One of the essential measures to preserve our security when we are connected to the Internet is to use strong passwords . It is increasingly easy to guess insecure or reused passwords, either by brute force attacks or by stealing databases from different Internet companies. Strong passwords are often difficult to remember, especially if we have to use different passwords every time we register. Therefore, it is often necessary to resort to programs that help us to correctly manage our passwords, as is the case with KeePass.
KeePass is a totally free and open source program designed to help us save, remember and manage all our passwords. This program is in charge of generating a secure and encrypted database, where we can keep all the passwords, and other data that we want, safely. When closing the program, the database is encrypted so that no one can access it.
We can protect the database with different secure algorithms, and block its access with a password or a certificate, depending on the level of security we want.
This program is available for Windows, macOS and Linux, it is open source and it has also been audited on several occasions, proving that we are dealing with one of the most secure programs to which we can entrust our passwords.
What KeePass offers us that other password managers do not offer us
We can find a large number of programs to manage passwords on the network. Some of the best known are LastPass or 1Password. However, most of these alternatives are paid (or free, with limited functions) and, most importantly, they are closed source. This implies that we don’t really know what is hidden within the code. It may have back doors, or use insecure algorithms designed to allow third parties (such as the FBI or NSA) to access our passwords.
KeePass stands out above all these programs mainly for two characteristics. The first of them is that it is an open source software. This means that anyone can audit the source code of the program and make sure it is safe and does not hide anything. The second is that it is completely free, so we will not have limitations or pay for anything.
Weak points
However, despite the strengths of this program, there are also some limitations. One of the main ones is that we cannot configure any synchronization. The database is saved locally on the computer where we run KeePass. This guarantees maximum security, but prevents that, if we use other computers, we can have it synchronized with them. In addition, although we can find third-party clients to use KeePass on Android and iOS, as they do not have synchronization functions, we will have to manually copy the database and replicate the changes we make on all devices.
There are extensions to sync the password database through clouds like Google Drive. But, if we resort to them, we will be losing part of the degree of security that this software offers us.
Furthermore, this program is designed to manage passwords , not to facilitate their use. Therefore, using them in the browser is not exactly an easy task, although it can be done through extensions that connect to KeePass.
KeePass main features
Despite being a simple program, KeePass has a large number of features that put it at the level of the most expensive commercial software, always keeping its nature OpenSource and free.
Security
The first thing to note about KeePass is its security. This program allows us to choose different encryption algorithms (AES, Rijndael, etc.) to protect passwords. In addition, this software encrypts the entire database, not just password boxes like other programs do, which improves the privacy of what we keep in it. It uses a SHA-256 to associate the master decryption password (which can be entered with a virtual keyboard, to avoid keyloggers), and protects the information that is loaded in RAM to prevent a memory dump from allowing access to the keys .
KeePass offers us several ways to protect the database. The most common is through a master password, which will be used to decrypt the database and access passwords. We can also use a digital certificate for added security, and even combine the two methods for even more drastic security. We can also associate the database with the Windows user.
Speed of use
Another of the main characteristics of KeePass is that it is a very simple, quick to use and intuitive program. We can choose to use it in portable mode (and we can always carry it on a USB), or install it on the computer like any other program.
The main program is compiled for Windows. But on its download page we will find a series of alternative clients, or forks, also open source for other systems, such as Linux, macOS, Android or iOS.
Allows you to import and export passwords and other data
The database that KeePass creates can only be used with this program (or one of its clients). However, it does have functions to import or export passwords . For example, we can import the passwords generated in a CSV or in certain TXT files. In total, it supports 35 formats from which we will be able to import the passwords saved in other programs to our KeePass database.
And the same in reverse. KeePass allows us to export our passwords to different formats, such as TXT, HTML, XML and CSV, so that we can later import them into other programs or password managers.
Of course, we must remember that the formats to import and export are not encrypted. During the process, all of our passwords will be exposed. We must ensure that we delete secure files well and securely to prevent them from falling into the wrong hands.
Strong password generator
Another of the most interesting features of this password manager is the possibility of generating strong passwords. KeePass will allow us to choose the different characters that we want to be used in passwords.
As for randomness, we can generate it ourselves by mouse movements and keyboard keystrokes. Thus it will be impossible to predict the results.
Best plugins to improve its operation
In addition to all the functions and features that this program brings as standard, we can find a series of extensions, or plugins, developed by other users to give KeePass greater utility.
Some of the best KeePass plugins that we can find on its main website are:
- KPGoogleSync: to synchronize the database with Google Drive.
- QualityHighlighter – Lets you see at a glance the quality of passwords.
- KeePassWinHello: Unlock KeePass with Windows Hello (for example, with fingerprint or webcam).
- SimpleDatabaseBackup: to make backup copies of the database.
- KP2faChecker: add an indicator for websites that use 2FA.
We recommend not to download plugins from other sites. KeePass website plugins have been validated by their developer and are secure. A malicious plugin could steal, or erase, all passwords.
Other features
In addition to the above, KeePass has other features that also make it unique. Among them the most relevant and important that we can highlight are:
- Support for groups of passwords.
- Compatible with timestamps.
- It has a function that allows us to automatically fill out forms and other text boxes.
- Use the Windows clipboard securely to avoid exposing passwords.
- Supports searches.
- Translated into 45 languages, including Spanish.
Securely save passwords with KeePass
The first thing we will have to do when using this password manager for the first time will be to create a new database. We can create all the databases we want, although we can only have them open one by one.
The process of creating the database is very simple. The first thing we will have to do is choose where we want to save the new database, and establish a password (or the security measures we want) to protect it.
Then we can give it a name, configure the security parameters, the data compression, and the other parameters that the program offers us. At the end we can print (if we want) the emergency recovery keys, and that’s it.
We already have the database created. Now we just need to fill it in with our passwords. We can import them from the files that we have commented previously, or add them one by one from the program.
Each new entry must have a title, a username, the password and a URL. In addition, we have a note box where we can write what we want. We remember that all the information is encrypted, so all the data that we leave here stored will be stored safely.
We can order our passwords in different groups (work, personal, social networks, etc.) so that we can always have them all in order. We can create and delete groups as we want.
When closing the program we will have to save the changes and that’s it. New entries and modifications will be applied to the database, and KeePass will be closed, leaving our keys protected again.
Download KeePass
As we have already explained, this program is open source and completely free for all users. Anyone interested in improving their password security can download the latest version of KeePass from the following link .
In addition, on this page we will also be able to find a list to download other KeePass-based programs for other operating systems. We can find a list of clients for Android, iOS or other desktop operating systems, such as Linux and macOS. We are even going to find KeePass based web password managers .
To update this program we will have to download the new versions from their website and install them on top of the one we have. The good thing is that the program will notify us when there is a new version, although it will not automatically download it.
Alternatives to KeePass
In addition to KeePass, we can find a large number of password managers online that allow us to protect our data.
Without going any further, browsers such as Chrome, Firefox and Edge have their own included password managers that allow us to save our passwords within the browser for quick use. These passwords are synchronized through the corresponding clouds are all other computers and devices so that we always have the keys at our fingertips.
Bitwarden is another very popular alternative to keep our passwords secure. This tool is open source, like KeePass, which gives us an extra of trust and reliability. Our data will always be safe and, most importantly, under our control.
Of course, we can’t forget LastPass either . This program is one of the best known and used to manage our passwords. Its main virtue is that it is designed to have our keys always synchronized between all the devices we use. Its main drawbacks is that it is proprietary, paid software and, in addition, that it has been hacked on occasion, endangering the security of all users’ passwords.
Finally, another well-known password manager is 1Password . This password manager is similar to LastPass in many ways. It is also proprietary and paid, although in exchange it offers an excellent service to have our passwords synchronized between devices.