cpass is a terminal user interface for pass. It supports both vim-like keybindings and the mouse.

pass-git-helper is a git credential helper which uses pass, the standard unix password manager, as the credential backend for your git repositories. This is achieved by explicitly defining mappings between hosts and entries in the password store.

Pwgen generates passwords which can be easily memorized by a human.

Hashcat-utils are a set of small utilities that are useful in advanced password cracking. They all are packed into multiple stand-alone binaries. All of these utils are designed to execute only one specific function. Since they all work with STDIN and STDOUT you can group them into chains.

Pass OTP is an extension for password-store that allows adding one-time-password (OTP) secrets, generating OTP codes, and displaying secret key URIs using the standard otpauth:// scheme.

Libpwquality is a library for password quality checking and generation of random passwords that pass the checks.

Maskprocessor is a high-performance word generator with a per-position configureable charset.

This package provides a flexible and scriptable password generator which generates strong passphrases, inspired by XKCD 936.

This is a cracker for LUKS encrypted volumes. It can be used either in exhaustive mode to try every password given a charset or in dictionary mode to try every password contained in a file.

Rofi-pass provides a way to manipulate information stored using password-store through rofi interface:

1. open URLs of entries with hotkey;

2. type any field from entry;

3. auto-typing of user and/or password fields;

4. auto-typing username based on path;

5. auto-typing of more than one field, using the autotype entry;

6. bookmarks mode (open stored URLs in browser, default: Alt+x).

This package provides Wayland support by default.

pwsafe is a password manager originally designed by Bruce Schneier. It offers a simple UI to manage passwords for different services. There are other programs that support the file format on different platforms.

AWS Vault is a tool to securely store and access Amazon Web Services credentials.

AWS Vault stores IAM credentials in your operating system's secure keystore and then generates temporary credentials from those to expose to your shell and applications. It's designed to be complementary to the AWS CLI tools, and is aware of your profiles and configuration in ~/.aws/config.

Hashcat is an password recovery utility, supporting five unique modes of attack for over 200 highly-optimized hashing algorithms. Hashcat currently supports CPUs, GPUs, and other hardware accelerators on Linux, Windows, and macOS, and has facilities to help enable distributed password cracking.

CrackLib is a library containing a C function which may be used in a passwd-like program. The idea is simple: try to prevent users from choosing passwords that could easily be guessed (or "cracked") by filtering them out, at the source.

Passwdqc is a password/passphrase strength checking and policy enforcement toolset, including an optional PAM module, pam_passwdqc, command-line programs (pwqcheck, pwqfilter, and pwqgen), and a library, libpasswdqc.

Shroud is a simple secret manager with a command line interface. The password database is stored as a Scheme s-expression and encrypted with a GnuPG key. Secrets consist of an arbitrary number of key/value pairs, making Shroud suitable for more than just password storage. For copying and pasting secrets into web browsers and other graphical applications, there is xclip integration.

pwsafe is a command line tool compatible with Counterpane's Passwordsafe.

Browserpass is a browser extension for pass, a UNIX-based password store manager. It allows you to auto-fill or copy to clipboard credentials for the current domain, protecting you from phishing attacks.

This package only contains the Browserpass native messaging host. You must also install the browser extension for GNU IceCat or ungoogled-chromium separately.

YAPET is a text based password manager using the Blowfish encryption algorithm. Because of its small footprint and very few library dependencies, it is suited for installing on desktop and server systems alike. The text based user interface allows you to run YAPET easily in a Secure Shell session. Two companion utilities enable users to convert CSV files to YAPET and vice versa.

This library is a C/C++ implementation of the zxcvbn password strength estimator. It provides functions to rate password strength, by comparing the password to several word lists, including English first and last names.

This package provides an encrypted password manager, forked from the password-store package. Files are encrypted with the age encryption package with small explicit keys.

Makepasswd is a program that generates pseudo-random passwords of a desired length. It can also generate their corresponding hashes for a given encryption algorithm if so desired.

Pass-tomb provides a convenient solution to put your password store in a Tomb and then keep your password tree encrypted when you are not using it. It uses the same GPG key to encrypt passwords and tomb, therefore you don't need to manage more key or secret. Moreover, you can ask pass-tomb to automatically close your store after a given time.

Password-store is a password manager which uses GnuPG to store and retrieve passwords. The tool stores each password in its own GnuPG-encrypted file, allowing the program to be simple yet secure. Synchronization is possible using the integrated git support, which commits changes to your password database to a git repository that can be managed through the pass command.