pwv (password vault) is a Windows command-line password manager.

Passwords are stored encrypted in a vault file, encrypted to the vault's public key. The private key can either be kept in a smart card that supports ECDH on the P256 curve (such as the YubiKey 4), or in software. Key access happens through the Microsoft CNG APIs.

Layout

• The vault module deals with managing the site -> (username, password) entries and serialization to/from JSON.
• Each vault has an authenticator that manages storage of the vault's ECDH key pair, and provides an authenticate abstraction for decrypting a passwords.
• Usernames and passwords are handled by the credentials module.
• The prompt module gathers credentials from the user.