Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Python interface to KeePass file format v3 (used in KeePass V1.x and KeePassX)
branch: master

This branch is 15 commits behind brettviren:master

Fetching latest commit…

Cannot retrieve the latest commit at this time

Failed to load latest commit information.
doc
python/keepass
tests
.gitignore
README.html
README.org
keepassc.py

README.org

keepassc and python-keepass

This provides command line and Python interfaces for operating on files in KeePass format v3 (used by KeePass 1.x, and KeePassX).

Notes of caution

Before using this code, understand the its (known) security and correctness limitations:

  • Unlike the KeePass/KeePassX GUI applications this code makes no attempt to secure its memory. Input files read in are stored in memory fully decrypted.
  • It is quite easy to display the stored passwords in plain text, although the defaults try to avoid this.
  • Specifying the master key on the command line will leave traces in your shells history and in the process list.
  • While input files are treated as read-only, keep backups of any files written by KeePass/KeePassX until you are assured that files written by this code are usable.
  • Key files are not currently supported

Prerequisites

You will need to install the python-crypto package (providing the “Crypto” module). On a well behaved system do:

sudo apt-get install python-crypto

Command line

The command line interface is run like:

keepassc [general_options] [command command_options] ...

Multiple commands can be specified and will be executed in order. They operate on an in-memory instance of the database file. An example,

keepass open -m secret file.kdb \
        dump -p -f '%(username)s password is: %(password)s' \
        save -m newsecret backup.kdb

Online help:

keepass -h      # short usage
keepass help    # full usage

Python Modules

Low level file access

from keepass import kpdb
db = kpdb.Database(filename,masterkey)
print db   # warning: displayed passwords in plaintext!

References and Credits

PyCrypto help

The giants on whose shoulders this works stands

First, thanks to the original authors, contributors and community behind KeePass and KeePassX. Not, I am meerly a user of KeePassX.

A big credit is due to rudi & shirou (same hacker?) for the following:

Looking through KeePass/KeePassX source made my head swim. Only after reviewing their work could I get started.

Something went wrong with that request. Please try again.