mirror of
https://github.com/beemdevelopment/Aegis.git
synced 2025-05-21 09:21:27 +00:00
A free, secure and open source app for Android to manage your 2-step verification tokens.
3c887d8392
SpongyCastle is a fork of BouncyCastle. We originally used this fork to 1) have access to scrypt and 2) prevent a package name collision with the bundled BouncyCastle. We don't actually need to use the fork anymore, because the package name of the bundled BouncyCastle was changed in Android. SpongyCastle has also gotten quite outdated in recent years. The built-in version of BouncyCastle is replaced with the one bundled with the app at runtime, so that we have a recent version even on older Android versions. This also updates Gradle and the Gradle Android plugin, to fix a build error I was running into when I added the dependency to BouncyCastle. |
||
|---|---|---|
| .github | ||
| app | ||
| docs | ||
| gradle/wrapper | ||
| metadata | ||
| scripts | ||
| testdata | ||
| .gitignore | ||
| .travis.yml | ||
| build.gradle | ||
| CONTRIBUTING.md | ||
| gradle.properties | ||
| gradlew | ||
| gradlew.bat | ||
| LICENSE | ||
| README.md | ||
| settings.gradle | ||
Aegis
Aegis is a free, secure and open source 2FA app for Android.
Aegis' security design and vault format is described in detail in this document.
Features
- Free and open source
- Secure
- Encryption (AES-256)
- Password (scrypt)
- Biometrics (Android Keystore)
- Screen capture prevention
- Tap to reveal ability
- Encryption (AES-256)
- Multiple ways to add new entries
- Scan QR code
- Enter details manually
- Import from files
- andOTP
- FreeOTP
- Aegis
- Import from apps (requires root):
- Google Authenticator
- Steam
- Supported algorithms:
- Compatible with Google Authenticator
- Organization
- Custom or default icons
- Drag and drop
- Custom groups
- Advanced entry editing
- Material design with multiple themes:
- Light theme
- Dark theme
- Amoled / true dark theme
- Export (plaintext or encrypted)
Screenshots
Downloads
Aegis is available on the Google Play Store and on F-Droid.
Verification
APK releases on Google Play and GitHub are signed using the same key. They can be verified using apksigner:
apksigner verify --print-certs --verbose aegis.apk
The output should look like:
Verifies
Verified using v1 scheme (JAR signing): true
Verified using v2 scheme (APK Signature Scheme v2): true
The certificate fingerprints should correspond to the ones listed below:
Owner: CN=Beem Development
Issuer: CN=Beem Development
Serial number: 172380c
Valid from: Sat Feb 09 14:05:49 CET 2019 until: Wed Feb 03 14:05:49 CET 2044
Certificate fingerprints:
MD5: AA:EE:86:DB:C7:B8:88:9F:1F:C9:D0:7A:EC:37:36:32
SHA1: 59:FB:63:B7:1F:CE:95:74:6C:EB:1E:1A:CB:2C:2E:45:E5:FF:13:50
SHA256: C6:DB:80:A8:E1:4E:52:30:C1:DE:84:15:EF:82:0D:13:DC:90:1D:8F:E3:3C:F3:AC:B5:7B:68:62:D8:58:A8:23
Community
-
While we're still working on better icon support in Aegis, krisu5 has started a third-party repository for icons that you may want to check out.
Libraries
- TextDrawable by Amulya Khare
- FloatingActionButton by Dmytro Tarianyk
- AppIntro by Paolo Rotolo
- Krop by Avito Technology
- SpongyCastle by Roberto Tyley
- CircleImageView by Henning Dodenhof
- barcodescanner by Dushyanth
- libsu by John Wu
License
This project is licensed under the GNU General Public License v3.0. See the LICENSE file for details.