Rofi-pass provides a way to manipulate information stored using password-store through rofi interface:

1. open URLs of entries with hotkey;

2. type any field from entry;

3. auto-typing of user and/or password fields;

4. auto-typing username based on path;

5. auto-typing of more than one field, using the autotype entry;

6. bookmarks mode (open stored URLs in browser, default: Alt+x).

pwsafe is a command line tool compatible with Counterpane's Passwordsafe.

YAPET is a text based password manager using the Blowfish encryption algorithm. Because of its small footprint and very few library dependencies, it is suited for installing on desktop and server systems alike. The text based user interface allows you to run YAPET easily in a Secure Shell session. Two companion utilities enable users to convert CSV files to YAPET and vice versa.

KeePassXC is a password manager or safe which helps you to manage your passwords in a secure way. You can put all your passwords in one database, which is locked with one master key or a key-file which can be stored on an external storage device. The databases are encrypted using the algorithms AES or Twofish.

Pass-coffin is a pass extension that hides the password store data inside a GPG encrypted file, which we'll call a coffin.

This package provides a git credential helper that queries Himitsu for credentials.

cpass is a terminal user interface for pass. It supports both vim-like keybindings and the mouse.

Passwdqc is a password/passphrase strength checking and policy enforcement toolset, including an optional PAM module, pam_passwdqc, command-line programs (pwqcheck, pwqfilter, and pwqgen), and a library, libpasswdqc.

This package provides a GTK prompter for Himitsu, used to request user consent for application access to stored secrets.

This package provides an encrypted password manager, forked from the password-store package. Files are encrypted with the age encryption package with small explicit keys.

AWS Vault is a tool to securely store and access Amazon Web Services credentials.

AWS Vault stores IAM credentials in your operating system's secure keystore and then generates temporary credentials from those to expose to your shell and applications. It's designed to be complementary to the AWS CLI tools, and is aware of your profiles and configuration in ~/.aws/config.

John the Ripper is a fast password cracker. Its primary purpose is to detect weak Unix passwords. Besides several crypt password hash types most commonly found on various Unix systems, supported out of the box are Windows LM hashes, plus lots of other hashes and ciphers. This is the community-enhanced, "jumbo" version of John the Ripper.

Libpwquality is a library for password quality checking and generation of random passwords that pass the checks.

pass-update extends the pass utility with an update command providing an easy flow for updating passwords. It supports path, directory and wildcard update. Moreover, you can select how to update your passwords by automatically generating new passwords or manually setting your own.

Makepasswd is a program that generates pseudo-random passwords of a desired length. It can also generate their corresponding hashes for a given encryption algorithm if so desired.

This is a cracker for LUKS encrypted volumes. It can be used either in exhaustive mode to try every password given a charset or in dictionary mode to try every password contained in a file.

secretsd is a generic backend for the libsecret API to use on headless systems or minimal desktop environments. It stores secrets in a sqlite database, encrypted using a AES key. The database key is stored in a regular file next to the database by default, but can be read from an external program.

assword is a simple password manager using GPG-wrapped JSON files. It has a command line interface as well as a very simple graphical interface, which can even "type" your passwords into any X11 window.

Hashcat-utils are a set of small utilities that are useful in advanced password cracking. They all are packed into multiple stand-alone binaries. All of these utils are designed to execute only one specific function. Since they all work with STDIN and STDOUT you can group them into chains.

Hashcat is an password recovery utility, supporting five unique modes of attack for over 200 highly-optimized hashing algorithms. Hashcat currently supports CPUs, GPUs, and other hardware accelerators on Linux, Windows, and macOS, and has facilities to help enable distributed password cracking.

Pass-tomb provides a convenient solution to put your password store in a Tomb and then keep your password tree encrypted when you are not using it. It uses the same GPG key to encrypt passwords and tomb, therefore you don't need to manage more key or secret. Moreover, you can ask pass-tomb to automatically close your store after a given time.

Shroud is a simple secret manager with a command line interface. The password database is stored as a Scheme s-expression and encrypted with a GnuPG key. Secrets consist of an arbitrary number of key/value pairs, making Shroud suitable for more than just password storage. For copying and pasting secrets into web browsers and other graphical applications, there is xclip integration.

Maskprocessor is a high-performance word generator with a per-position configureable charset.

Pwgen generates passwords which can be easily memorized by a human.