A deterministic password manager. No vault. No sync. No cloud. Just an algorithm.
Most password managers store an encrypted vault of your passwords somewhere — locally, in the cloud, or both. Keyfount takes a different path: it never stores any generated password. Each time you visit a site, the extension recomputes your password from three inputs:
master password + site domain + email ──► PBKDF2-SHA256 ──► your password
Same inputs ⇒ same password. Always.
- Nothing to lose. No vault file means no vault to leak, sync, or back up.
- Works on any device. Install the extension, type your master password, and your passwords are there.
- Auditable. The algorithm is short, public, and standard. You can read it in an evening.
- If you forget your master password, your passwords are gone. We cannot recover them.
- Some sites have password rules that don't fit standard generation — we handle this with per-site preferences.
- Rotating a compromised password requires bumping a counter, not just regenerating.
extension— the Chrome extension (source code).
Each repository carries its own license — most code is MIT.