django-two-factor-auth alternatives

Looking for an alternative tool to replace django-two-factor-auth? During the review of django-two-factor-auth we looked at other open source tools. Based on their category, tags, and text, these are the ones that have the best match.

Top 3

  1. django-sudo ('sudo' for Django applications)
  2. eapmd5pass (offline EAP-MD5 dictionary attack tool)
  3. Fail2ban (log parser and blocking utility)

These tools are ranked as the best alternatives to django-two-factor-auth.

Alternatives (by score)

74

django-sudo

Introduction

For some destructive events like removing an account, you may want to revalidate if the user really wants to continue. To ensure it is the actual owner of the account, django-sudo requests authentication again within the web application. GitHub uses this as well for some events like ownership changes and deletions.

Project details

django-sudo is written in Python.

Strengths and weaknesses

  • + More than 10 contributors
  • + The source code of this software is available

    Typical usage

    • Application security

    django-sudo review

    60

    eapmd5pass

    Introduction

    A tool like this would be most likely used to show the weakness of old authentication protocols, including penetration testing.

    Project details

    eapmd5pass is written in C.

    Strengths and weaknesses

    • + The source code of this software is available

      Typical usage

      • Network analysis
      • Password discovery
      • Penetration testing

      eapmd5pass review

      81

      Fail2ban

      Introduction

      Fail2Ban is an intrusion prevention software framework that protects computer servers from brute-force attacks

      Project details

      Fail2ban is written in Python.

      Strengths and weaknesses

      • + More than 2000 GitHub stars
      • + The source code of this software is available

        Typical usage

        • Network traffic filtering
        • Security monitoring

        Fail2ban review

        85

        LogonTracer

        Introduction

        LogonTracer is a tool to investigate malicious logins from Windows event logs with visualization capabilities.

        Project details

        LogonTracer is written in Python.

        Strengths and weaknesses

        • + More than 500 contributors
        • + The source code of this software is available

          Typical usage

          • Criminal investigations
          • Digital forensics
          • Learning

          LogonTracer review

          74

          Yosai

          Introduction

          Yosai is a security framework for Python applications and adds authentication, authorization, and session management capabilities. Features include Role-Based Access Control (RBAC), two-factor authentication, and Time-based One-Time Passwords (TOTP). Besides a focus on the authentication and authorization, Yosai enables an audit trail of all relevant events.

          As each framework comes with some overhead, Yosai aims to leverage caching and serialization where possible.

          Project details

          Yosai is written in Python.

          Strengths and weaknesses

          • + The source code of this software is available

            Typical usage

            • Application security
            • Audit logging
            • Identity and access management

            Yosai review

            Some relevant tool missing as an alternative to django-two-factor-auth? Please contact us with your suggestion.