Bitwarden
bitwarden.com Self-HostedFully-featured, open source password manager with cloud-sync. Bitwarden is easy-to-use with a clean UI and client apps for desktop, web and mobile. See also Vaultwarden, a self-hosted, Rust implementation of the Bitwarden server and compatible with upstream Bitwarden clients.
- Homepage: bitwarden.com
- GitHub: github.com/bitwarden/server
- Privacy: tosdr.org/en/service/1348
- iOS App: apps.apple.com/us/app/bitwarden-password-manager/id1137397744
- Android App: https://play.google.com/store/apps/details?id=com.x8bit.bitwarden
- Subreddit: r/Bitwarden
- Web info: web-check.xyz/results/bitwarden.com
Bitwarden Privacy Policy
Privacy Policy Summary
- You have the right to leave this service at any time
- This service keeps user logs for an undefined period of time
- Users agree to comply with the law of the service's country
- This service does not sell your personal data
- The service does not guarantee accuracy or reliability of the information provided
- The service provider makes no warranty regarding uninterrupted, timely, secure or error-free service
- The service provides two factor authentification for your account
- You are responsible for maintaining the security of your account and for the activities on your account
- This service can share your personal information to third parties
- Tracking pixels are used in service-to-user communication
- The service is transparent regarding government requests or inquiries that may involve user data.
- The user is informed about security practices
- The services will notify users if personal data has been affected by data breaches
- This service requires first-party cookies, which are cookies that only belong to the domain of the service and not a third party.
- This service holds onto content that you've deleted
- very broad term possibly violating copyright law
- The service can sell or otherwise transfer your personal data as part of a bankruptcy proceeding or other type of financial transaction.
- Third parties may be involved in operating the service
- Promises will be kept after a merger or acquisition
- Your personal data is given to third parties
- The service promises to inform and/or notify users regarding government inquiries that may involve users' personal data
- Your data may be processed and stored anywhere in the world
- They may stop providing the service at any time
- Users should revisit the terms periodically, although in case of material changes, the service will notify
- This service does not guarantee that it or the products obtained through it meet the users' expectations or requirements
- The service does not guarantee that software errors will be corrected
- The service can suspend or terminate your access to all or any part of the Website and refuse service to anyone for any reason at any time
- Your personal data is aggregated into statistics
- This service ignores the Do Not Track (DNT) header and tracks users anyway even if they set this header.
- This service gathers information about you through third party analytics and service providers (such as Google Analytics)
- Blocking cookies may limit your ability to use the service
- This service throttles your use
- This service prohibits users from attempting to gain unauthorized access to other computer systems
- You can delete your content from this service
- This service gives your personal data to third parties involved in its operation
- The court of law governing the terms is in California, USA
- This service assumes no liability for any losses or damages resulting from any matter relating to the service
- You are tracked via web beacons, tracking pixels, browser fingerprinting, and/or device fingerprinting
- Third-party cookies are used for statistics
- Information is provided about how your personal data is used
- Some personal data may be kept for business interests or legal obligations
- Information is provided about what kind of information they collect
- Information is provided about how they collect personal data
- Extra data may be collected about you through promotions
- You agree to defend, indemnify, and hold the service harmless in case of a claim related to your use of the service
- Users are responsible for any risks, damages, or losses they may incur by downloading materials
- The service is provided 'as is' and to be used at the users' sole risk
- This service is only available to users of age 13 and up
- Features of the website are made available under a free software license (AGPL) v3.0
- The terms for this service are easy to read
- Your personal data may be sold or otherwise transferred as part of a bankruptcy proceeding or other type of financial transaction
- You are entitled to a refund if certain thresholds or standards are not met by the service
- You authorise the service to charge a credit card supplied on re-occurring basis
- You should revisit the terms periodically, although in case of material changes, the service will notify
Score
Documents
- Terms of serviceCreated 17 Jan 19, Last modified 3 years ago
- Privacy PolicyCreated 17 Jan 19, Last modified 3 years ago
Domains Covered by Policy
- bitwarden.com
- bitwarden.eu
- passwordless.dev
About the Data
This data is kindly provided by tosdr.org. Read full report at: #1348
Bitwarden Source Code
Author
Description
Bitwarden infrastructure/backend (API, database, Docker, etc).
Homepage
https://bitwarden.comLicense
NOASSERTION
Created
23 Nov 15
Last Updated
04 Oct 24
Latest version
Primary Language
C#
Size
29,450 KB
Stars
15,270
Forks
1,274
Watchers
15,270
Language Usage
Star History
Top Contributors
- @kspearrin (2559)
- @eliykat (220)
- @renovate[bot] (190)
- @Hinton (170)
- @cscharf (148)
- @MGibson1 (120)
- @justindbaur (116)
- @vgrassia (97)
- @withinfocus (97)
- @amorask-bitwarden (90)
- @joseph-flinn (85)
- @r-tome (82)
- @Thomas-Avery (71)
- @vincentsalucci (70)
- @cturnbull-bitwarden (60)
- @github-actions[bot] (59)
- @cyprain-okeke (57)
- @trmartin4 (56)
- @mpbw2 (37)
- @michalchecinski (35)
- @mimartin12 (35)
- @jlf0dev (32)
- @gbubemismith (31)
- @Mart124 (31)
- @shane-melton (30)
- @addisonbeck (29)
- @djsmith85 (28)
- @bitwarden-devops-bot (26)
- @coltonhurst (24)
- @JaredSnider-Bitwarden (19)
Recent Commits
- Alex Morask (04 Oct 24)
[AC-2551] Fix migration files (#4854) * Correctly regenerate EF migration files * Run dotnet format
- Alex Morask (04 Oct 24)
[AC-2551] Consolidated Billing Migration (#4616) * Move existing Billing SQL files into dbo folder I noticed that every other team had a nested dbo folder under their team folder while Billing did not. This change replicates that. * Add SQL files for ClientOrganizationMigrationRecord table * Add SQL Server migration for ClientOrganizationMigrationRecord table * Add ClientOrganizationMigrationRecord entity and repository interface * Add ClientOrganizationMigrationRecord Dapper repository * Add ClientOrganizationMigrationRecord EF repository * Add EF migrations for ClientOrganizationMigrationRecord table * Implement migration process * Wire up new Admin tool to migrate providers * Run dotnet format * Updated coupon and credit application per product request * AC-3057-3058: Fix expiration date and enabled from webhook processing * Run dotnet format * AC-3059: Fix assigned seats during migration * Updated AllocatedSeats in the case plan already exists * Update migration scripts to reflect current date
- Maciej Zieniuk (03 Oct 24)
PM-11123: Notification Status Details view (#4848) * PM-11123: Notification Status Details view * PM-11123: Test Typo * PM-11123: New line missing * PM-11123: Delete unnecessary field * PM-11123: Moved NotificationStatusDetails to Models/Data
- Addison Beck (03 Oct 24)
Fix logic error in a handwritten MySql `UPDATE` migration (#4849)
- Addison Beck (03 Oct 24)
Split `LimitCollectionCreationDeletion` into two database columns (#4709) * Add new columns to `dbo.Organization` & its references * Feed existing data into new `dbo.Organization` column * Update Entity Framework database definitions * Move new EF columns out of the core entity definition * Generate Entity Framework migrations * Feed existing data into new `Organization` Entity Framework columns * Add a where clause to SQL migration
- Justin Baur (03 Oct 24)
[PM-13098] Use `ILogger.BeginScope` For Better Scopes (#4740) * Use `ILogger.BeginScope` For Better Scopes * Format * Remove Behind Feature Flag
- Maciej Zieniuk (02 Oct 24)
[PM-11123] Service layer for Notification Center (#4741) * PM-11123: Service layer * PM-11123: Service layer for Notification Center * PM-11123: Throw error on unsupported requirement * PM-11123: Missing await * PM-11123: Cleanup * PM-11123: Unit Test coverage * PM-11123: Flipping the authorization logic to be exact match of fail, formatting * PM-11123: Async warning * PM-11123: Using AuthorizeOrThrowAsync, removal of redundant set new id * PM-11123: UT typo * PM-11123: UT fix
- Vince Grassia (02 Oct 24)
Remove container-registry-purge workflow (#4843)
- Alexey Zilber (02 Oct 24)
Latest tag doesn't exist anymore, defaulting to 180d (#4841)
- cyprain-okeke (01 Oct 24)
Remove the feature flag for delete provider (#4836) Signed-off-by: Cy Okeke <[email protected]>
- Rui TomΓ© (01 Oct 24)
[PM-10321/PM-10322] Add Endpoints for Deleting Single and Multiple Organization-Managed Users (#4727) * Add HasVerifiedDomainsAsync method to IOrganizationDomainService * Add GetManagedUserIdsByOrganizationIdAsync method to IOrganizationUserRepository and the corresponding queries * Fix case on the sproc OrganizationUser_ReadManagedIdsByOrganizationId parameter * Update the EF query to use the Email from the User table * dotnet format * Fix IOrganizationDomainService.HasVerifiedDomainsAsync by checking that domains have been Verified and add unit tests * Rename IOrganizationUserRepository.GetManagedUserIdsByOrganizationAsync * Fix domain queries * Add OrganizationUserRepository integration tests * Add summary to IOrganizationDomainService.HasVerifiedDomainsAsync * chore: Rename IOrganizationUserRepository.GetManagedUserIdsByOrganizationAsync to GetManyIdsManagedByOrganizationIdAsync * Add IsManagedByAnyOrganizationAsync method to IUserRepository * Add integration tests for UserRepository.IsManagedByAnyOrganizationAsync * Refactor to IUserService.IsManagedByAnyOrganizationAsync and IOrganizationService.GetUsersOrganizationManagementStatusAsync * chore: Refactor IsManagedByAnyOrganizationAsync method in UserService * Refactor IOrganizationService.GetUsersOrganizationManagementStatusAsync to return IDictionary<Guid, bool> * Extract IOrganizationService.GetUsersOrganizationManagementStatusAsync into a query * Update comments in OrganizationDomainService to use proper capitalization * Move OrganizationDomainService to AdminConsole ownership and update namespace * feat: Add support for organization domains in enterprise plans * feat: Add HasOrganizationDomains property to OrganizationAbility class * refactor: Update GetOrganizationUsersManagementStatusQuery to use IApplicationCacheService * Remove HasOrganizationDomains and use UseSso to check if Organization can have Verified Domains * Refactor UserService.IsManagedByAnyOrganizationAsync to simply check the UseSso flag * Add new event types for organization user deletion and voluntary departure * Add DeleteManagedOrganizationUserAccountCommand to remove user and delete account * Refactor DeleteManagedOrganizationUserAccountCommand to use orgUser.Id instead of orgUser.UserId.Value * Add DeleteManagedOrganizationUserAccountCommandTests * Add an endpoint to the OrganizationUsersController to delete a user account managed by an organization * Add unit tests for OrganizationUsersController.DeleteAccount * Add an endpoint to the OrganizationUsersController to bulk delete user accounts managed by an organization * Add unit tests for OrganizationUsersController.BulkDeleteAccount * Gate new endpoints behind feature flag * Remove duplicate migration * Remove unnecessary _userService.GetProperUserId
- Alex Morask (01 Oct 24)
[PM-7452] Handle PayPal for premium users (#4835) * Add PremiumUserSale * Add PremiumUserBillingService * Integrate into UserService behind FF * Update invoice.created handler to bill newly created PayPal customers * Run dotnet format
- Jonas Hendrickx (01 Oct 24)
[PM-12526] Can Reduce Org's PM seats to be lower than SM seats (#4796)
- Thomas Rittson (30 Sept 24)
[PM-3478] Refactor OrganizationUser api (#4752) * Add OrganizationUserMiniDetails endpoint, models and authorization * Restrict access to current OrganizationUserUserDetails endpoint Both are behind feature flags
- renovate[bot] (30 Sept 24)
[deps] DbOps: Update Microsoft.Azure.Cosmos to 3.43.1 (#4820) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- Jared McCannon (30 Sept 24)
[PM-12074] - Refactored `Index` to use `UserViewModel` (#4797) * Refactored View and Edit models to have all needed fields.
- renovate[bot] (30 Sept 24)
[deps] Billing: Update dotnet monorepo (#4819) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- renovate[bot] (30 Sept 24)
[deps] Billing: Update Kralizek.AutoFixture.Extensions.MockHttp to v2 (#4831) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- renovate[bot] (30 Sept 24)
[deps] Tools: Update MailKit to 4.8.0 (#4829) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- Nick Krantz (30 Sept 24)
[PM-5450] Add check for admin/org access for events (#4705) * check to see if the org allows access to collections/ciphers to owners for events * linter * add check for organization value before attempting to use it * refactor logic to check for org abilities * remove checks for organization abilities - The previous logic would block events from being collected when a cipher was unassigned * check for organization when recording an event from owner/admin
- renovate[bot] (30 Sept 24)
[deps] Tools: Update aws-sdk-net monorepo (#4802) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- Jonas Hendrickx (30 Sept 24)
PM-11602 | Error toast when expired org attempts to auto scale is unclear (#4746)
- renovate[bot] (30 Sept 24)
[deps] DevOps: Update gh minor (#4828) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- renovate[bot] (30 Sept 24)
[deps] Billing: Update Stripe.net to 45.14.0 (#4825) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- renovate[bot] (30 Sept 24)
[deps] Billing: Update swashbuckle-aspnetcore monorepo to 6.8.0 (#4826) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- renovate[bot] (30 Sept 24)
[deps] Billing: Update xunit-dotnet monorepo (#4827) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- renovate[bot] (30 Sept 24)
[deps] Billing: Update Braintree to 5.27.0 (#4823) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- renovate[bot] (30 Sept 24)
[deps] Billing: Update coverlet.collector to 6.0.2 (#4818) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- renovate[bot] (30 Sept 24)
[deps] Billing: Update FluentAssertions to 6.12.1 (#4817) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
- cyprain-okeke (27 Sept 24)
[PM-8445] Update trial initiation UI (#4712) * Add the feature flag Signed-off-by: Cy Okeke <[email protected]> * Initial comment Signed-off-by: Cy Okeke <[email protected]> * changes to subscribe with payment method Signed-off-by: Cy Okeke <[email protected]> * Add new objects * Implementation for subscription without payment method Signed-off-by: Cy Okeke <[email protected]> * Remove unused codes and classes Signed-off-by: Cy Okeke <[email protected]> * Rename the flag properly Signed-off-by: Cy Okeke <[email protected]> * remove implementation that is no longer needed Signed-off-by: Cy Okeke <[email protected]> * revert the changes on some code removal Signed-off-by: Cy Okeke <[email protected]> * Resolve the pr comment Signed-off-by: Cy Okeke <[email protected]> * format the data annotations line breaks Signed-off-by: Cy Okeke <[email protected]> --------- Signed-off-by: Cy Okeke <[email protected]>
Bitwarden Website
Website
The password manager trusted by millions | Bitwarden
Bitwarden makes it easy for businesses and individuals to securely generate, store, and share passwords from any location, browser, or device. Create your free Bitwarden account today.
Redirects
Does not redirect
Security Checks
All 66 security checks passed
Server Details
- IP Address 199.232.194.22
- Location San Francisco, California, United States of America, NA
- ISP Fastly Inc.
- ASN AS54113
Associated Countries
- US
Saftey Score
Website marked as safe
100%
Blacklist Check
bitwarden.com was found on 0 blacklists
- ThreatLog
- OpenPhish
- PhishTank
- Phishing.Database
- PhishStats
- URLhaus
- RPiList Not Serious
- AntiSocial Blacklist
- PhishFeed
- NABP Not Recommended Sites
- Spam404
- CRDF
- Artists Against 419
- CERT Polska
- PetScams
- Suspicious Hosting IP
- Phishunt
- CoinBlockerLists
- MetaMask EthPhishing
- EtherScamDB
- EtherAddressLookup
- ViriBack C2 Tracker
- Bambenek Consulting
- Badbitcoin
- SecureReload Phishing List
- Fake Website Buster
- TweetFeed
- CryptoScamDB
- StopGunScams
- ThreatFox
- PhishFort
Website Preview
Bitwarden Android App
Update Info
- App Bitwarden
- Creation Date 20 Oct 22
- Last Updated 16 Jul 24
- Current Version 2022.10.0
Trackers
- Microsoft Visual Studio App Center Crashes
Permissions
- Access Network State
- Camera
- Internet
- Nfc
- Post Notifications
- System Alert Window
- Use Biometric
- Use Fingerprint
- Vibrate
- Wake Lock
- Write External Storage
- Receive
- Write Use App Feature Survey
- Dynamic Receiver Not Exported Permission
Bitwarden iOS App
App Info
Bitwarden Password Manager
Recognized as best password manager by PCMag, The Verge, CNET, G2, and more! SECURE YOUR DIGITAL LIFE Secure your digital life and protect against data breaches by generating and saving unique, strong passwords for every account. Maintain everything in an end-to-end encrypted password vault that only you can access. ACCESS YOUR DATA, ANYWHERE, ANYTIME, ON ANY DEVICE Easily manage, store, secure, and share unlimited passwords across unlimited devices without restrictions. EVERYONE SHOULD HAVE THE TOOLS TO STAY SAFE ONLINE Utilize Bitwarden for free with no ads and or selling data. Bitwarden believes everyone should have the ability to stay safe online. Premium plans offer access to advanced features. EMPOWER YOUR TEAMS WITH BITWARDEN Plans for Teams and Enterprise come with professional business features. Some examples include SSO integration, self-hosting, directory integration and SCIM provisioning, global policies, API access, event logs, and more. Use Bitwarden to secure your workforce and share sensitive information with colleagues. More reasons to choose Bitwarden: World-Class Encryption Passwords are protected with advanced end-to-end encryption (AES-256 bit, salted hashtag, and PBKDF2 SHA-256) so your data stays secure and private. 3rd-party Audits Bitwarden regularly conducts comprehensive third-party security audits with notable security firms. These annual audits include source code assessments and penetration testing across Bitwarden IPs, servers, and web applications. Advanced 2FA Secure your login with a third-party authenticator, emailed codes, or FIDO2 WebAuthn credentials such as a hardware security key or passkey. Bitwarden Send Transmit data directly to others while maintaining end-to-end encrypted security and limiting exposure. Built-in Generator Create long, complex, and distinct passwords and unique usernames for every site you visit. Integrate with email alias providers for additional privacy. Global Translations Bitwarden translations exist for more than 50 languages. Cross-Platform Applications Secure and share sensitive data within your Bitwarden Vault from any browser, mobile device, or desktop OS, and more.
Rating
Version Info
- Current Version 2024.2.1
- Last Updated 21 Mar 24
- First Released 02 Sept 16
- Minimum iOS Version 11.0
- Device Models Supported 94
App Details
- IPA Size 171.79 Mb
- Price Free (USD)
- Age Advisory 4+
- Supported Languages 32
- Developer Bitwarden Inc
- Bundle ID com.8bit.bitwarden
Screenshots
Bitwarden Docker
Container Info
bitwardenrs
This is a Bitwarden server API implementation written in Rust compatible with upstream Bitwarden clients*, perfect for self-hosted deployment where running the official resource-heavy service might not be ideal..
DockerHub Metrics
- Pull Count 326,967,580
- Stars 417
- Date Created 12 May 19
- Last Updated 2 years ago
View on DockerHub
bitwardenrs/serverRun Command
docker run -d \ -p 80/tcp \ -v /portainer/Files/AppData/Config/Bitwarden-rs:/config \ --restart=unless-stopped \ bitwardenrs/server:latest
Compose File
version: 3.8 services: bitwarden-rs: image: bitwardenrs/server:latest ports: - 80:tcp environment: volumes: - /portainer/Files/AppData/Config/Bitwarden-rs:/config restart: unless-stopped
Port List
- 80/tcp
Volume Mounting
- /portainer/Files/AppData/Config/Bitwarden-rs /config
Permissions
- read β Yes
- write β Yes
- admin β Yes
Bitwarden Socials
Bitwarden Reviews
More Password Managers
-
Hardened, secure and offline password manager. Does not have cloud-sync baked in, deemed to be gold standard for secure password managers. KeePass clients: Strongbox (Mac & iOS), KeePassDX (Android), KeeWeb (Web-based/ self-hosted), KeePassXC (Windows, Mac & Linux), see more KeePass clients and extensions at awesome-keepass by @lgg.
-
LessPass is a little different, since it generates your passwords using a hash of the website name, your username and a single main-passphrase that you reuse. It omits the need for you to ever need to store or sync your passwords. They have apps for all the common platforms and a CLI, but you can also self-host it.
-
A modern, open source password manager for individuals and teams. Beautiful, intuitive and dead simple to use. Apps available for all platforms and you can self-host it as well.
-
From the creators of ProtonMail, ProtonPass is a new addition to their suite of services. They have a full collection of user-friendly native mobile and desktop apps. ProtonPass is one of the few "trustworthy" providers that also offers a free plan.
-
The Standard Unix Password Manager
About the Data: Bitwarden
API
You can access Bitwarden's data programmatically via our API.
Simply make a GET
request to:
https://api.awesome-privacy.xyz/essentials/password-managers/bitwarden
The REST API is free, no-auth and CORS-enabled. To learn more, view the Swagger Docs or read the API Usage Guide.
About the Data
Beyond the user-submitted YAML you see above, we also augment each listing with additional data dynamically fetched from several sources. To learn more about where the rest of data included in this page comes from, and how it is computed, see the About the Data section of our About page.
Share Bitwarden
Help your friends compare Password Managers, and pick privacy-respecting software and services.
Share Bitwarden and Awesome Privacy with your network!