Skip to content

keithhubner/password-vault-generator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

125 Commits
.github
.github
Β 
Β 
app
app
Β 
Β 
components
components
Β 
Β 
data
data
Β 
Β 
generators
generators
Β 
Β 
hooks
hooks
Β 
Β 
k8s
k8s
Β 
Β 
lib
lib
Β 
Β 
public
public
Β 
Β 
scripts
scripts
Β 
Β 
types
types
Β 
Β 
utils
utils
Β 
Β 
.eslintrc.json
.eslintrc.json
Β 
Β 
.gitignore
.gitignore
Β 
Β 
CLAUDE.md
CLAUDE.md
Β 
Β 
Dockerfile
Dockerfile
Β 
Β 
LICENSE
LICENSE
Β 
Β 
README.md
README.md
Β 
Β 
STYLE-GUIDE.md
STYLE-GUIDE.md
Β 
Β 
components.json
components.json
Β 
Β 
middleware.ts
middleware.ts
Β 
Β 
next.config.ts
next.config.ts
Β 
Β 
package-lock.json
package-lock.json
Β 
Β 
package.json
package.json
Β 
Β 
postcss.config.mjs
postcss.config.mjs
Β 
Β 
tailwind.config.ts
tailwind.config.ts
Β 
Β 
tsconfig.json
tsconfig.json
Β 
Β 

Repository files navigation

Password Vault Generator

πŸ” Generate realistic test data for password managers including Bitwarden, LastPass, Keeper, Microsoft Edge, KeePassX, KeePass2, and Password Depot.

Perfect for testing password manager integrations, security audits, and development workflows. Available as both a web interface and REST API.

License Node.js Next.js

Buy Me A Coffee

✨ What This Tool Does

  • 🏒 Generate test vaults with realistic business data
  • πŸ”‘ Create weak passwords for security testing
  • πŸ“Š Export multiple formats (JSON, CSV, XML)
  • πŸ—οΈ Nested folders/collections for complex organizational structures
  • ⚑ Handle large datasets (up to 10,000 items) with progress tracking
  • πŸ”— REST API for programmatic vault generation
  • 🌍 Multi-language support with 26 locales and non-standard characters
  • πŸ›οΈ Enterprise URLs with 66 pre-configured business domains (customizable)
  • πŸŒ“ Light/Dark theme with system preference detection

πŸš€ Quick Start

1. Prerequisites

You need Node.js 18 or newer installed on your computer.

Check if you have Node.js:

node --version

Don't have Node.js? Download it from nodejs.org

2. Get the Code

# Clone this repository
git clone https://github.com/keithhubner/password-vault-generator.git

# Go into the project folder
cd password-vault-generator

3. Install & Run

# Install dependencies
npm install

# Optional: Configure environment variables
cp .env.example .env

# Start the application
npm run dev

4. Open Your Browser

Go to http://localhost:3000 and start generating vault data!

πŸ“‹ How to Use

Basic Usage

  1. Choose your vault format (Bitwarden, LastPass, etc.)
  2. Set item counts (logins, notes, cards, identities)
  3. Click "Generate Vault"
  4. Download your test data

Advanced Features

  • Weak Passwords: Enable for security testing (configurable percentage)
  • Password Reuse: Simulate real-world password habits
  • Real URLs: Use actual website domains vs. fake ones
  • Enterprise URLs: Use 66 pre-configured enterprise/B2B domains (Salesforce, Jira, etc.)
  • Custom Enterprise URLs: Define your own list of domains via UI or API
  • Nested Collections: Create hierarchical folder structures
  • Large Datasets: Generate thousands of items with progress tracking
  • Multi-Language Support: Generate test data with international characters
  • Theme Toggle: Switch between light, dark, or system theme

πŸ›οΈ Enterprise URLs

Generate vault data with realistic enterprise/B2B website URLs commonly found in corporate password vaults. Perfect for testing enterprise password manager deployments.

Pre-configured Enterprise URLs (66 domains)

The tool includes 66 categorized enterprise URLs across 12 business categories:

Category Example Domains
CRM & Sales salesforce.com, hubspot.com, zoho.com, pipedrive.com
Security & SIEM crowdstrike.com, splunk.com, paloaltonetworks.com, okta.com
Enterprise Collaboration slack.com, teams.microsoft.com, zoom.us, atlassian.com
Cloud Infrastructure aws.amazon.com, console.cloud.google.com, portal.azure.com
DevOps & CI/CD github.com, gitlab.com, jenkins.io, circleci.com
Project Management jira.atlassian.com, asana.com, monday.com, smartsheet.com
Analytics & BI tableau.com, looker.com, powerbi.microsoft.com
HR & Talent workday.com, greenhouse.io, lever.co, bamboohr.com
Finance & ERP netsuite.com, quickbooks.intuit.com, sap.com
Document Management box.com, dropbox.com, sharepoint.com
Marketing Automation marketo.com, mailchimp.com, sendgrid.com
IT Service Management servicenow.com, zendesk.com, freshservice.com

Using Enterprise URLs

Web Interface:

  1. Check "Use real website URLs for logins"
  2. Check "Enterprise URLs only"
  3. All 66 enterprise URLs are selected by default
  4. Click the gear icon to manage URLs:
    • Enable/disable individual URLs
    • Add custom URLs with categories
    • Import URLs from CSV
    • Select All / Deselect All toggle
    • Reset to defaults

API Usage:

# Use default enterprise URLs
curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "bitwarden",
    "loginCount": 50,
    "useRealUrls": true,
    "useEnterpriseUrls": true
  }'

# Use custom enterprise URLs
curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "bitwarden",
    "loginCount": 50,
    "useRealUrls": true,
    "useEnterpriseUrls": true,
    "enterpriseUrls": ["mycompany.com", "internal.corp.net", "dev.example.org"]
  }'

Custom URL Management

The Enterprise URLs modal allows you to:

  • Add Custom URLs: Enter domain and category, click the + button
  • Remove Custom URLs: Hover over custom URL and click X
  • Import CSV: Upload a file with one URL per line
  • Toggle URLs: Enable/disable individual URLs for generation
  • Persistent Settings: Your customizations are saved in localStorage

πŸŒ“ Theme Support

The application supports light, dark, and system themes:

  • Light Mode: Clean, bright interface for daytime use
  • Dark Mode: Reduced eye strain for low-light environments
  • System Mode: Automatically matches your OS preference

Click the theme toggle button in the header to switch between modes. Your preference is saved and persists across sessions.

🌍 Multi-Language Support

Test password managers with international character sets and non-ASCII data for comprehensive compatibility testing.

Supported Languages & Character Sets

European Languages (with accented characters):

  • French (fr): Γ , Γ’, Γ©, Γ¨, Γͺ, Γ«, Γ§ β†’ SociΓ©tΓ© GΓ©nΓ©rale, HΓ΄tel PremiΓ¨re Γ‰toile
  • German (de): Γ€, ΓΆ, ΓΌ, ß β†’ MΓΌller & SΓΆhne GmbH, BΓΌroservice ZΓΌrich
  • Spanish (es): Γ‘, Γ©, Γ­, Γ±, Γ³, ΓΊ β†’ ComunicaciΓ³n y MΓ‘s, JosΓ© MarΓ­a
  • Italian (it): Γ , Γ¨, Γ©, Γ¬, Γ², ΓΉ β†’ SocietΓ  Italiana, UniversitΓ 

Non-Latin Scripts:

  • Chinese: δΈ­ζ–‡ (Simplified & Traditional)
  • Arabic: Ψ§Ω„ΨΉΨ±Ψ¨ΩŠΨ© (right-to-left text)
  • Russian: ΠΊΠΈΡ€ΠΈΠ»Π»ΠΈΡ†Π° (Cyrillic)
  • Japanese: ζ—₯本θͺž (Hiragana, Katakana, Kanji)
  • Korean: ν•œκ΅­μ–΄ (Hangul)
  • Greek: Ρλληνικά
  • Hebrew: Χ’Χ‘Χ¨Χ™Χͺ
  • Thai: ΰΉ„ΰΈ—ΰΈ’
  • Vietnamese: TiαΊΏng Việt

Additional European Languages: Dutch, Swedish, Danish, Finnish, Polish, Slovak, Hungarian, Romanian, Croatian, and Latvian.

Language Selection

Web Interface: Use the Language/Locale dropdown to select from 26 supported locales.

API Usage: Include the language parameter in your requests:

curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "bitwarden",
    "language": "fr",
    "loginCount": 50
  }'

International Character Testing

Perfect for testing:

  • UTF-8 Import/Export: Verify password managers handle international encoding
  • Search Functionality: Test search with accented and non-Latin characters
  • Display Rendering: Ensure proper font and character rendering
  • Data Integrity: Verify no character corruption during import/export
  • Right-to-Left Languages: Test Arabic and Hebrew text direction
  • Mixed Scripts: Test handling of multiple character sets in one vault

πŸ”— REST API

The Password Vault Generator includes a REST API for programmatic access, perfect for CI/CD pipelines, automated testing, and integration with other tools.

API Endpoints

Get Supported Formats

GET /api/vault/formats

Response:

{
  "message": "Supported password vault formats",
  "formats": {
    "bitwarden": {
      "name": "Bitwarden",
      "supportedVaultTypes": ["individual", "org"],
      "supportedItemTypes": ["login", "secureNote", "creditCard", "identity"],
      "organizationalFeatures": ["folders (individual)", "collections (org)", "nested collections (org only)"],
      "outputFormat": "JSON"
    },
    "lastpass": {
      "name": "LastPass",
      "supportedVaultTypes": ["individual"],
      "supportedItemTypes": ["login"],
      "organizationalFeatures": [],
      "outputFormat": "CSV"
    }
  }
}

Generate Vault Data

POST /api/vault/generate
Content-Type: application/json

API Examples

Basic Bitwarden Individual Vault

curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "bitwarden",
    "vaultType": "individual", 
    "loginCount": 50,
    "useRealUrls": true,
    "useWeakPasswords": false
  }'

Bitwarden Organization with Collections

curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "bitwarden",
    "vaultType": "org",
    "loginCount": 100,
    "secureNoteCount": 20,
    "creditCardCount": 10,
    "useCollections": true,
    "useNestedCollections": true,
    "collectionCount": 15,
    "topLevelCollectionCount": 5,
    "collectionNestingDepth": 3,
    "distributeItems": true,
    "useRealUrls": true,
    "useWeakPasswords": true,
    "weakPasswordPercentage": 25,
    "reusePasswords": true,
    "passwordReusePercentage": 15
  }'

LastPass CSV Export

curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "lastpass",
    "loginCount": 75,
    "useRealUrls": true,
    "useWeakPasswords": true,
    "weakPasswordPercentage": 30
  }' > lastpass_export.csv

KeePass2 XML Export

curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "keepass2",
    "loginCount": 200,
    "useRealUrls": false,
    "reusePasswords": true,
    "passwordReusePercentage": 20
  }' > keepass2_export.xml

Enterprise URL Testing

# Generate vault with default enterprise URLs (66 B2B domains)
curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "bitwarden",
    "loginCount": 100,
    "useRealUrls": true,
    "useEnterpriseUrls": true
  }' > enterprise_vault.json

# Generate vault with custom enterprise URLs
curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "lastpass",
    "loginCount": 50,
    "useRealUrls": true,
    "useEnterpriseUrls": true,
    "enterpriseUrls": ["internal.mycompany.com", "vpn.corp.net", "mail.business.org"]
  }' > custom_enterprise_vault.csv

International Character Testing

# Generate German vault with umlauts and special characters
curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "bitwarden",
    "language": "de",
    "loginCount": 100,
    "useRealUrls": true
  }' > german_vault.json

# Generate French vault with accented characters  
curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "lastpass",
    "language": "fr", 
    "loginCount": 75,
    "useWeakPasswords": true
  }' > french_vault.csv

# Generate Chinese vault with Traditional characters
curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "bitwarden",
    "language": "zh_TW",
    "vaultType": "org",
    "loginCount": 50,
    "useCollections": true
  }' > chinese_vault.json

API Parameters

Parameter Type Description Applicable Formats
format string Required. Vault format (bitwarden, lastpass, keeper, edge, keepassx, keepass2, password-depot) All
language string Language/locale code for international characters (en, fr, de, es, it, pt, ru, ja, zh_CN, etc.) Default: en All
vaultType string Vault type (individual, org) Bitwarden only
loginCount number Number of login items (default: 50) All
secureNoteCount number Number of secure notes Bitwarden only
creditCardCount number Number of credit cards Bitwarden only
identityCount number Number of identity items Bitwarden only
useRealUrls boolean Use real website URLs vs fake ones All
useEnterpriseUrls boolean Use enterprise/B2B URLs (requires useRealUrls: true) All
enterpriseUrls string[] Custom list of enterprise URLs to use (overrides defaults) All
useWeakPasswords boolean Include weak passwords All
weakPasswordPercentage number Percentage of weak passwords (1-100) All
reusePasswords boolean Enable password reuse All
passwordReusePercentage number Percentage of reused passwords (1-100) All
useCollections boolean Create collections Bitwarden org only
useNestedCollections boolean Create nested collection hierarchy Bitwarden org only
collectionCount number Number of collections Bitwarden org only
topLevelCollectionCount number Number of top-level collections Bitwarden org only
collectionNestingDepth number Max nesting depth (1-5) Bitwarden org only
distributeItems boolean Distribute items across collections Bitwarden org only

API Error Responses

The API validates requests and returns appropriate error messages:

# Invalid vault type for non-Bitwarden formats
{
  "error": "Organization vaults are only supported for Bitwarden format"
}

# Invalid item types for non-Bitwarden formats  
{
  "error": "Secure notes are only supported for Bitwarden format"
}

# Invalid collection settings
{
  "error": "Collections are only supported for Bitwarden organization vaults"
}

Integration Examples

GitHub Actions CI/CD

- name: Generate test vault data
  run: |
    curl -X POST http://localhost:3000/api/vault/generate \
      -H "Content-Type: application/json" \
      -d '{"format": "bitwarden", "loginCount": 100}' \
      > test-vault.json

Python Script

import requests
import json

# Generate Bitwarden org vault
payload = {
    "format": "bitwarden",
    "vaultType": "org", 
    "loginCount": 500,
    "useCollections": True,
    "collectionCount": 20,
    "useWeakPasswords": True,
    "weakPasswordPercentage": 35
}

response = requests.post(
    "http://localhost:3000/api/vault/generate",
    json=payload
)

if response.status_code == 200:
    vault_data = response.json()
    with open("test_vault.json", "w") as f:
        json.dump(vault_data, f, indent=2)
else:
    print(f"Error: {response.json()}")

Node.js/JavaScript

const generateVault = async () => {
  const response = await fetch('http://localhost:3000/api/vault/generate', {
    method: 'POST',
    headers: { 'Content-Type': 'application/json' },
    body: JSON.stringify({
      format: 'lastpass',
      loginCount: 250,
      useRealUrls: true,
      useWeakPasswords: true,
      weakPasswordPercentage: 40
    })
  });
  
  if (response.ok) {
    const csvData = await response.text();
    console.log('Generated CSV data:', csvData);
  } else {
    const error = await response.json();
    console.error('API Error:', error.error);
  }
};

πŸ’‘ Use Cases

For Developers

  • API Testing: Generate realistic data for password manager integrations
  • Database Seeding: Populate test environments with structured vault data
  • UI/UX Testing: Test how your app handles large datasets and various formats
  • CI/CD Integration: Automate test data generation in deployment pipelines
  • Load Testing: Generate large datasets programmatically for performance testing

For Security Teams

  • Password Audits: Generate datasets with known weak passwords for testing detection tools
  • Penetration Testing: Create realistic vaults to test security scanning tools
  • Compliance Testing: Validate how systems handle different vault structures

For DevOps

  • Migration Testing: Test data migration between different password managers
  • Backup Testing: Validate backup and restore procedures with realistic data
  • Performance Testing: Stress test systems with large vault datasets

🎯 Supported Export Formats

Password Manager Export Format Features
Bitwarden JSON Individual/Organization vaults, nested collections, TOTP
LastPass CSV Simple format, groupings, TOTP secrets
Keeper JSON/CSV Nested folders, shared folders, custom fields
Microsoft Edge CSV Basic password export format
KeePassX CSV Simple database export
KeePass2 XML Full database with groups, entries, metadata
Password Depot CSV Semicolon-separated format with importance levels, categories

βš™οΈ Configuration Options

Security Testing

  • Weak Password %: Set percentage of passwords that are weak/common
  • Password Reuse %: Simulate users reusing passwords across sites
  • Real URLs: Use actual domains (google.com, facebook.com) vs fake ones

Data Volume

  • Login Items: 0-10,000 password entries
  • Secure Notes: Text notes with metadata
  • Credit Cards: Payment card information
  • Identity Items: Personal information (name, address, etc.)

Organization Structure

  • Nested Collections: Create folder hierarchies (Finance/Accounting/Invoices)
  • Business Departments: Use realistic department names
  • Collection Distribution: Automatically assign items to collections

🌐 Environment Configuration

Hosting Provider Branding

To display hosting provider branding (like Civo), set environment variables:

# Copy the example environment file
cp .env.example .env

# Edit .env and set:
NEXT_PUBLIC_HOSTED_ON=civo

Supported Providers:

  • civo - Displays Civo branding with link to civo.com
  • Leave empty to hide branding

Logo Setup:

  • Current logos in public/img/ are placeholders
  • Replace civo-logo.svg and civo-logo.jpg with official Civo brand assets
  • Follow Civo branding guidelines for proper usage
  • See public/img/README.md for detailed instructions

πŸ”§ Building & Development

Want to modify the code? Here are the developer commands:

# Check TypeScript types
npm run lint

# Build for production
npm run build

# Start production server
npm start

☸️ Kubernetes Deployment

Deploy to Kubernetes (like Civo) using the provided manifests:

# Deploy all components
kubectl apply -f k8s/

# Check deployment status
kubectl get pods -n password-vault-generator

The app will automatically show Civo branding when NEXT_PUBLIC_HOSTED_ON=civo is set in the ConfigMap.

πŸ“– See k8s/README.md for detailed deployment instructions

πŸ“ Step-by-Step Examples

Web Interface Examples

Example 1: Basic Bitwarden Export

Goal: Create a simple Bitwarden vault for testing

1. Open http://localhost:3000
2. Select "Bitwarden" as vault format
3. Keep "Individual" vault type selected
4. Set "Number of Logins" to 50
5. Click "Generate Vault" 
6. Click "Download JSON"

Result: You'll get a JSON file with 50 realistic login entries

Example 2: Enterprise Password Vault

Goal: Test with realistic corporate/enterprise URLs

1. Open http://localhost:3000
2. Select any vault format (e.g., "Bitwarden")
3. Check "Use real website URLs for logins"
4. Check "Enterprise URLs only"
5. Click the gear icon to manage URLs
6. Optionally add custom internal URLs (e.g., "vpn.mycompany.com")
7. Set login count to 100+
8. Generate and download

Result: Vault with logins for Salesforce, Jira, AWS, Okta, and other B2B platforms

Example 3: Security Testing Dataset

Goal: Test your password manager's security scanning

1. Select any vault format
2. Check "Include weak passwords"
3. Set weak password percentage to 40%
4. Check "Reuse passwords across multiple sites"
5. Set password reuse to 30%
6. Generate 200+ login items
7. Import into your password manager
8. Run security audit to see weak/reused passwords detected

Example 4: Large Organization Vault

Goal: Test how your system handles enterprise data

1. Select "Bitwarden" format
2. Choose "Organization" vault type  
3. Check "Create collections for business departments"
4. Check "Use nested collections"
5. Set total collections to 50
6. Set logins to 1000, notes to 100, cards to 50
7. Check "Assign items to collections"
8. Generate and download

API Examples

Example 5: Automated Test Data Generation

Goal: Generate vault data in your CI/CD pipeline

# Generate Bitwarden test data for automated testing
curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "bitwarden",
    "loginCount": 500,
    "useWeakPasswords": true,
    "weakPasswordPercentage": 35,
    "reusePasswords": true,
    "passwordReusePercentage": 20
  }' > test-vault.json

# Use in your test suite
python security_test.py --vault-file test-vault.json

Example 6: Bulk Export for Migration Testing

Goal: Generate multiple format exports for migration testing

# Generate different formats for the same dataset
formats=("bitwarden" "lastpass" "keepass2" "keeper")

for format in "${formats[@]}"; do
  curl -X POST http://localhost:3000/api/vault/generate \
    -H "Content-Type: application/json" \
    -d "{
      \"format\": \"$format\",
      \"loginCount\": 200,
      \"useRealUrls\": true
    }" > "migration_test_${format}.$([ "$format" = "keepass2" ] && echo "xml" || echo "$([ "$format" = "bitwarden" ] && echo "json" || echo "csv")")"
done

Example 7: Password Depot CSV Export

Goal: Generate Password Depot compatible data via API

curl -X POST http://localhost:3000/api/vault/generate \
  -H "Content-Type: application/json" \
  -d '{
    "format": "password-depot",
    "loginCount": 100,
    "useWeakPasswords": true,
    "weakPasswordPercentage": 25,
    "useRealUrls": true
  }' > password_depot_export.csv

Result: Semicolon-separated CSV with fields: Description, Importance, Password, Last modified, Expiry Date, User Name, URL, Comments, and Category

πŸ› Troubleshooting

Common Issues

❌ "next: command not found"

# Delete node_modules and reinstall
rm -rf node_modules package-lock.json
npm install
npm run dev

❌ Port 3000 already in use

# Use a different port
npm run dev -- -p 3001

❌ Out of memory errors with large datasets

  • Try generating smaller batches (< 5000 items)
  • Close other applications to free memory
  • Use the progress indicator to monitor generation

🀝 Contributing

Found a bug? Want to add a new password manager format? Contributions are welcome!

  1. Fork this repository
  2. Create a new branch (git checkout -b feature/my-feature)
  3. Make your changes
  4. Test thoroughly
  5. Submit a pull request

Ideas for Contributions

  • πŸ†• New password manager formats (1Password, Dashlane, etc.)
  • 🎨 UI improvements and better user experience
  • πŸš€ Performance optimizations for larger datasets
  • πŸ§ͺ Additional test scenarios and edge cases
  • πŸ“– Documentation and examples

πŸ“„ License

This project is licensed under the MIT License - see the LICENSE file for details.

TL;DR: You can use, modify, and distribute this code freely, even commercially, just keep the copyright notice.

❓ Need Help?

  • πŸ“š Documentation: You're reading it! Scroll up for detailed guides
  • πŸ› Bug Reports: Open an issue
  • πŸ’‘ Feature Requests: Start a discussion
  • πŸ“§ Questions: Check existing issues or create a new one
  • β˜• Support Development: Buy me a coffee if this tool helped you!

⚠️ Important Notes

🎯 This is a testing tool - Generated data is for development and testing only πŸ” Not for production - Don't use generated passwords in real accounts
πŸ§ͺ Perfect for testing - Ideal for QA, security audits, and development workflows

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity

Stars

4 stars

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Sponsor this project

Packages

 
 
 

Contributors

Languages