Google Authenticator - Two factor authentication

  •        1698

The Google Authenticator project includes implementations of one-time passcode generators for several mobile platforms, as well as a pluggable authentication module (PAM). One-time passcodes are generated using open standards developed by the Initiative for Open Authentication (OATH). These implementations support the HMAC-Based One-time Password (HOTP) algorithm specified in RFC 4226 and the Time-based One-time Password (TOTP) algorithm specified in RFC 6238.



Related Projects

otp - TOTP library for Go

One Time Passwords (OTPs) are an mechanism to improve security over passwords alone. When a Time-based OTP (TOTP) is stored on a user's phone, and combined with something the user knows (Password), you have an easy on-ramp to Multi-factor authentication without adding a dependency on a SMS provider. This Password and TOTP combination is used by many popular websites including Google, Github, Facebook, Salesforce and many others. The otp library enables you to easily add TOTPs to your own application, increasing your user's security against mass-password breaches and malware.

GoogleAuth - Google Authenticator Server side code

GoogleAuth is a Java server library that implements the Time-based One-time Password (TOTP) algorithm specified in RFC 6238. This library can be used by any developer who wants to add TOTP multi-factor authentication to a Java application and needs the server-side code to create TOTP shared secrets and verify TOTP passwords.

Google Authenticator TOTP C#

An implementation of Google's Authenticator in C# and WPF. It's a Time-based One-time Password (TOTP) described in RFC 6238. You could use it to implement two-factor authentication in your own .Net application.

notp - Node One Time Password library, supports HOTP, TOTP and works with Google Authenticator

Simple to use, fast, and with zero dependencies. The Node One Time Password library is fully compliant with HOTP (counter based one time passwords) and TOTP (time based one time passwords). It can be used in conjunction with the Google Authenticator which has free apps for iOS, Android and BlackBerry. Google authenticator requires that keys be base32 encoded before being used. This includes manual entry into the app as well as preparing a QR code URI.

Altairis OTP Authentication Library

Tools for implementing one time password authentication in .NET systems. Supports time-based (TOTP) or event-based (HOTP) passwords and is compatible with Google Authenticator technology.

FreeOTP - Two factor authentication

FreeOTP is a two-factor authentication application for systems utilizing one-time password protocols. Tokens can be added easily by scanning a QR code. If you need to generate a QR code, try our QR code generator.

credential - Easy password hashing and verification in Node

Easy password hashing and verification in Node. Protects against brute force, rainbow tables, and timing attacks.Employs cryptographically secure, per password salts to prevent rainbow table attacks. Key stretching is used to make brute force attacks impractical. A constant time verification check prevents variable response time attacks.

Devise - Flexible authentication solution for Rails with Warden

Devise is a flexible authentication solution for Rails based on Warden. It supports Database Authentication, Sends emails with confirmation instructions and verifies whether an account is already confirmed during sign in, Reset password and sends reset instructions, tracks sign in count, timestamps and IP address, Locks an account after a specified number of failed sign-in attempts and lot more.

Authenticator - Two-Factor Authentication Client for iOS

Authenticator is a simple, free, and open source two-factor authentication app. It helps keep your online accounts secure by generating unique one-time passwords, which you use in combination with your other passwords to log into supporting websites. The simple combination of the password in your head and the rotating passwords generated by the app make it much harder for anyone but you to access your accounts. If you open the .xcodeproj instead, the project will not be able to find its dependencies.

Out-of-band authentication via PAM

PAM module provides out-of-band (obc) authentication mechanism. pam_obc generates a one-time password and delivers it to the user via an arbitrary, user defined out-of-band channel.

KeypItSafe Password Vault

KeypItSafe Password Vault Easily and safely store your website passwords on your computer - or go mobile in just a few clicks! What is KeypItSafe? KeypItSafe is a free open source password manager that helps you store and manage all of your passwords securely on your ...

password-generator - Memorable password generator

Memorable password generator. For the command line, Node.js and browsers. Since v2.0.0 this library relies on cryptographic random values generated via crypto.getRandomValues. IE11 was the first IE version to include this method. Check for details.

zxcvbn - Low-Budget Password Strength Estimation

zxcvbn is a password strength estimator inspired by password crackers. Through pattern matching and conservative estimation, it recognizes and weighs 30k common passwords, common names and surnames according to US census data, popular English words from Wikipedia and US television and movies, and other common patterns like dates, repeats (aaa), sequences (abcd), keyboard patterns (qwertyuiop), and l33t speak.Consider using zxcvbn as an algorithmic alternative to password composition policy — it is more secure, flexible, and usable when sites require a minimal complexity score in place of annoying rules like "passwords must contain three of {lower, upper, numbers, symbols}".

Entry-Level C# Password Generator

The Entry-Level C# Password Generator is a piece of software written for two purposes. To be kept as simple as possible for newcomers to the langauge to understand how to use the language and to help people make a new secure password for themselves.

Titan - Command line password manager

Titan is a command line password manager. Titan uses OpenSSL library to perform the encryption. AES encryption is used with 256 bit keys. Password database is also protected from tampering by using a keyed-hash message autentication code (HMAC). Unique, cryptographically random initialization vector is used during the encryption. New initialization vector is generated each time the password database is encrypted.

cupp - Common User Passwords Profiler (CUPP)

The most common form of authentication is the combination of a username and a password or passphrase. If both match values stored within a locally stored table, the user is authenticated for a connection. Password strength is a measure of the difficulty involved in guessing or breaking the password through cryptographic techniques or library-based automated testing of alternate values. A weak password might be very short or only use alphanumberic characters, making decryption simple. A weak password can also be one that is easily guessed by someone profiling the user, such as a birthday, nickname, address, name of a pet or relative, or a common word such as God, love, money or password.

S/Key Generator for J2ME architecture

S/Key - OTP Generator for J2ME architecture. An RFC2289 compliant One-Time Password generator for mobile phone supporting Java language. It uses MD4 and MD5 hash algorithms.

rotp - Ruby One Time Password library

A ruby library for generating one time passwords (HOTP & TOTP) according to RFC 4226 and RFC 6238. ROTP is compatible with the Google Authenticator available for Android and iPhone.

Very Simple Password Generator

Simple password generator which has over 10,000 words and can do the following Capitilise the 1st letter Include random no Specify minimum length of word Use special charaters as part of the password. Reverse the password for greater strength.

Notebook PEA - Text Editor with Password Encryption

Password encryption tool with built-in text editor, to protect private notes. The program offers some styling and editing functionality for the text, a password generator, a password-strength meter and a virtual keyboard. The text is protected using authenticated encryption.