Automatically generates per-site passwords if you prefix your password with @@ or F2. Alternate version to original PwdHash add-on to fix issues in Firefox 66 and onwards, added optional more secure hashing algorithm and highlight password field.

PwdHash2 promo image
What is PwdHash2?

PwdHash2 is a Firefox add-on by GWu. This add-on has 87 daily active users and a perfect 5.0 rating. The latest version, 1.0.1, was updated 3 years ago.

Stats date:
By: GWu
Users: 87
Rating: 5.00 (5)
Version: 1.0.1 (Last updated: 2019-12-08)
Creation date: 2019-04-22
Weekly download count: NaN
Firefox on Android: No
Manifest version: 2
  • storage
Size: 110.26K
URLs: Website
Risk impact: High risk impact
Risk likelihood: Low risk likelihood
Found a bug?

Other platforms

Not available on Chrome
Not available on Edge
Automatically generates per-site passwords if you prefix your password with @@ or press F2 beforehand. Prevents JavaScript from reading your password as it is typed. The same password will be generated at each subdomain: matches, matches, but and are different. 

This is based on the Stanford PwdHash add-on, main changes to the original:
  1. Fixed defunct original version, caused by changes in Firefox 66.0.2 keypress event handling
  2. Highlight password field, if active
  3. Added option to change the hash algorithm from HMAC-MD5 to PBKDF2-SHA256 ( based on PwdHash-PoC )
  4. Added option to store a user-specified salt and iteration count.
  5. Added option to use legacy (Stanford PwdHash) mode by Shift-F2 or in the options
Hashed passwords can also be generated at Development:
Risk impact

PwdHash2 requires a number of risky permissions that can potentially harm your browser and steal your data. Exercise caution when installing this add-on. Review carefully before installing. We recommend that you only install PwdHash2 if you trust the publisher.

Risk impact measures the level of extra permissions an extension has access to. A low risk impact extension cannot do much harms, whereas a high risk impact extension can do a lot of damage like stealing your password, bypass your security settings, and access your personal data. High risk impact extensions are not necessarily malicious. However, if they do turn malicious, they can be very harmful.

Risk likelihood

PwdHash2 has earned a fairly good reputation and likely can be trusted.

Risk likelihood measures the probability that a Firefox add-on may turn malicious. This is determined by the publisher and the Firefox add-on reputation on Firefox Browser Add-ons, the amount of time the Firefox add-on has been around, and other signals about the Firefox add-on. Our algorithms are not perfect, and are subject to change as we discover new ways to detect malicious extensions. We recommend that you always exercise caution when installing a Firefox add-on, especially ones with higher risk impact and/or higher risk likelihood.

Subscribe to the premium plan to see more risk analysis details
User reviews
Thanks for updating the original to newer Firefox versions, however you did it.
by Mentor54, 2022-04-05

by Vlad, 2019-09-26
View all user reviews