Basic tests for password managers

Main page

Test case: Does the browser save user passwords?

Please use the link below to login with any credentials and check if they are saved in password manager. If the browser does not allow to save passwords, the test cases below may be skipped.

Run test case

Test case: Different password form id attribute

Run test case

Test case: Different password form action

Run test case

Test case: Different password form method

Run test case

Test case: Password form loaded through plain HTTP

If password is filled in this case, the password manager function is vulnerable to Man-in-the-Middle attacks.

Run test case

Test case: Does the browser ignore autocomplete for password forms?

Please first make sure the passwords saved in previous testcases are removed from the browser. Then use the link below to login and check if the credentials will be saved despite autocomplete="off".

Run test case

Test case: Does the browser remember passwords for about:blank windows (browser-defined window.open)?

Please first make sure the passwords saved in previous testcases are removed from the browser.

Rerun to check result. If the password is saved, this may be used to steal passwords from some websites implementing login forms in popup windows.

Test case: Does the browser remember passwords for about:blank windows (native window.open)?

Please first make sure the passwords saved in previous testcases are removed from the browser. This is a variant of above test case.

Please rerun to check result.