SuperGenPass

SuperGenPass


SuperGenPass is a different kind of password manager: instead of randomly generating and storing passwords, it combines a Web site's domain and your master password to generate a unique password for each Web site you visit using a strong crypto hash.

This tool helps prevent cross-site password compromises by creating a different password for each site that you visit. A malicious or compromised site won't be able to use your password to get into any of your other accounts, as each password will be unique.

This is the same algorithm as the one used on http://supergenpass.com/ and is designed to integrate into the Android experience as much as possible.

You can launch SuperGenPass straight from the web browser by long-pressing on the URL bar→share page→SuperGenPass.

This app also includes a strong PIN generation algorithm. It's a slightly modified version of RFC4226 HOTP (modified to work with domains instead of numerical counters) and is designed to never generate easily-guessable pins, such as 1234, 0000, 1985, 8675309, or 0007.

This password generator is licensed under the GPLv3 (GNU GPL version 3).

Recent changes:
NOTE: for those having trouble on the Galaxy Tab, I'm still looking into it.

2.2.3: Major bugfix on PIN generation. If you generated a PIN using this app for a domain that contains a sub-domain (e.g. foo.example.org), the sub-domain was not properly stripped. This is now fixed so it works like SGP. To generate PINs in the same way as they were before this fix, disable domain checking in the Settings.
Add to list
Free
91
4.6
User ratings
221
Installs
10,000+
Concerns
0
File size
137 kb
Screenshots
Screenshot of SuperGenPass Screenshot of SuperGenPass Screenshot of SuperGenPass

About SuperGenPass
SuperGenPass is a different kind of password manager: instead of randomly generating and storing passwords, it combines a Web site's domain and your master password to generate a unique password for each Web site you visit using a strong crypto hash.

This tool helps prevent cross-site password compromises by creating a different password for each site that you visit. A malicious or compromised site won't be able to use your password to get into any of your other accounts, as each password will be unique.

This is the same algorithm as the one used on http://supergenpass.com/ and is designed to integrate into the Android experience as much as possible.

You can launch SuperGenPass straight from the web browser by long-pressing on the URL bar→share page→SuperGenPass.

This app also includes a strong PIN generation algorithm. It's a slightly modified version of RFC4226 HOTP (modified to work with domains instead of numerical counters) and is designed to never generate easily-guessable pins, such as 1234, 0000, 1985, 8675309, or 0007.

This password generator is licensed under the GPLv3 (GNU GPL version 3).

Recent changes:
NOTE: for those having trouble on the Galaxy Tab, I'm still looking into it.

2.2.3: Major bugfix on PIN generation. If you generated a PIN using this app for a domain that contains a sub-domain (e.g. foo.example.org), the sub-domain was not properly stripped. This is now fixed so it works like SGP. To generate PINs in the same way as they were before this fix, disable domain checking in the Settings.

Visit Website
User reviews of SuperGenPass
nice, since the mobile web version has gone goofy
Nov 11, 2010
Android Market Comments
A Google User
Mar 8, 2014
Simple, works Works perfectly on every device I have it installed on, generates the hashes just like SGP.com. Suggestion for future improvement: remember generated hash length per domain. I use default of 10, but the occasional site still has an 8 character limit.
A Google User
Jan 29, 2014
Great for quick passwords Handy for making quick passwords on the go. 5 stars if I can switch the generated pass length & salt/master passwd from main screen.
A Google User
Jan 26, 2014
Brilliant Been using for ages. Would have been PERFECT if the length field is on the main page.
A Google User
Dec 20, 2013
Perfect Very simple app, no permissions needed and does its job flawlessly
A Google User
Dec 17, 2013
Nice app Very useful and stable app. It would be better if master password could be remembered for session for example.