Skip to content
A secure OTP app for Android
Branch: master
Clone or download
Latest commit e0d5aba Apr 18, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
app Release v0.3.3 Apr 17, 2019
docs Add a document detailing Aegis' security design and vault format Apr 16, 2019
gradle/wrapper
metadata/en-US
scripts
testdata Update testdata file to use 'test' as the password Apr 3, 2019
.gitignore Add .idea/ and release/ to .gitignore Mar 27, 2019
LICENSE
README.md Update README.md Apr 18, 2019
build.gradle Update gradle Mar 23, 2019
gradle.properties Migrated project to AndroidX Sep 25, 2018
gradlew Initial commit Aug 15, 2016
gradlew.bat Initial commit Aug 15, 2016
settings.gradle

README.md

Aegis

Aegis is a free, secure and open source 2FA app for Android.

Aegis' security design and vault format is described in detail in this document.

Features

  • Free and open source
  • Secure
    • Encryption (AES-256)
      • Password (scrypt)
      • Fingerprint (Android Keystore)
    • Screen capture prevention
    • Tap to reveal ability
  • Multiple ways to add new entries
    • Scan QR code
    • Enter details manually
    • Import from files
      • andOTP
      • FreeOTP
      • Aegis
    • Import from apps (requires root):
      • Google Authenticator
      • Steam
  • Supported algorithms:
  • Compatible with Google Authenticator
  • Organization
    • Custom or default icons
    • Drag and drop
    • Custom groups
    • Advanced entry editing
  • Material design with multiple themes:
    • Light theme
    • Dark theme
    • Amoled / true dark theme
  • Export (plaintext or encrypted)

Screenshots

Main Activity Settings Activity Edit Activity

Main Activity Main Activity

Downloads

Aegis is available on the Google Play Store and on F-Droid.

Get it on Google Play Get it on F-Droid

Verification

APK releases on Google Play and GitHub are signed using the same key. They can be verified using apksigner:

apksigner verify --print-certs --verbose aegis.apk

The output should look like:

Verifies
Verified using v1 scheme (JAR signing): true
Verified using v2 scheme (APK Signature Scheme v2): true

The certificate fingerprints should correspond to the ones listed below:

Owner: CN=Beem Development
Issuer: CN=Beem Development
Serial number: 172380c
Valid from: Sat Feb 09 14:05:49 CET 2019 until: Wed Feb 03 14:05:49 CET 2044
Certificate fingerprints:
   MD5:  AA:EE:86:DB:C7:B8:88:9F:1F:C9:D0:7A:EC:37:36:32
   SHA1: 59:FB:63:B7:1F:CE:95:74:6C:EB:1E:1A:CB:2C:2E:45:E5:FF:13:50
   SHA256: C6:DB:80:A8:E1:4E:52:30:C1:DE:84:15:EF:82:0D:13:DC:90:1D:8F:E3:3C:F3:AC:B5:7B:68:62:D8:58:A8:23

Libraries

License

This project is licensed under the GNU General Public License v3.0. See the LICENSE file for details.

Attribution

The icon is largely based on a design by Freepik from Flaticon.

You can’t perform that action at this time.