Manage HMAC-based One-time Passwords like Googles Authenticator App (F2A).
within the terminal of your choice
Your master password is hashed as 512bytes based on a random 128byte salt and sha512 digest.
Your secrets are encrypted based on your master password, a random 16byte iv and sha256 digest.
and stored in your config.json
- Download and extract oath-hotp-tool
npm install
Select if you want your OTPs to be copied to your clipboard or just logged into the terminal.
- config.json
{
"shouldCopyToClipboard": true
}
Thanks to Rajat for his writeup on the algorithms used in Googles Authenticator App.