IronDome 1.0.5__tar.gz

irondome-1.0.5/IronDome.egg-info/PKG-INFO

@@ -0,0 +1,330 @@
+Metadata-Version: 2.4
+Name: IronDome
+Version: 1.0.5
+Summary: Iron Dome - A secure CLI password manager with AES-256 encryption and zero-knowledge architecture
+Author: King Hippopotamus
+License: GPL-3.0-only
+Project-URL: Homepage, https://github.com/TheKingHippopotamus/IronDome-Bunker
+Project-URL: Repository, https://github.com/TheKingHippopotamus/IronDome-Bunker
+Project-URL: Issues, https://github.com/TheKingHippopotamus/IronDome-Bunker/issues
+Keywords: password,manager,security,encryption,cli
+Classifier: Development Status :: 4 - Beta
+Classifier: Environment :: Console
+Classifier: Intended Audience :: End Users/Desktop
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.8
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Classifier: Topic :: Security
+Classifier: Topic :: Security :: Cryptography
+Classifier: Topic :: Utilities
+Requires-Python: >=3.8
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: cryptography>=36.0.0
+Dynamic: license-file
+
+# Secure CLI Password Manager | Cybersecurity
+& Python Engineering
+
+A professional-grade, secure password management system that allows you to create, store, and manage passwords locally with multiple layers of encryption. All data is stored locally with advanced encryption, ensuring your sensitive information never leaves your device.
+
+## Table of Contents
+- [Features](#features)
+- [Installation](#installation)
+- [Usage](#usage)
+- [Security Architecture](#security-architecture)
+- [Directory Structure](#directory-structure)
+- [Advanced Usage](#advanced-usage)
+- [Security Best Practices](#security-best-practices)
+- [Technical Details](#technical-details)
+- [Requirements](#requirements)
+- [License](#license)
+- [Screenshots and Demo](#screenshots-and-demo)
+
+## Features
+
+### Security Features
+- **Military-grade AES-256 encryption** via Fernet symmetric encryption
+- **Zero-knowledge architecture** - your master password is never stored, only a salted hash
+- **Protection against brute force attacks** with adaptive account lockouts
+- **Hardware-linked encryption** with machine-specific key derivation
+- **Session protection** with automatic timeout after inactivity
+- **Secure credential storage** with separate master username/password handling
+- **File isolation** with sensitive data stored in a restricted permissions directory
+
+### Management Features
+- **Strong password generation** with customizable options:
+  - Adjustable length (4-100+ characters)
+  - Customizable character sets (lowercase, uppercase, numbers, special chars)
+  - Real-time password strength evaluation
+- **Comprehensive search capabilities** with domain and username matching
+- **Secure backup system** with encrypted backups stored in a dedicated directory
+- **Detailed logging** without sensitive data exposure
+- **Automatic data migration** when file paths are updated
+
+### User Experience
+- **Command-line interface** with intuitive menu navigation
+- **Secure authentication** with multiple protection layers
+- **Search optimization** with domain extraction for better matches
+- **Back navigation** throughout the application
+
+## Installation
+
+1. Clone the repository:
+   ```
+   https://github.com/TheKingHippopotamus/Secure_Password_Manager.git
+   cd password-manager
+   ```
+
+2. Install required dependencies:
+   ```
+   pip install -r requirements.txt
+   ```
+
+3. Run the password manager:
+   ```
+   python -m password_manager
+   ```
+   or
+   ```
+   ./run.py
+   ```
+
+## Usage
+
+### First-time Setup
+On first run, you'll be guided through creating a master account:
+1. Enter a master username (minimum 4 characters)
+2. Create a strong master password (minimum 8 characters)
+3. Confirm your master password
+
+This master account will be used to encrypt and decrypt all your stored passwords.
+
+### Main Menu
+The interactive menu provides access to all functionality:
+```
+=== Password Manager ===
+Logged in as: your_username
+1. Generate a new password
+2. Save a password
+3. Find passwords
+4. List all websites
+5. Delete a password
+6. Create backup
+7. Show storage location
+8. Logout
+9. Exit
+```
+
+### Managing Passwords
+- **Generate passwords** with customizable length and character sets
+- **Save passwords** for different websites/services with username and optional notes
+- **Find passwords** by searching for website or username
+- **View all websites** stored in the system
+- **Delete passwords** with confirmation and re-authentication
+
+## Security Architecture
+
+The application implements multiple layers of security:
+
+### Key Derivation
+1. Your master password is never stored in its original form
+2. A unique salt is generated for each master account
+3. Password-Based Key Derivation Function 2 (PBKDF2) with 600,000 iterations is used (OWASP 2023 recommendation)
+4. PBKDF2-HMAC-SHA256 is used for both password hashing and key derivation
+
+### Encryption Levels
+1. **Machine-specific system key**: Derived from hardware identifiers and salt
+   - Used to encrypt master username and password hash
+   - Ties encrypted data to your specific device
+   
+2. **User-specific encryption key**: Derived from username, password, and salt
+   - Used to encrypt/decrypt your password database
+   - Requires both username and password to reconstruct
+
+### Authentication Security
+1. **Brute force protection**:
+   - Limited login attempts (adaptive based on previous failures)
+   - Device lockout after exceeded attempts
+   - Increased security with each failed attempt
+   
+2. **Session security**:
+   - Automatic timeout after 30 minutes of inactivity
+   - Sensitive operations require re-authentication
+   - Activity tracking to prevent session hijacking
+
+### Data Security
+1. **Filesystem security**:
+   - Sensitive files stored in restricted permission directory (`mode 0o700`)
+   - Files are hidden from casual directory listings
+   - Naming convention prevents accidental exposure
+   
+2. **Data integrity**:
+   - Backups are encrypted with the same security as the main database
+   - File operations use safe write patterns to prevent corruption
+
+## Directory Structure
+
+```
+~/.password_manager/
+├── password_manager.log    # Application log (non-sensitive information)
+├── backups/                # Encrypted backup storage directory
+│   └── .passwords_backup_[timestamp].enc  # Encrypted backups
+└── secrets/               # Directory for sensitive files (restricted permissions)
+    ├── .passwords.enc     # Encrypted password database
+    ├── salt.bin           # Salt for key derivation
+    ├── .master_user.enc   # Encrypted master username
+    ├── .master_hash.enc   # Encrypted master password hash
+    └── .login_attempts.dat # Login attempt tracking for lockout system
+```
+
+The package itself follows a modular architecture:
+```
+password_manager/
+├── __init__.py          # Package initialization
+├── __main__.py          # Entry point
+├── manager.py           # Main SecurePasswordManager class
+├── auth.py              # Authentication and master account management
+├── encryption.py        # Encryption utilities
+├── session.py           # Session management and timeout control
+├── storage.py           # File storage operations
+├── generator.py         # Password generation
+├── utils.py             # Utility functions
+├── logger.py            # Logging setup
+└── constants.py         # Constants and configuration
+```
+
+## Advanced Usage
+
+### Custom Password Generation
+When generating passwords, you can specify:
+- Password length (recommended 15+ characters)
+- Whether to include special characters
+- Whether to include uppercase letters
+- Whether to include digits
+
+Example of a highly secure password configuration:
+- Length: 20+ characters
+- Include all character types
+- Resulting in an "Excellent" password strength rating
+
+### Managing Sensitive Accounts
+For highly sensitive accounts, consider:
+1. Generating longer passwords (25+ characters)
+2. Adding detailed notes about account recovery options
+3. Creating regular backups after adding or updating important passwords
+
+### Manual Backups
+While automatic backups are created when using the backup feature, you can also manually copy the `.passwords.enc` file to a secure location for additional protection.
+
+### Multi-Device Usage
+This password manager is designed for single-device use with machine-specific encryption. For multi-device scenarios:
+1. Install the password manager on each device
+2. Create separate master accounts on each device
+3. Use the built-in password generation on your primary device
+4. Manually transfer passwords to secondary devices
+
+## Security Best Practices
+
+1. **Master Password Guidelines**:
+   - Use a unique, strong master password (15+ characters)
+   - Include a mix of character types
+   - Avoid dictionary words and personal information
+   - Consider using a passphrase of 4-5 random words
+
+2. **Application Usage**:
+   - Always log out when leaving your computer
+   - Regularly create backups
+   - Periodically review and update weak passwords
+   - Do not run the application in untrusted environments
+
+3. **System Security**:
+   - Keep your operating system and Python updated
+   - Use disk encryption on your computer
+   - Protect your user account with a strong password
+   - Consider using a firewall and antivirus protection
+
+## Technical Details
+
+### Cryptographic Implementation
+- **Symmetric Encryption**: AES-256 in CBC mode with PKCS7 padding (via Fernet)
+- **Key Derivation**: PBKDF2HMAC with SHA-256
+- **Password Hashing**: PBKDF2-HMAC-SHA256 with 600,000 iterations and unique salt
+- **Random Number Generation**: Python `secrets` module (cryptographically secure)
+
+### Password Strength Evaluation
+Passwords are evaluated based on:
+- Length (30 points for 16+ characters)
+- Character diversity (up to 60 points)
+- Special characters (20 points)
+- Uppercase letters (15 points)
+- Digits (15 points)
+
+Resulting in ratings:
+- 80+ points: Excellent
+- 60-79 points: Very Strong
+- 40-59 points: Strong
+- 25-39 points: Medium
+- Below 25: Weak
+
+### Lockout Mechanism
+The adaptive lockout system:
+1. Tracks login attempts per device
+2. Reduces allowed attempts based on previous lockouts
+3. Implements progressive security with repeated failures
+4. Stores device identifiers and lockout information
+
+## Requirements
+
+- Python 3.6+
+- cryptography library (for encryption)
+- Operating system: Windows, macOS, or Linux
+- Approximately 5MB of disk space
+
+## License
+
+GNU General Public License v3.0 (GPL-3.0)
+
+This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
+
+This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
+
+Key requirements of this license:
+- **Attribution**: You must give appropriate credit to the original author
+- **Share Source Code**: If you distribute this software, you must make your source code available
+- **Same License**: Any derivative works must be distributed under the same license
+- **State Changes**: You must indicate any changes made to the original code
+
+---
+
+© 2023 Secure Password Manager. All rights reserved.  
+@King.Hippopotamus
+
+## Screenshots and Demo
+
+### Application Interface
+![Login Screen](static/Screenshot%202025-04-17%20at%2011.44.00.png)
+*Login screen with secure authentication*
+
+![Password Manager Dashboard](static/Screenshot%202025-04-17%20at%2011.48.49.png)
+*Main dashboard interface showing stored passwords*
+
+![Password Details](static/Screenshot%202025-04-17%20at%2011.51.02.png)
+*Detailed view of password information*
+
+### Video Demonstration
+[![Watch the demo video](https://img.youtube.com/vi/9hPm1w-NM2Q/0.jpg)](https://youtu.be/9hPm1w-NM2Q)
+*Click on the image above to watch the Password Manager demonstration video on YouTube*
+
+
+
+
+
+
+
+# Secure_Password_Manager

irondome-1.0.5/IronDome.egg-info/SOURCES.txt

@@ -0,0 +1,22 @@
+LICENSE
+MANIFEST.in
+README.md
+pyproject.toml
+requirements.txt
+IronDome.egg-info/PKG-INFO
+IronDome.egg-info/SOURCES.txt
+IronDome.egg-info/dependency_links.txt
+IronDome.egg-info/entry_points.txt
+IronDome.egg-info/requires.txt
+IronDome.egg-info/top_level.txt
+password_manager/__init__.py
+password_manager/__main__.py
+password_manager/auth.py
+password_manager/constants.py
+password_manager/encryption.py
+password_manager/generator.py
+password_manager/logger.py
+password_manager/manager.py
+password_manager/session.py
+password_manager/storage.py
+password_manager/utils.py

irondome-1.0.5/IronDome.egg-info/dependency_links.txt

@@ -0,0 +1 @@
+

irondome-1.0.5/IronDome.egg-info/entry_points.txt

@@ -0,0 +1,2 @@
+[console_scripts]
+bunker = password_manager.__main__:main

irondome-1.0.5/IronDome.egg-info/requires.txt

@@ -0,0 +1 @@
+cryptography>=36.0.0

irondome-1.0.5/IronDome.egg-info/top_level.txt

@@ -0,0 +1 @@
+password_manager

irondome-1.0.5/LICENSE

@@ -0,0 +1,74 @@
+GNU GENERAL PUBLIC LICENSE
+Version 3, 29 June 2007
+
+Copyright (C) 2023 King Hippopotamus
+
+Everyone is permitted to copy and distribute verbatim copies
+of this license document, but changing it is not allowed.
+
+                           Preamble
+
+The GNU General Public License is a free, copyleft license for
+software and other kinds of works.
+
+The licenses for most software and other practical works are designed
+to take away your freedom to share and change the works. By contrast,
+the GNU General Public License is intended to guarantee your freedom to
+share and change all versions of a program--to make sure it remains free
+software for all its users. We, the Free Software Foundation, use the
+GNU General Public License for most of our software; it applies also to
+any other work released this way by its authors. You can apply it to
+your programs, too.
+
+When we speak of free software, we are referring to freedom, not
+price. Our General Public Licenses are designed to make sure that you
+have the freedom to distribute copies of free software (and charge for
+them if you wish), that you receive source code or can get it if you
+want it, that you can change the software or use pieces of it in new
+free programs, and that you know you can do these things.
+
+To protect your rights, we need to prevent others from denying you
+these rights or asking you to surrender the rights. Therefore, you have
+certain responsibilities if you distribute copies of the software, or if
+you modify it: responsibilities to respect the freedom of others.
+
+For example, if you distribute copies of such a program, whether
+gratuitous or for a fee, you must pass on to the recipients the same
+freedoms that you received. You must make sure that they, too, receive
+or can get the source code. And you must show them these terms so they
+know their rights.
+
+Developers that use the GNU GPL protect your rights with two steps:
+(1) assert copyright on the software, and (2) offer you this License
+giving you legal permission to copy, distribute and/or modify it.
+
+For the developers' and authors' protection, the GPL clearly explains
+that there is no warranty for this free software. For both users' and
+authors' sake, the GPL requires that modified versions be marked as
+changed, so that their problems will not be attributed erroneously to
+authors of previous versions.
+
+Some devices are designed to deny users access to install or run
+modified versions of the software inside them, although the manufacturer
+can do so. This is fundamentally incompatible with the aim of protecting
+users' freedom to change the software. The systematic pattern of such
+abuse occurs in the area of products for individuals to use, which is
+precisely where it is most unacceptable. Therefore, we have designed
+this version of the GPL to prohibit the practice for those products. If
+such problems arise substantially in other domains, we stand ready to
+extend this provision to those domains in future versions of the GPL, as
+needed to protect the freedom of users.
+
+Finally, every program is threatened constantly by software patents.
+States should not allow patents to restrict development and use of
+software on general-purpose computers, but in those that do, we wish to
+avoid the special danger that patents applied to a free program could
+make it effectively proprietary. To prevent this, the GPL assures that
+patents cannot be used to render the program non-free.
+
+The precise terms and conditions for copying, distribution and
+modification follow:
+
+[...]
+
+For the full license, visit: https://www.gnu.org/licenses/gpl-3.0.txt

irondome-1.0.5/MANIFEST.in

@@ -0,0 +1,9 @@
+include LICENSE
+include README.md
+include requirements.txt
+recursive-include password_manager *.py
+
+exclude run.py
+recursive-exclude static *
+recursive-exclude * __pycache__
+recursive-exclude * *.py[cod]