Authenticator CC

Awesome Privacy ➔ Essentials ➔ 2-Factor Authentication ➔ Authenticator CC

Authenticator Extension is an in-browser One-Time Password (OTP) client, supports both Time-Based One-Time Password (TOTP, specified in RFC 6238) and HMAC-Based One-Time Password (HOTP, specified in RFC 4226).

Homepage: authenticator.cc
GitHub: github.com/Authenticator-Extension/Authenticator
Web info: web-check.xyz/check/authenticator.cc

Open Source

Authenticator CC Source Code

Author

Authenticator-Extension

Description

Authenticator generates 2-Step Verification codes in your browser.

#2fa#authenticator#chrome-extension#edge-extension#firefox-addon#otp#webextension

Homepage

https://authenticator.cc

License

MIT

Created

17 Feb 18

Last Updated

09 Jun 26

Latest version

v8.0.2

Primary Language

TypeScript

Size

10,838 KB

Stars

4,495

Forks

1,119

Watchers

4,495

Language Usage

Star History

Top Contributors

Recent Commits

Brendan Early (10 Oct 24)
update npm-license-generator (#1308)
Brendan Early (15 Sept 24)
Merge branch 'release' into dev
Brendan Early (15 Sept 24)
v8.0.2
Zhe Li (05 Sept 24)
update acknowledgment
César Quintana (03 Sept 24)
fix #1274 (#1288) Since manifest v3 `execute_browser_action` is no longer available, use the `execute_action` command instead https://developer.mozilla.org/en-US/docs/Mozilla/Add-ons/WebExtensions/manifest.json/commands
dependabot[bot] (30 Aug 24)
Bump webpack from 5.77.0 to 5.94.0 (#1286) Bumps [webpack](https://github.com/webpack/webpack) from 5.77.0 to 5.94.0. - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](https://github.com/webpack/webpack/compare/v5.77.0...v5.94.0) --- updated-dependencies: - dependency-name: webpack dependency-type: direct:development ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Zhe Li (23 Aug 24)
v8.0.1 (#1272) * fix issue in translations * fix add account issue (#1264) * v8.0.1 (#1270) --------- Co-authored-by: Brendan Early <[email protected]>
Zhe Li (23 Aug 24)
v8.0.1 (#1270)
Zhe Li (22 Aug 24)
fix add account issue (#1264)
Brendan Early (19 Aug 24)
fix issue in translations
Brendan Early (19 Aug 24)
Merge branch 'release' of ssh://github.com/Authenticator-Extension/Authenticator into dev
Brendan Early (19 Aug 24)
v8.0.0 (#1253) * v8.0.0 * remove short name from edge
Brendan Early (19 Aug 24)
Update translations (#1258)
Brendan Early (18 Aug 24)
add timeout to managed storage function (#1256) * add timeout to managed storage function * lower timeout significantly
Brendan Early (15 Aug 24)
i18n -- MiD fixes (#1255) * i18n -- MiD fixes * MiD corrections
Brendan Early (14 Aug 24)
Update translations (#1252)
Brendan Early (14 Aug 24)
fix default autolock value not being enforced (#1251)
github-actions[bot] (02 Aug 24)
Add new strings This commit was automatically made by run 10210527949
Brendan Early (02 Aug 24)
Require verifying password before chaning it (#1246) * Verify current password before changing it. * split out verifyPassword into two functions * typo * change incorrect password message
Brendan Early (02 Aug 24)
Create SECURITY.md (#1238) * Create SECURITY.md * Correct typo * review fixes * add sentence
github-actions[bot] (29 Jul 24)
Add new strings This commit was automatically made by run 10150634955
Brendan Early (29 Jul 24)
Disable smart filter by default (#1242) * turn auto filter off by default and use type guards in UserSettings * Warn users when enabling smart filter
Brendan Early (29 Jul 24)
Set autolock to a default of 30 minutes (#1243)
Brendan Early (29 Jul 24)
Make firefox min version 126 (#1245) In Firefox 125 and earlier, captureVisibleTab required `<all_urls>`. https://developer.mozilla.org/en-US/docs/Mozilla/Add-ons/WebExtensions/API/tabs/captureVisibleTab
Brendan Early (20 Jul 24)
Merge commit from fork Fully encrypt account data in all storage mediums
Brendan Early (20 Jul 24)
Merge branch 'dev' into mymindstorm/improve-encryption
Brendan Early (29 Jun 24)
Fully encrypt account data in all storage mediums * Refactor encryption code * Fix #704 * Initial work towards fixing longstanding sync conflict issues (multi-key support)
Brendan Early (09 Jul 24)
Merge pull request #1221 from hicallmeal/patch-1 Implement work-around/fix for incorrect render of manually added HOTP tokens
Brendan Early (04 Jul 24)
Don't insert content script on chrome:// pages when autofill is enabled (#1214) * Fix #1203 * copy even if autofill fails * remove unnecessary dependency * address review comments * fix
hicallmeal (02 Jul 24)
updated patch with proper fix Given the issue derives from the `option`s returning the value as a string by default, the 'number' modifier typecasts the value as a number. This then correctly flows on to the script execution https://v2.vuejs.org/v2/guide/forms.html

Authenticator CC Security

4.9/10

Repo Security Summary

Updated 25 May 26

Maintained 0/10
Dangerous-Workflow 10/10
Packaging N/A
Code-Review 7/10
Security-Policy 10/10
Binary-Artifacts 10/10
Token-Permissions 0/10
Pinned-Dependencies 4/10
CII-Best-Practices 0/10
Fuzzing 0/10
License 10/10
Branch-Protection N/A
Signed-Releases 0/10
SAST 7/10

Security Advisories (1)

high Patched CVSS 8.8

CVE-2024-45394 Secret encryption vulnerable to brute-force attacks

03 Sept 24

Authenticator CC Website

Website

Authenticator Extension

Redirects

Does not redirect

Security Checks

2 security checks failed (63 passed)

Top-Level Domain Highly Abused
Suspicious Domain

Server Details

IP Address 185.199.110.153
Hostname cdn-185-199-110-153.github.com
Location Francisco, Indiana, United States of America, NA
ISP GitHub Inc.
ASN AS54113

Associated Countries

Safety Score

Website marked as very dangerous

10%

Blacklist Check

authenticator.cc was found on 0 blacklists

AntiSocial Blacklist
Artists Against 419
Badbitcoin
Bambenek Consulting
CERT Polska
CoinBlockerLists
CRDF
CryptoScamDB
EtherAddressLookup
EtherScamDB
Fake Website Buster
MetaMask EthPhishing
NABP Not Recommended Sites
OpenPhish
PetScams
PhishFeed
PhishFort
Phishing.Database
PhishStats
PhishTank
Phishunt
RPiList Not Serious
Scam.Directory
SecureReload Phishing List
Spam404
StopGunScams
Suspicious Hosting IP
ThreatFox
ThreatLog
TweetFeed
URLhaus
ViriBack C2 Tracker

Website Preview

View full report at web-check.xyz

Authenticator CC Reviews

More 2-Factor Authentication

2FAS

(Android & iOS)
2fas.com

Free, secure and open source authenticator app for both iOS and Android. Supports creating encrypted backups and syncing between devices without the need for an account.

Open Source twofas/2fas-server

View 2FAS Report
Aegis

(Android)
getaegis.app

Free, secure and open source authenticator app for Android. Has a backup/ restore feature and a customisable UI with dark mode

Open Source beemdevelopment/Aegis

View Aegis Report
Authenticator

(iOS)
mattrubin.me/authenticator

Simple, native, open source 2-FA Client for iOS, which never connects to the internet - built by @mattrubin.me

Open Source mattrubin/Authenticator

View Authenticator Report
Authenticator GNOME

(Linux)
gitlab.gnome.org/World/Authenticator

Rust-based OTP authenticator. Has native With GNOME Shell integration. Also available through flathub.

Open Source Source

View Authenticator GNOME Report
Bitwarden Authenticator
bitwarden.com/products/authenticator

Bitwarden Authenticator is a free and open-source app which stores and generates time-based codes for multi-factor authentication. It can be used with an online account to backup and sync your tokens across your devices (and access them via a web interface) in a secure, end-to-end encrypted fashion. It can also be used offline on a single device with no account necessary.

Open Source bitwarden/ios

View Bitwarden Authenticator Report
Chronos Authenticator

(iOS)
chronosauth.com

Chronos Authenticator is a free, open-source two-factor authentication app for iOS, designed to provide robust security and reliable backup options.

Open Source joeldavidw/Chronos

View Chronos Authenticator Report
Ente Auth
ente.io/auth

Ente Auth is a free and open-source app which stores and generates TOTP tokens. It can be used with an online account to backup and sync your tokens across your devices (and access them via a web interface) in a secure, end-to-end encrypted fashion. It can also be used offline on a single device with no account necessary.

Open Source ente-io/ente

View Ente Auth Report
Proton Authenticator
proton.me/authenticator

Proton Authenticator is free, open source, and available for both iOS and Android. A Proton account is required to use Proton Authenticator. Existing 2FA codes can be imported from other popular apps such as Google Authenticator and LastPass.

Open Source protonpass/android-authenticator

View Proton Authenticator Report
Stratum

(Android)
stratumauth.com

Free and open-source two factor authentication app for Android. It features encrypted backups, icons, categories and a high level of customisation. It also has a Wear OS companion app

Open Source stratumauth/app

View Stratum Report
Tofu

(iOS)
tofuauth.com

An easy-to-use, open-source two-factor authentication app designed specifically for iOS

Open Source iKenndac/Tofu

View Tofu Report

About the Data: Authenticator CC

API

You can access Authenticator CC's data programmatically via our API. Simply make a GET request to:

https://api.awesome-privacy.xyz/v1/services/authenticator-cc

The REST API is free, no-auth and CORS-enabled. To learn more, view the API Docs or read the API Usage Guide.

Share Authenticator CC

Help your friends compare 2-Factor Authentication, and pick privacy-respecting software and services.
Share Authenticator CC and Awesome Privacy with your network!

← Previous

Authenticator GNOME

View 2-Factor Authentication (11)

Ente Auth