tofa
tofa is an offline, encrypted 2FA tool for the terminal. Secrets stay on your
machine in an AES-256-GCM vault — no cloud, no account, no telemetry.
This site documents the command-line interface and its companion TUI. For the macOS menu bar app see the project README.
What's in here
- Getting started — install, create a vault, add your first account.
- CLI reference — every subcommand, with flags auto-synced to the source.
- Recipes — common workflows like
importing from Aegis or scripting with
TOFA_PASSPHRASE. - Security model — what the vault protects, and how.