I believe that security is of paramount importance, especially in this digital world. I created cotp because I needed a minimalist, secure, desktop accessible software to manage my two-factor authentication codes.
cotp is written with simplicity in mind, the interface is quite minimalist and intuitive as command line apps should be.
This program relies on only one database file, encrypted with XChaCha20Poly1305 authenticated encryption and Argon2id for key derivation.
You can import backups (or converted databases) from: - Aegis - andOTP - FreeOTP - FreeOTP+ - Authy - Google Authenticator - Microsoft Authenticator
Backup compatibility is growing (check planned features).
By typing cotp export you can export your database in unencrypted json format.
cotp can generate both TOTP and HOTP codes, compliant with rfc6238 and rfc4226 specifications. Also, it is possible to customize settings like HMAC algorithm and digits, to provide a good compatibility to other two-factor authentication systems.
You can install cotp through the Arch User Repository. Before beginning check you already have the required packages:
pacman -S git base-devel
Then choose how you want to proceed:
paru -S cotpManually cloning AUR repo and make the pkg
git clone https://aur.archlinux.org/cotp.git
cd cotp
makepkg -si
Before beginning check that you have the required build dependencies to use the rust compiler.
Windows compilation is supported with both of toolchains.
If you want to use x86_64-pc-windows-msvc you will need to install the Visual C++ 2019 Build Tools
It's possible to install cotp directly through cargo, as it's listed in the crates.io repository.
Just type cargo install cotp and wait for the installation.
You can build cotp using these commands:
git clone https://github.com/replydev/cotp.git
cargo install --path cotp/
If you are familiar with the command line interface using cotp will not be a problem. Just type cotp to enter the TUI dashboard.
In the first run you will be prompted to insert a password to initialize the database.
Please note that the software requires at least an 8 chars length password.
If you type cotp --help you get some instruction on how to use cotp utilities.
The interface is divided in subcommands, so if you type cotp <subcommand> --help you get options and flag relative to the subcommand you inserted.
You can copy the otp code of the element you selected by simply pressing enter. This is supported in Windows, macOS, X11 and Wayland.
Just type cotp add -l <label>, press Enter and insert the BASE32 Secret Key.
cotp also support HOTP codes, just add the --hotp flag the the --digits value.
Type cotp add --help to learn how to insert other settings.
You can edit your codes with the edit subcommand.
You must indicate the index of the code to be edited with the --index argument and then indicate the fields to be edited. If you want to modify also the secret of the code you must insert the flag -c.
To import Authy, Google Authenticator, Microsoft Authenticator and FreeOTP databases you need first to obtain the respective files in your phone in the paths:
- Authy: /data/data/com.authy.authy/shared_prefs/com.authy.storage.tokens.authenticator.xml
- Google Authenticator: /data/data/com.google.android.apps.authenticator2/databases/databases
- Microsoft Authenticator: /data/data/com.azure.authenticator/databases/PhoneFactor.
Take also PhoneFactor-wal, PhoneFactor-shm if they exist in the same folder.
- FreeOTP: /data/data/org.fedorahosted.freeotp/shared_prefs/tokens.xml
You may need root privileges to access these folders.
Once you got those files run the correct python script located in the converters/ folder in this source code:
python authy.py path/to/database.xml converted.json
It will convert the database in a json format readable by cotp. To finish import the database:
cotp import --authy --path path/to/converted_database.json
I created this project for my own needs, but I would be happy if this little program is useful to someone else, and I gratefully accept any contributions.