andOTP icon
andOTP icon

andOTP

 78 likes

It implements Time-based One-time Passwords (TOTP) and HMAC-Based One-Time Passwords (HOTP). Simply scan the QR code and login with the generated 6-digit code.

Main (Light theme)
Settings (Light theme)
+3
Backup (Light theme)

License model

  • FreeOpen Source

Country of Origin

  • DE flagGermany
  • European Union flagEU

Platforms

  • Android
  • Android Tablet
Discontinued
4.7 / 5 Avg rating (11)
78likes
8comments
0news articles

Features

Suggest and vote on features

Properties

  1.  Privacy focused
  2.  Security-focused

Features

  1.  Encrypted Backup
  2.  Dark Mode
  3.  QR Code Reader
  4.  Time-based One-time Password
  5.  Two-factor Authentication
  6.  Unlock pin
  7.  Biometric Authentication
  8.  Multi-Factor Authentication (MFA)
  9.  Unlock with fingerprint
  10.  Icon sets
  11.  Sort by date
  12.  Sorting by tags
  13.  Password Generator
  14.  Community-based

 Tags

andOTP News & Activities

Highlights All activities

Recent News

No news, maybe you know any news worth sharing?
Share a News Tip

Recent activities

Show all activities

Comments and Reviews

   
 Post comment/review
Top Positive Comment
Alexandre ZANNI
Oct 24, 2018
3

Unlike FreeOTP you can export/save/backup your database.

Top Negative Comment
dany111
Jul 15, 2020
3

The developer said: "I sadly have to admit that the part about the crypto of andOTP being pretty bad is true. This is partially due to the fact that I had absolutely no clue about cryptography and very little coding experience when I forked it. In the beginning I just wanted to add backup functionality but then feature request kept comming in and it kind of snowballed from there. By the point I had enough experience to actually somewhat know what I was doing the code was already pretty bad, which is why I decided to rewrite everything from scratch rather than trying to fix it. Sadly I currently have basically no time to work on it, so this will have to wait."

Just wanted to explain the bad crypto a bit, now I'm off to download you app and play with it a bit. I'm glad to see that there are more open source 2FA alternatives emerging.


"I just want to follow up on this and add that I just now finished fixing the backup encryption. It now uses proper key derivation (PBKDF2 with random salt and iterations). The next release will include this fix. The second point, where the output of the PBKDF2 is split, is still the same. But as /u/beemdevelopment said, it's not nearly as bad as the backup stuff. This part of the code is also only used for the internal database, not for the backups, which should limit it's impact on security a bit (since getting your hands on the internal database file should be way harder than getting a backup file). Nevertheless it will be fixed at some point as well, I just don't have enough time to work on it right now." (Source)

Akhilesh_T
Mar 20, 2021
0

Moved from Authy to andOTP, and I'm glad I did.

Pros: • Everything is saved locally (no cloud backup) • Beautiful UI • Encrypted backup

Con: • I need to remember to keep an additional backup of andOTP backup somewhere other than my phone

yofaw78034
Aug 16, 2020
0

Highly configurable, allowing for manual entry or automatic from QR codes. Lots of icons for different applications/accounts. Able to backup!

Fight_Bundleware
Nov 26, 2019
1

Pros:

  • app password protection
  • encrypted backup/restore
  • search between added items
  • tab on code to show it (protection from screen readers and somebody who can look at you phone screen)
  • open source

Much better than any other similar app!

kactusti
Nov 13, 2019
0

The best and opensource!!! Safe and fast!

kfua
Jun 14, 2019
2

Great open source app.

The developer is working on a new app that will have more futures but it will take some time to release it.

Show more comments
7 of 8 comments

What is andOTP?

It implements Time-based One-time Passwords (TOTP) and HMAC-Based One-Time Passwords (HOTP). Simply scan the QR code and login with the generated 6-digit code.

This project started out as a fork of the great OTP Authenticator app written by Bruno Bierbaumer, which has sadly been inactive since 2015. By now almost every aspect of the app has been changed/re-written so the fork status of the Github repository got detached upon user request. But all credit for the original version and for starting this project still goes to Bruno!

Features:

  • Free and Open-Source
  • Requires minimal permissions
  • Camera access for QR code scanning
  • Storage access for import and export of the database
  • Encrypted storage with two backends: Android KeyStore Password / PIN
  • Multiple backup options: Plain-text Password-protected OpenPGP-encrypted
  • Sleek minimalistic Material Design with three different themes: Light Dark Black (for OLED screens)
  • Great Usability
  • Compatible with Google Authenticator
  • Supported algorithms: TOTP (Time-based One-time Passwords) as specified in RFC 6238 HOTP (HMAC-based One-time Passwords) as specified in RFC 4226

Official Links

andOTP information

  • Developed by

    DE flagJakob Nixdorf
  • Licensing

    Open Source (MIT) and Free product.
  • Written in

  • Rating

    Average rating of 4.7 (11 ratings)
  • Alternatives

    53 alternatives listed
  • Supported Languages

    • English

AlternativeTo Categories

Security & PrivacyBackup & SyncDevelopment

GitHub repository

  •  3,746 Stars
  •  374 Forks
  •  198 Open Issues
  •   Updated Jun 14, 2022 (Archived)
View on GitHub

Our users have written 8 comments and reviews about andOTP, and it has gotten 78 likes

andOTP was added to AlternativeTo by Techsorcist on Jul 26, 2017 and this page was last updated Jul 1, 2024.