keeweb / Kdbxweb
Licence: mit
Web Kdbx library
Stars: ✭ 322
Programming Languages
javascript
184084 projects - #8 most used programming language
Labels
Projects that are alternatives of or similar to Kdbxweb
Keepasswinhello
Quick unlock with Windows Hello for KeePass 2
Stars: ✭ 162 (-49.69%)
Mutual labels: password-manager, keepass
buttercup-importer
🎣 3rd-party archive importer for Buttercup
Stars: ✭ 39 (-87.89%)
Mutual labels: password-manager, keepass
Keepass2android
Password manager app for Android
Stars: ✭ 2,887 (+796.58%)
Mutual labels: password-manager, keepass
Keepass4web
An application that serves KeePass database entries on a web frontend
Stars: ✭ 115 (-64.29%)
Mutual labels: password-manager, keepass
ModernKeePass
KDBX password manager for the Windows Store
Stars: ✭ 29 (-90.99%)
Mutual labels: password-manager, keepass
Keeweb
Free cross-platform password manager compatible with KeePass
Stars: ✭ 10,587 (+3187.89%)
Mutual labels: password-manager, keepass
keevault
Kee Vault is a password manager for your web browser. Password databases (Vaults) are encrypted using the KeePass storage format before being sent to a remote server for synchronisation across any modern device/browser
Stars: ✭ 57 (-82.3%)
Mutual labels: password-manager, keepass
Tusk
🐘 🔒 KeePass-compatible browser extension for filling passwords.
Stars: ✭ 452 (+40.37%)
Mutual labels: password-manager, keepass
TinyKeePass
Another simple read-only KeePass Android app.
Stars: ✭ 44 (-86.34%)
Mutual labels: password-manager, keepass
sandpass
Password manager for Sandstorm
Stars: ✭ 26 (-91.93%)
Mutual labels: password-manager, keepass
Passhole
A secure hole for your passwords (KeePass CLI)
Stars: ✭ 108 (-66.46%)
Mutual labels: password-manager, keepass
keywi
Minimalistic Keepass plugin using Web Extensions and KeepassHTTP.
Stars: ✭ 33 (-89.75%)
Mutual labels: password-manager, keepass
Keepassdx
📱 KeePass implementation for android with material design and deluxe features
Stars: ✭ 1,395 (+333.23%)
Mutual labels: password-manager, keepass
Keepassxc
KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.
Stars: ✭ 11,623 (+3509.63%)
Mutual labels: password-manager, keepass
Authpass
AuthPass - Password Manager based on Flutter for all platforms. Keepass 2.x (kdbx 3.x) compatible.
Stars: ✭ 591 (+83.54%)
Mutual labels: password-manager, keepass
Pykeepass
Python library to interact with keepass databases (supports KDBX3 and KDBX4)
Stars: ✭ 231 (-28.26%)
Mutual labels: password-manager, keepass
Browser Addon
Kee adds free, secure and easy password management features to your browser which save time and keep your private data more secure.
Stars: ✭ 386 (+19.88%)
Mutual labels: password-manager, keepass
Keepassium
KeePass-compatible password manager for iOS
Stars: ✭ 445 (+38.2%)
Mutual labels: password-manager, keepass
KeePassHax
A tool to extract a KeePass master password from memory
Stars: ✭ 57 (-82.3%)
Mutual labels: password-manager, keepass
KeePassTouch
Ubuntu Touch Version of KeePass (QML & C++)
Stars: ✭ 20 (-93.79%)
Mutual labels: password-manager, keepass
KdbxWeb 
KdbxWeb is a high-performance javascript library for reading/writing KeePass v2 databases (kdbx) in node.js or browser.
Features
- runs in browser or node.js
- no native addons
- fast encryption with WebCrypto
- total ≈150kB with dependencies
- full support of Kdbx features
- protected values are stored in memory XOR'ed
- conflict-free merge support
- high code coverage
Browser support
- modern browsers: Chrome, Firefox, Safari, Opera, Edge
- node.js
Compatibility
Supported formats are Kdbx3 and Kdbx4, current KeePass file format. Old kdb files (for KeePass v1) are out of scope of this library.
Kdbx4
Kdbx4 has introduced Argon2, a new hashing function. Due to complex calculations, you have to implement it manually and export to kdbxweb, if you want to support such files. Here's how:
kdbxweb.CryptoEngine.argon2 = (password, salt,
memory, iterations, length, parallelism, type, version
) => {
// your implementation makes hash (Uint8Array, 'length' bytes)
return Promise.resolve(hash);
};
You can find implementation example in tests.
It's not compiled into the library because there's no universal way to provide a fast implementation, so it's up to you, to choose the best one.
Usage
Loading
let credentials = new kdbxweb.Credentials(kdbxweb.ProtectedValue.fromString('demo'),
keyFileArrayBuffer, challengeResponseFunction);
kdbxweb.Kdbx.load(dataAsArrayBuffer, credentials).then(db => ...);
kdbxweb.Kdbx.loadXml(dataAsString, credentials).then(db => ...);
Saving
db.save().then(dataAsArrayBuffer => ...);
db.saveXml().then(xmlAsString => ...);
You can also pretty-print XML:
db.saveXml(true).then(xmlAsString => ...);
File info
Header object fields
Meta object fields
db.header
db.meta
Changing credentials
kdbxweb.Kdbx.load(data, credentials).then(db => {
db.credentials.setPassword(kdbxweb.ProtectedValue.fromString('newPass'));
kdbxweb.Credentials.createRandomKeyFile().then(randomKeyFile => {
db.credentials.setKeyFile(randomKeyFile);
db.save();
});
});
Creation
let newDb = kdbxweb.Kdbx.create(credentials, 'My new db');
let group = newDb.createGroup(newDb.getDefaultGroup(), 'subgroup');
let entry = newDb.createEntry(group);
Maintenance
db.cleanup({
historyRules: true,
customIcons: true,
binaries: true
});
// upgrade the db to latest version (currently KDBX4)
db.upgrade();
// downgrade to KDBX3
db.setVersion(3);
// set KDF to AES
db.setKdf(kdbxweb.Consts.KdfId.Aes);
Merge
Entries, groups and meta are consistent against merging in any direction with any state.
Due to format limitations, p2p entry history merging and some non-critical fields in meta can produce phantom records or deletions,
so correct entry history merging is supported only with one central replica. Items order is not guaranteed but the algorithm tries to preserve it.
let db = await kdbxweb.Kdbx.load(data, credentials); // load local db
// work with db
db.save(); // save local db
let editStateBeforeSave = db.getLocalEditState(); // save local editing state (serializable to JSON)
db.close(); // close local db
db = kdbxweb.Kdbx.load(data, credentials); // reopen it again
db.setLocalEditState(editStateBeforeSave); // assign edit state obtained before save
// work with db
let remoteDb = await kdbxweb.Kdbx.load(remoteData, credentials); // load remote db
db.merge(remoteDb); // merge remote into local
delete remoteDb; // don't use remoteDb anymore
let saved = await db.save(); // save local db
editStateBeforeSave = db.getLocalEditState(); // save local editing state again
let pushedOk = pushToUpstream(saved); { // push db to upstream
if (pushedOk) {
db.removeLocalEditState(); // clear local editing state
editStateBeforeSave = null; // and discard it
}
Groups
let defaultGroup = db.getDefaultGroup();
let anotherGroup = db.getGroup(uuid);
let deepGroup = defaultGroup.groups[1].groups[2];
Group creation
let group = db.createGroup(db.getDefaultGroup(), 'New group');
let anotherGroup = db.createGroup(group, 'Subgroup');
Group deletion
db.remove(group);
Group move
db.move(group, toGroup);
db.move(group, toGroup, atIndex);
Recycle Bin
let recycleBin = db.getGroup(db.meta.recycleBinUuid);
if (!recycleBin) {
db.createRecycleBin();
}
Recursive traverse
group.forEach((entry, group) => { /* will be called for each entry or group */ });
Entries
Entry object fields
Entry.times fields
let entry = db.getDefaultGroup().entries[0];
entry.fields.AccountNumber = '1234 5678';
entry.fields.Pin = kdbxweb.ProtectedValue.fromString('4321');
Entry creation
let entry = db.createEntry(group);
Entry modification
// push current state to history stack
entry.pushHistory();
// change something
entry.fgColor = '#ff0000';
// update entry modification and access time
entry.times.update();
// remove states from entry history
entry.removeHistory(index, count);
Important: don't modify history states directly, this will break merge.
Entry deletion
db.remove(entry);
Entry move
db.move(entry, toGroup);
If you're moving an entry from another file, this is called import:
db.importEntry(entry, toGroup, sourceFile);
ProtectedValue
Used for passwords and custom fields, stored the value in memory XOR'ed
let value = new kdbxweb.ProtectedValue(xoredByted, saltBytes);
let valueFromString = kdbxweb.ProtectedValue.fromString('str');
let valueFromBinary = kdbxweb.ProtectedValue.fromBinary(data);
let textString = value.getText();
let binaryData = value.getBinary();
let includesSubString = value.includes('foo');
Errors
kdbxweb.Kdbx.load(data, credentials).then(...)
.catch(e => {
if (e.code === kdbxweb.Consts.ErrorCodes.BadSignature) { /* ... */ }
});
Consts
kdbxweb.Consts.ErrorCodes // all thrown errors have code property
kdbxweb.Consts.Defaults // default db settings
kdbxweb.Consts.Icons // icons map
Random
let randomArray = kdbxweb.Random.getBytes(/* desired length */ 100);
ByteUtils
kdbxweb.ByteUtils.bytesToString(bytes);
kdbxweb.ByteUtils.stringToBytes(str);
kdbxweb.ByteUtils.bytesToBase64(bytes);
kdbxweb.ByteUtils.base64ToBytes(str);
kdbxweb.ByteUtils.bytesToHex(bytes);
kdbxweb.ByteUtils.hexToBytes(str);
Building
Use npm to build this project:
> npm run build
> npm run build:debug
To run tests:
> npm test
3rd party libs
kdbxweb includes these 3rd party libraries:
See it in action
This library is used in KeeWeb
Extras
We also provide a template for HexFiend to explore the contents of KDBX files, you can find it here.
License
MIT
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].