Lesspass

LessPass is a stateless password manager that generates deterministic, site-specific passwords entirely on the client device. It uses a pure function to derive passwords from a master password combined with site details, producing the same output every time without storing any secrets on a server or requiring network access. This approach means passwords can be recalculated on any device from remembered inputs, with no database synchronization needed.

The project distinguishes itself through its counter-based password rotation, which allows changing a site's password by incrementing a counter while keeping the master password unchanged. It provides cross-platform client applications including a web interface, browser extensions, and an Android app, all performing password derivation locally. Users can save complex password profiles that store site-specific rules like character types and length, excluding the master password, to reuse settings across sessions without re-entering details.

For those who prefer full data control, LessPass supports self-hosted deployment of the password profile database using Docker and Docker Compose. The documentation covers installation through these client applications and the self-hosting setup.

Features

Stateless Password Managers - Generates and manages passwords using deterministic derivation without storing any secrets on a server or device.

Cross-Platform Applications - Ships cross-platform client applications including a web interface, browser extensions, and an Android app.

Offline - Creates passwords entirely on the device without requiring a network connection or database synchronization.

Deterministic Derivations - Recreates a password on demand from remembered inputs without needing to sync or store any password data.

Deterministic Derivations - Implements deterministic password derivation using a pure function that produces the same output from the same inputs.

Offline - Derives passwords entirely on the device without requiring network access or database synchronization.

Site-Specific Password Managers - Creates deterministic, unique passwords for each website using a master password and site identifier.

Counter-Based Rotations - Provides counter-based password rotation that generates new passwords without changing the master password.

Customizable Generations - Applies site-specific constraints like character types and length to the generated password.

Deterministic Derivations - Recreates the same password on any device without network access by using a pure function.

Offline - Generates passwords entirely on the client device without any network connection or database synchronization.

Counter-Based Rotations - Changes a site's password by incrementing a counter in the generation options, producing a different result.

Counter-Based Rotations - Increments a counter in the password profile to generate a new, unique password for the same site and login.

Client-Side Computations - Derives passwords entirely on the client device without requiring network access or database synchronization.

Profile-Based Configurations - Stores password generation settings excluding the master password to reuse rules across sessions.

Cross-Platform Password Clients - Provides a web interface, browser extensions, and an Android app for password access without syncing.

Password Access Restrictions - Provides password access through a web interface, browser extensions, and an Android app without syncing.

Cross-Device Password Access - Retrieves passwords across web, browser, and mobile clients without syncing or network dependency.

Counter-Based Password Rotations - Increments a counter to generate a new password for a site without changing the master password.

Password Profile Stores - Stores a password's profile, excluding the master password, to handle sites with specific character or length requirements.

Profile-Based Configurations - Stores site-specific password rules like length and character types to reuse them without re-entering details.

Profile-Based Configurations - Saves password generation settings excluding the master password to reuse rules across sessions.

Counter-Based Password Rotations - Increments a counter in the password options to generate a new password while keeping the master password unchanged.

Password Managers - Stateless password manager for secure credential generation.

lesspasslesspass

Features

Star history