentralized key exchange protocol". -
argon2pw
Argon2 password hashing package for go with constant time hash comparison -
goSecretBoxPassword
A probably paranoid Golang utility library for securely hashing and encrypting passwords based on the Dropbox method. This implementation uses Blake2b, Scrypt and XSalsa20-Poly1305 (via NaCl SecretBox) to create secure password hashes that are also encrypted using a master passphrase. -
go-generate-password
Password generator written in Golang, usable as a CLI or Go library. Provides options for human readable and accessibility friendly passwords. -
passwap
Package passwap provides a unified implementation between different password hashing algorithms. It allows for easy swapping between algorithms, using the same API for all of them. -
secureio
An easy-to-use XChaCha20-encryption wrapper for io.ReadWriteCloser (even lossy UDP) using ECDH key exchange algorithm, ED25519 signatures and Blake3+Poly1305 checksums/message-authentication for Go (golang). Also a multiplexer. -
sslmgr
A layer of abstraction the around acme/autocert certificate manager (Golang) -
argon2-hashing
A light package for generating and comparing password hashing with argon2 in Go -
goArgonPass
goArgonPass is a Argon2 Password utility package for Go using the crypto library package Argon2 designed to be compatible with Passlib for Python and Argon2 PHP. Argon2 was the winner of the most recent Password Hashing Competition. This is designed for use anywhere password hashing and verification might be needed and is intended to replace implementations using bcrypt or Scrypt. -
Go random string generator
Flexible and customizable random string generator
InfluxDB - Power Real-Time Data Analytics at Scale
* Code Quality Rankings and insights are calculated and provided by Lumnify.
They vary from L1 to L5 with "L5" being the highest.
Do you think we are missing an alternative of Credman or a related project?
Popular Comparisons
README
Credman
A simple, powerful, cross-platform and military grade (marketing bs!) secure credential management.
Features
- Stateless (doesn't keep passwords in memory for later use)
- Directly connect to ssh server using fields in given site (requires cygwin or a POSIX terminal emulator on windows)
- AES-CFB-256 and AES-CTR-256 with HMAC-SHA-256 authenticity and integrity check for profiles and files
- Standalone (single binary without any dependencies)
- Cross platform
- File encryption
- IPFS utilities and support (WIP)
- Multiple local profiles
- Multiple fields per site/serivce
- Auto generate a custom secure password
- Only one encrypted file per profile
that you can carry around!so it's portable! - Restoring profile's password in case you manage to forget it!
- Easy to use
- GraphQL interface for remotely interacting with credman daemon (WIP)
Install
Binary releases are available here. Make sure you add the binary's directory to your PATH.
Build from source
Requirements:
- Go +1.11
Run the following:
git clone https://github.com/ShrewdSpirit/credman
cd credman
./build.sh install
Notes
Credman works on Linux, RPi, OSX and all Windows versions (BSD should work, but I'll never test since I don't have the environment). You can use it on your Android device if you have a terminal emulator (Termux is recomended).
It requires 'xsel' or 'xclip' to be installed on Linux otherwise copy function will not work.
Basic commandline usage
First you must create a profile to store your sites in:
$ credman profile add "profile name"
It will prompt you for password. Enter a secure one and hit enter.
If it's the first profile you create, it will be set as default profile. You can add as many profiles as you want. Commands that deal with sites require you to specify a profile name with '-p' option. If it's not specified, default profile will be used.
Next step is to add a site/service:
$ credman site add "site name" --field=email="my email" --field=username="my username" --password-generate
OR
$ credman s a sitename -f=email='my email' -g
It will create a site inside default profile with email, username and an auto generated password.
You can use -p="profile"
to set a specific profile for site or omit to use default profile.
Site's fields are optional data that you can add to store extra stuff for each site.
All credman configs and profiles will be created at user's home directory under .credman directory.
Check credman help
or read docs for details on commands and encryption details
Issues
- Commandline output on windows console/ps doesn't show colors correctly
(blame windows)so I disabled them. - Password input doesn't work on windows git bash program idk why