A script-based, small (~1mb), Open Source Application written in AutoHotkey that provides keyboard shortcuts to auto-type usernames, passwords and Time-based One-Time Passwords* (TOTP) for applications and websites, it borrows the concepts coined by KeePass but with Bitwarden as "backend".
It does NOT replace Bitwarden application as entries can't be added/edited. They can run side-by-side but is not required.
* Even for the free version, but please support Bitwarden development by buying a subscription (I'm not affiliated in any way).
Some people feel uneasy to trust their passwords to 3rd parties, and of course that's the way it should be. Why trust this small application? Because its 100% transparent. Bitwarden itself is the same, relies on being completely transparent and Open Source.
While Open Source is not a silver bullet, allows anyone to audit the code. Granted, not everyone is able to do so but at least the code is here hopefully gaining enough traction to fall into the hands of capable reviewers.
Here are some highlights for the more suspicious/paranoid:
bw.exe
is not bundled, is retrieved from the official distribution.Please note that even if the auto-type application does not need any network connectivity, bw.exe
does for logging and synchronization of the vault.
As of August 21 2021, Bitwarden increased its security requiring some users to use a Personal API Key; Auto-Type supports this, please refer to the official site for more information:
https://bitwarden.com/help/cli-auth-challenges/
The application attempts to fullfil the applicable Top-10 user requested features of the community:
1 Generates an independent Authenticator Key.\ 2 The synchronization is done on schedule.\ 3 IE 11 was tested, older versions might need to use title matching.
Wiki details them:
Installer:
Portable:
1.11
) in the same directory.Both:
Optional:
auto-type
sequence field (name can be changed in [ADVANCED]
section of settings file).http://example.com
https://www.example.com/path/login.html?foo=bar
thunderbird.exe
app://thunderbird.exe
winapp://thunderbird.exe
Mail Server Password
app://Mail Server Password
winapp://Mail Server Password
app://?title=Mail Server Password Required
winapp://?title=Mail Server Password Required
app://?class=MozillaDialogClass
winapp://?class=MozillaDialogClass
Why winapp://
or app://
? Both are currently unused. winapp://
is consistent with androidapp://
and iosapp://
which are in use. app://
is OS agnostic (an Auto-Type app for MacOS/Linux could make use of it). Protocols can be iconified (for example: app://
, macapp://
, linuxapp://
and winapp://
).
bw.exe
is 64 bits only.tcato
, value off
).{SmartTab}
doesn't work with Chromium-based applications.
auto-type
rule.THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.