Skip to content
/ SecurePasswordManager Public

A secure, offline-first password manager built with .NET 8 and Avalonia UI. Features AES-GCM encryption, local SQLite storage, zero-knowledge architecture, and a monochrome terminal-style interface.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sdm06/SecurePasswordManager

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

3 Commits
SecureVault.Linux
SecureVault.Linux
Β 
Β 
.gitignore
.gitignore
Β 
Β 
README.md
README.md
Β 
Β 
SecureVault.sln
SecureVault.sln
Β 
Β 

Repository files navigation

SecureVault

A secure, offline-first password manager built with .NET 8 and Avalonia UI. Features AES-GCM encryption, local SQLite storage, zero-knowledge architecture, and a monochrome terminal-style interface.

SecureVault πŸ”’

SecureVault is a lightweight, offline-first password manager built with .NET 8 and Avalonia UI. Designed for users who prioritize privacy and local control over cloud synchronization.

It features a high-contrast, monochrome "Terminal" aesthetic and military-grade encryption standards. image

πŸš€ Features

  • 100% Offline: Your passwords never leave your device. No cloud, no API, no tracking.
  • Zero-Knowledge: We cannot recover your data. If you lose your Master Password, your data is cryptographically inaccessible.
  • Strong Encryption: Uses AES-256-GCM (Galois/Counter Mode) for both encryption and data integrity verification.
  • Secure Storage: Data is stored in a local SQLite database using Salted PBKDF2 key derivation.
  • Cross-Platform: Runs natively on Linux (Arch/Debian/etc.), Windows, and macOS via Avalonia UI.
  • Built-in Generator: Includes a Cryptographically Secure Pseudo-Random Number Generator (CSPRNG) for creating strong passwords.
  • Clipboard Safety: One-click copy functionality.

πŸ›  Tech Stack

  • Framework: .NET 8 (LTS)
  • UI Library: Avalonia UI (MVVM Pattern)
  • Database: SQLite (via Entity Framework Core)
  • Crypto: System.Security.Cryptography (Native .NET libraries)

πŸ” Security Architecture

SecureVault uses industry-standard cryptographic primitives:

  1. Key Derivation: The Master Password is never stored. It is hashed using PBKDF2 (Rfc2898DeriveBytes) with a unique random Salt and 600,000 iterations (SHA-256) to derive the AES Key.
  2. Encryption: Data is encrypted using AES-GCM. This ensures that data cannot be read (Confidentiality) and has not been tampered with (Integrity).
  3. Randomness: All Salts, IVs (Nonces), and generated passwords use the OS-level CSPRNG (RandomNumberGenerator).

πŸ“¦ Installation & Setup

Prerequisites

Build from Source

# 1. Clone the repository
git clone https://github.com/sdm06/SecurePasswordManager.git
cd SecureVault

# 2. Restore dependencies
dotnet restore

# 3. Initialize the Database (First time only)
cd SecureVault.Linux
dotnet ef database update

# 4. Run the application
dotnet run

About

A secure, offline-first password manager built with .NET 8 and Avalonia UI. Features AES-GCM encryption, local SQLite storage, zero-knowledge architecture, and a monochrome terminal-style interface.

Topics

encryption dotnet password-generator sqlite password-manager avalonia decryption

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages