PwdFly

Generate Secure Password on the fly.
What is PwdFly?
PwdFly is a chrome extension, website, and Android app that allows users to generate secure passwords for every site using a master password and the site's URL as the key. It uses Scrypt as the key-stretching algorithm and generates site-specific passwords that are compliant with every password policy.

Extension stats

Users: 69 ▼ -3
Rating: 5.00 (11)
Version: 0.5 (Last updated: 2015-01-08)
Creation date: 2015-01-08
Risk impact: Moderate risk impact
Risk likelihood: Low risk likelihood
Manifest version: 2
Permissions:
  • activeTab
  • tabs
  • storage
Size: 136.19K

Other platforms

Not available on Firefox
Not available on Edge
Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Extension summary

In reality, users tend to reuse passwords or make trivial changes to their existing passwords to create new ones and use them across different sites for ease of memorization. So, creating secure passwords for every site has become a daunting task. To overcome this daunting and challenging task, PwdFly is available as a chrome extension, website, Android app to help users create secure passwords based on a Master Password and the site's URL as the key for that website. PwdFly generates site-specific secure passwords by taking the user's Master Password, the website's URL, email address of the user and the version for the password. The Master Password is the secret, the URL acts as the index, the email address concatenated with the URL acts as the salt, the version control is used to generate new passwords for a particular website without having the user to change the master password. PwdFly uses Scrypt as the one-way function which also serves as the key-stretching algorithm. The password generated by PwdFly ranges between 12 and 16 characters and it contains uppercase characters, lowercase characters, numbers and special characters and hence the generated site-specific passwords are compliant with every possible password policy.

Website link: www.pwdfly.com

PwdFly uses Scrypt to generate passwords. Scrypt is resistant against brute-force attacks. Password generated from PwdFly are random and contains a mix of all combinations

Version Control is a few feature which has been implemented in PwdFly which allows users to generate new passwords without changing the master password.

It combines the URL of the site and the email address of the user which is unique in all cases to generate the salt for the Master Password

PwdFly never stores the master password anywhere and hence they are not vulnerable to attacks that occur due to lack of encryption, not adding salt etc. It just generates the site-specific password on the client-side

Source code is publicly available and hence users need not trust the software blindly. Its always going to be a free software.

Its omnipresent as it is available as an extension, website and an android app. It requires no internet connection

See more

User reviews

Great app!
by Annamalai Ravi, 2014-12-27

This app makes life easier, I must say. Remembering password for each website is nothing but pain. This app is totally reliable.
by Ashwini Pugazhendhi, 2014-12-23
View all user reviews

Extension safety

Risk impact

PwdFly requires a few sensitive permissions. Exercise caution before installing.

Risk likelihood

PwdFly has earned a fairly good reputation and likely can be trusted.

Upgrade to see risk analysis details

Promo images

PwdFly small promo image
Small promo image

Similar extensions

Here are some Chrome extensions that are similar to PwdFly: