Bitwarden

Last updated

Bitwarden
Original author(s) Kyle Spearrin
Developer(s) Bitwarden Inc.
Initial releaseAugust 10, 2016 (2016-08-10)
Stable release(s) [±]
Android2024.4.2 / May 3, 2024;49 days ago (2024-05-03) [1]
iOS2024.4.2 / May 3, 2024;49 days ago (2024-05-03) [2]
Desktop2024.4.1 / April 12, 2024;2 months ago (2024-04-12) [3]
Command-Line Interface2024.3.1 / April 8, 2024;2 months ago (2024-04-08) [4]
Browser2024.4.1 / April 12, 2023;14 months ago (2023-04-12) [5]
Server2024.4.2 / May 1, 2024;51 days ago (2024-05-01) [6]
Repository github.com/bitwarden
Written in TypeScript, C#, and Rust
Operating system Linux, macOS, Windows, Android, iOS, iPadOS, WatchOS
Available in Multilingual
Type Password manager
License Server: AGPL-3.0-only [7]
Clients: GPL-3.0-only [7]
Some modules: Proprietary [7] [8]
Website bitwarden.com


Bitwarden is a freemium open-source password management service that stores sensitive information, such as website credentials, in an encrypted vault. The platform offers a variety of client applications, including a web interface, desktop applications, browser extensions, mobile apps, and a command-line interface. [9] Bitwarden offers a free US or European cloud-hosted service as well as the ability to self-host. [10] [11] [12]

Contents

Desktop applications are available for Windows, MacOS, and Linux. [13] Browser extensions include Chrome, Firefox, Safari, Edge, Opera, Vivaldi, Arc, Brave and Tor. [13] Mobile apps for Android, iPhone, and iPad are available. [13]

Client functionalities include 2FA login, passwordless login, biometric unlock, passkey management, random password generator, password strength testing tool, login/form/app autofill, syncing across unlimited platforms and devices, storing unlimited number of items, sharing credentials, and storing a variety of information including credit cards.

Features

Bitwarden uses zero-knowledge encryption, meaning the company can't see its users' data. This is achieved by end-to-end encrypting vault data with AES-CBC 256-bit and by using PBKDF2 SHA-256/Argon2id to derive the encryption key. [14] [15] The codebases of the PC clients, the mobile apps, and the server are open-source. [16] Third-party security audits are conducted annually and a vulnerability disclosure program is also established. [17] [18] Bitwarden is compliant with HIPAA, GDPR, CCPA, SOC 2, SOC 3, and the EU-US and Swiss–US Privacy Shield frameworks. [18]

Bitwarden offers cloud synchronization with servers situated in the USA and EU. [12] Additionally, users also have the possibility to self-host their own server. [19]

The clients are offered as web interface, desktop application (Windows, macOS and Linux), browser extensions (Chrome, Firefox, Safari, Edge, Opera, Vivaldi, Arc, Brave and Tor), mobile apps (Android, iOS, iPadOS and watchOS). [13] 50 languages and dialects are supported, although not all of them are available on all clients. [20]

Inside the vault, a user can save logins (username and password combination, passkeys and TOTP seeds), cards (debit and credit), identities (billing data and other information concerning an individual) and secure notes (free-form text). Furthermore each item type can be extended by custom fields and file attachments, which are restricted by file size depending on the subscription plan. [13] [21]

Bitwarden supports the import of data from more than 50 password managers, including LastPass, 1Password and Keeper. For the export of data, JSON, encrypted JSON and CSV are available. [22]

To login a user can, in addition to an email-address and password combination, also use biometric authentication, two-factor authentication, single sign-on and passwordless login via notification approval on a mobile/desktop device. [13] [23] [24] [25]

Besides the managing of passwords, Bitwarden also provides other tools, e.g. a password strength tester, a password/username generator, integrations with email alias/forwarding services (SimpleLogin, AnonAddy, Firefox Relay, Fastmail, Forward Email and DuckDuckGo) and a feature called "Send". [26] [27] [28] "Send" allows users to share end-to-end encrypted texts (free version) and files (paid versions) with others. For each item, an expiration date, a maximum access limit and a password can optionally be specified. [29]

Reception

In January 2021, in its first password-protection program comparison, U.S. News & World Report selected Bitwarden as "Best Password Manager". [30] In February, with competitor LastPass about to remove a feature from its free version, CNET recommended Bitwarden as the best free app for password synchronization across multiple devices, [31] while Lifehacker recommended it as "the best password manager for most people." [32]

Critics have praised the features offered in the software's free version, and the low price of the premium tier compared to other managers. [31] [33] [34] [35] The product was named the best "budget pick" in a Wirecutter password manager comparison. [36] Bitwarden's secure open-source implementation was also praised by reviewers. [33] [37]

Tom's guide found some features to be less intuitive than they could be, [33] while PC Magazine criticized the high price of the business tier. [38] Mobilesyrup was disappointed by the simplistic graphics of the user interface, and felt that it was missing a few features found in competitors' offerings. [34]

History

2016–2017

Bitwarden debuted in August 2016 with an initial release of mobile applications for iOS and Android, browser extensions for Chrome and Opera, and a web vault. The browser extension for Firefox was later launched in February 2017. [39] In February 2017, the Brave web browser began including the Bitwarden extension as an optional replacement password manager. [40]

In September 2017, Bitwarden launched a bug bounty program at HackerOne. [17] [18]

2018

In January 2018, the Bitwarden browser extension was adapted to and released for Apple's Safari browser through the Safari Extensions Gallery. [41]

In February 2018, Bitwarden debuted as a stand-alone desktop application for macOS, Linux, and Windows. It was built as a web app variant of the browser extension and delivered on top of Electron. [42] The Windows app was released alongside the Bitwarden extension for Microsoft Edge in the Microsoft Store a month later. [43] [44]

In March 2018, Bitwarden's web vault was criticized for embedding unconstrained third-party JavaScript from BootstrapCDN, Braintree, Google, and Stripe. These embedded scripts could pose as an attack vector to gain unauthorized access to Bitwarden users' passwords. [45] These third-party scripts were removed as part of the Bitwarden 2.0 Web Vault update, released in July 2018. [46]

In May 2018, Bitwarden released a command-line application enabling users to write scripted applications using data from their Bitwarden vaults. [9] [47] [48]

In June 2018, Cliqz performed a privacy and security review of the Bitwarden for Firefox browser extension and concluded that it would not negatively impact their users. Following the review, Bitwarden was made available as an optional password manager in the Cliqz web browser. [49]

In October 2018, Bitwarden completed a security assessment, code audit, and cryptographic analysis from third-party security auditing firm Cure53. [50] [51] [52] [53]

2020

In July 2020, Bitwarden completed another security audit from security firm Insight Risk Consulting to evaluate the security of the Bitwarden network perimeter as well as penetration testing and vulnerability assessments against Bitwarden web services and applications.

In August 2020, Bitwarden achieved SOC 2 Type 2 and SOC 3 certification. [54] [55]

In December 2020, Bitwarden announced that it was HIPAA compliant [56] in addition to already being GDPR, CCPA, and Privacy Shield [57] compliant. [58]

2021

In August 2021, Bitwarden announced that network assessment (security assessment and penetration testing) for 2021 had been completed by the firm Insight Risk Consulting. [22] [59]

2022

In September 2022, the company announced $100M series B financing; the lead investor was PSG, with the existing investor, Battery Ventures, participating. [60] [61] The investment would be used to accelerate product development and company growth to support its users and customers worldwide. [60] [61]

2023

In January, Bitwarden announced the acquisition of Swedish startup Passwordless.dev for an undisclosed amount. [62] Passwordless.dev provided an open source solution allowing developers to easily implement passwordless authentication based on the standards WebAuthn and FIDO2. [62] [63] Bitwarden also launched a beta software service allowing third-party developers the use of biometric sign-in technologies including Touch ID, Face ID and Windows Hello in their apps. [62]

In February, Bitwarden published network security assessment and security assessment reports that were conducted by Cure53 in May and October 2022 respectively. [64] The first related to penetration testing and security assessment across Bitwarden IPs, servers, and web applications. [65] The second related to penetration testing and source code audit against all Bitwarden password manager software components, including the core application, browser extension, desktop application, web application, and TypeScript library. [66] Ghacks reported that "No critical issues were discovered during the two audits. Two security issues that Cure53 rated high were discovered during the source code audit and penetration testing. These were fixed quickly by Bitwarden and the third-party HubSpot. All other issues were either rated low or informational only." [67]

2024

On May 1, Bitwarden launched its own multi-factor authentication app, Bitwarden Authenticator. [68]

See also

Related Research Articles

A password manager is a computer program that allows users to store and manage their passwords for local applications or online services such as web applications, online shops or social media. A web browser generally has a built in version of a password manager. These have been criticised frequently as many have stored the passwords in plaintext, allowing hacking attempts.

Password fatigue is the feeling experienced by many people who are required to remember an excessive number of passwords as part of their daily routine, such as to log in to a computer at work, undo a bicycle lock or conduct banking from an automated teller machine. The concept is also known as password chaos, or more broadly as identity chaos.

LastPass is a password manager application. The standard version of LastPass comes with a web interface, but also includes plugins for various web browsers and apps for many smartphones. It also includes support for bookmarklets.

<span class="mw-page-title-main">Google Authenticator</span> Two-step verification app

Google Authenticator is a software-based authenticator by Google. It implements multi-factor authentication services using the time-based one-time password and HMAC-based one-time password, for authenticating users of software applications.

Firefox was created by Dave Hyatt and Blake Ross as an experimental branch of the Mozilla browser, first released as Firefox 1.0 on November 9, 2004. Starting with version 5.0, a rapid release cycle was put into effect, resulting in a new major version release every six weeks. This was gradually accelerated further in late 2019, so that new major releases occur on four-week cycles starting in 2020.

<span class="mw-page-title-main">1Password</span> Password management software

1Password is a password manager developed by the Canadian software company AgileBits Inc. It supports multiple platforms such as iOS, Android, Windows, Linux, and macOS. It provides a place for users to store various passwords, software licenses, and other sensitive information in a virtual vault that is locked with a PBKDF2-guarded master password. By default, the user’s encrypted vault is hosted on AgileBits’ servers for a monthly fee.

Mozilla is a free software community founded in 1998 by members of Netscape. The Mozilla community uses, develops, publishes and supports Mozilla products, thereby promoting exclusively free software and open standards, with only minor exceptions. The community is supported institutionally by the non-profit Mozilla Foundation and its tax-paying subsidiary, the Mozilla Corporation.

<span class="mw-page-title-main">SQRL</span> Draft open standard for identity verification

SQRL or Secure, Quick, Reliable Login is a draft open standard for secure website login and authentication. The software typically uses a link of the scheme sqrl:// or optionally a QR code, where a user identifies via a pseudonymous zero-knowledge proof rather than providing a user ID and password. This method is thought to be impervious to a brute-force password attack or data breach. It shifts the burden of security away from the party requesting the authentication and closer to the operating-system implementation of what is possible on the hardware, as well as to the user. SQRL was proposed by Steve Gibson of Gibson Research Corporation in October 2013 as a way to simplify the process of authentication without the risk of revelation of information about the transaction to a third party.

<span class="mw-page-title-main">Proton Mail</span> End-to-end encrypted email service

Proton Mail is a Swiss end-to-end encrypted email service founded in 2013 headquartered in Plan-les-Ouates, Switzerland. It uses client-side encryption to protect email content and user data before they are sent to Proton Mail servers, unlike other common email providers such as Gmail and Outlook.com. The service can be accessed through a webmail client, the Tor network, Windows, macOS and Linux (beta) desktop apps and iOS and Android apps.

Universal 2nd Factor (U2F) is an open standard that strengthens and simplifies two-factor authentication (2FA) using specialized Universal Serial Bus (USB) or near-field communication (NFC) devices based on similar security technology found in smart cards. It is succeeded by the FIDO2 Project, which includes the W3C Web Authentication (WebAuthn) standard and the FIDO Alliance's Client to Authenticator Protocol 2 (CTAP2).

uBlock Origin Web browser extension

uBlock Origin is a free and open-source browser extension for content filtering, including ad blocking. The extension is available for Chrome, Chromium, Edge, Firefox, Brave, Opera, Pale Moon, as well as versions of Safari before 13. uBlock Origin has received praise from technology websites and is reported to be much less memory-intensive than other extensions with similar functionality. uBlock Origin's stated purpose is to give users the means to enforce their own (content-filtering) choices.

Credential stuffing is a type of cyberattack in which the attacker collects stolen account credentials, typically consisting of lists of usernames or email addresses and the corresponding passwords, and then uses the credentials to gain unauthorized access to user accounts on other systems through large-scale automated login requests directed against a web application. Unlike credential cracking, credential stuffing attacks do not attempt to use brute force or guess any passwords – the attacker simply automates the logins for a large number of previously discovered credential pairs using standard web automation tools such as Selenium, cURL, PhantomJS or tools designed specifically for these types of attacks, such as Sentry MBA, SNIPR, STORM, Blackbullet and Openbullet.

Wire is an encrypted communication and collaboration app created by Wire Swiss. It is available for iOS, Android, Windows, macOS, Linux, and web browsers such as Firefox. Wire offers a collaboration suite featuring messenger, voice calls, video calls, conference calls, file-sharing, and external collaboration – all protected by a secure end-to-end-encryption. Wire offers three solutions built on its security technology: Wire Pro – which offers Wire's collaboration feature for businesses, Wire Enterprise – includes Wire Pro capabilities with added features for large-scale or regulated organizations, and Wire Red – the on-demand crisis collaboration suite. They also offer Wire Personal, which is a secure messaging app for personal use.

Myki was a password manager and authenticator developed by Myki Security. Myki was available on iOS and Android, as browser extensions on Chrome, Firefox, Safari, Opera and Microsoft Edge, and as a standalone desktop app for Windows, macOS, Linux, Arch Linux, and Debian. It was available in English, Arabic, French, German, Italian, Portuguese and Spanish. On 24 March 2022, MYKI announced Jump Cloud's acquisition of Myki and on 10 April 2022, Myki ceased to operate.

Web Authentication (WebAuthn) is a web standard published by the World Wide Web Consortium (W3C). WebAuthn is a core component of the FIDO2 Project under the guidance of the FIDO Alliance. The goal of the project is to standardize an interface for authenticating users to web-based applications and services using public-key cryptography. WebAuthn credentials are sometimes referred to as passkeys.

Firefox Lockwise is a deprecated password manager for the Firefox web browser, as well as the mobile operating systems iOS and Android. On desktop, Lockwise was simply part of Firefox, whereas on iOS and Android it was available as a standalone app.

<span class="mw-page-title-main">Mozilla VPN</span> Virtual private network service

Mozilla VPN is an open-source virtual private network developed by Mozilla. It launched in beta as Firefox Private Network on September 10, 2019, and officially launched on July 15, 2020, as Mozilla VPN.

NordPass is a proprietary password manager launched in 2019. It is meant to help its users to organise their passwords and secure notes, keeping them in a single encrypted password vault. This service comes in both free and premium versions, though the free version lacks much of the paid functionality like multi-device login. NordPass was developed by the same cybersecurity team that created NordVPN, a VPN service provider.

The following is a general comparison of OTP applications that are used to generate one-time passwords for two-factor authentication (2FA) systems using the time-based one-time password (TOTP) or the HMAC-based one-time password (HOTP) algorithms.

Proton Pass is a password manager developed by the Swiss software company Proton AG. It stores login credentials, email aliases, credit card data, passkeys, 2FA secret keys, and notes in virtual vaults that are encrypted using 256-bit AES-GCM.

References

  1. "Bitwarden Password Manager - Apps on Google Play". play.google.com.
  2. "‎Bitwarden Password Manager". App Store.
  3. Releases · bitwarden/desktop · GitHub, Bitwarden
  4. Releases · bitwarden/cli · GitHub, Bitwarden
  5. Releases · bitwarden/browser · GitHub, Bitwarden
  6. Releases · bitwarden/server · GitHub, Bitwarden
  7. 1 2 3 "LICENSE_FAQ.md". GitHub . 22 November 2021.
  8. "Bitwarden License Agreement". GitHub . 22 November 2021.
  9. 1 2 Wallen, Jack (31 May 2018). "How to install and use the Bitwarden command line password manager". TechRepublic.
  10. "Bitwarden password manager review". TechRadar . 2 November 2022. Archived from the original on 8 September 2022.
  11. "How to migrate your Bitwarden vaults from US to EU storage". ghacks.net. 27 July 2023. Archived from the original on 27 July 2023.
  12. 1 2 "Server Geographies". Bitwarden. Archived from the original on 26 July 2023. Retrieved 28 July 2023.
  13. 1 2 3 4 5 6 "Bitwarden Review: The Best Free Password Manager for 2022". CNet . 1 May 2022. Archived from the original on 7 September 2022.
  14. "Encryption | Bitwarden Help & Support". Bitwarden. Archived from the original on 22 February 2023. Retrieved 22 February 2023.
  15. "How End-to-End Encryption Paves the Way for Zero Knowledge". Bitwarden. Retrieved 7 June 2024.
  16. "Bitwarden on GitHub". GitHub. Retrieved 28 June 2018.
  17. 1 2 "Bitwarden". hackerone.com. Retrieved 14 September 2022.
  18. 1 2 3 "Compliance, Audits, and Certifications". Bitwarden. Archived from the original on 22 June 2022. Retrieved 9 September 2022.
  19. "Self-hosting Bitwarden on DigitalOcean". The Bitwarden Blog. 19 April 2022. Archived from the original on 17 June 2022.
  20. "Localization". Bitwarden. Archived from the original on 10 September 2022. Retrieved 10 September 2022.
  21. "Store Secure Notes, Credit Cards, & Identities In Your Bitwarden Vault | Bitwarden". Bitwarden Blog. Retrieved 26 September 2021.
  22. 1 2 "Bitwarden Review". PCMag. 15 March 2022. Archived from the original on 18 August 2022.
  23. "Bitwarden and the Passwordless Revolution". Bitwarden. 17 July 2022. Archived from the original on 6 September 2022.
  24. "Bitwarden launches SSO authentication to integrate password security with identity providers". Bitwarden Blog. 30 September 2020. Archived from the original on 27 April 2022.
  25. "Access Your Bitwarden Vault Without a Password". The Bitwarden Blog. 23 February 2023. Archived from the original on 31 July 2023.
  26. "Password Strength Testing Tool". Bitwarden.
  27. "Username & Password Generator | Bitwarden Help & Support". Bitwarden.
  28. "Add Privacy and Security Using Email Aliases With Bitwarden". The Bitwarden Blog. 18 October 2022. Archived from the original on 26 November 2022.
  29. "About Send". Bitwarden. Archived from the original on 27 April 2022. Retrieved 10 September 2022.
  30. Kinney, Jeff (12 January 2021). "Best Password Managers of 2021". U.S. News & World Report . Archived from the original on 15 January 2021.
  31. 1 2 Broida, Rick. "This is the best free password manager alternative to LastPass". CNET. Retrieved 17 February 2021.
  32. Murphy, David (18 February 2021). "Bitwarden Is Now the Best Free Alternative to LastPass". Lifehacker . Retrieved 19 February 2021.
  33. 1 2 3 Long, Emily (22 April 2021). "Bitwarden password manager review". Tom's Guide. Archived from the original on 24 April 2021. Retrieved 6 May 2021.
  34. 1 2 Lamont, Jonathan (2 August 2020). "Bitwarden offers excellent password management tools with great value". MobileSyrup. Retrieved 6 May 2021.
  35. Pathak, Khamosh (27 February 2021). "Bitwarden Is the Best Free Alternative to LastPass". How-To Geek. Retrieved 6 May 2021.
  36. "The Best Password Managers". The New York Times. 5 February 2021. ISSN   0362-4331 . Retrieved 6 May 2021.
  37. Pathak, Khamosh (27 February 2021). "Bitwarden Is the Best Free Alternative to LastPass". How-To Geek. Retrieved 6 May 2021.
  38. Rubenking, Neil J. (19 June 2019). "Bitwarden Review". PCMAG. Archived from the original on 7 February 2020. Retrieved 6 May 2021.
  39. "Bitwarden: Add-ons for Firefox". Mozilla. Retrieved 26 November 2018.
  40. "Brave Features". Brave Software. Retrieved 27 July 2018.
  41. Brinkmann, Martin (1 March 2018). "Bitwarden Desktop App released". Ghacks Technology News. gHacks Tech News. Retrieved 29 July 2018.
  42. Stephenson, Brad (26 April 2018). "Password manager Bitwarden launches in the Microsoft Store". OnMsft. Retrieved 29 July 2018.
  43. Thorp-Lancaster, Dan (11 September 2017). "Bitwarden password manager extension comes to Microsoft Edge". Windows Central. Retrieved 29 July 2018.
  44. Daniel, Aleksandersen (13 March 2018). "Why I migrated from LastPass to Bitwarden". Ctrl blog. Retrieved 26 August 2019.
  45. Daniel, Aleksandersen (13 March 2018). "Update after 3 months with Bitwarden". Ctrl blog. Retrieved 26 August 2019.
  46. "Bitwarden/cli v1.0.0". GitHub . 23 May 2013. Archived from the original on 11 March 2022.
  47. "The Bitwarden Command-line Tool". Bitwarden Blog. 12 November 2018. Archived from the original on 24 May 2018. Retrieved 26 November 2018.
  48. Greif, Björn (6 June 2018). "Password manager Bitwarden now available in Cliqz Browser". Cliqz blog. Retrieved 29 July 2018.
  49. "Bitwarden Completes Third-party Security Audit". Bitwarden Blog. 12 November 2018. Archived from the original on 12 November 2018. Retrieved 26 November 2018.
  50. "Results of Bitwarden security audit published". Ghacks Technology News. gHacks Tech News. 13 November 2018. Retrieved 26 November 2018.
  51. "Bitwarden Passes Third Party Security Audit". the Mac Observer. 12 November 2018. Retrieved 26 November 2018.
  52. Cure53; Heiderich, Mario; Inführ, Alex; Kobeissi, Nadim; Hippert, Norman; Kinugawa, Masato (8 November 2018). "Pentest-Report Bitwarden Password Manager 11.2018" (PDF). Cure53. Archived (PDF) from the original on 26 May 2019. Retrieved 2 March 2021.{{cite web}}: CS1 maint: numeric names: authors list (link)
  53. AuditOne LLP. (21 August 2020). "System and Organization Controls 3 (SOC 3) Report on the Bitwarden Inc. Password Management System Relevant to Security and Confidentiality For the Period January 1, 2020 - June 30, 2020" (PDF) (Audit Report). AuditOne LLP. Archived (PDF) from the original on 19 September 2020. Retrieved 2 March 2021 via BitWarden LLC.
  54. "Bitwarden achieves SOC 2 certification". Bitwarden Blog. 25 August 2020. Retrieved 25 August 2020.
  55. "Why use a HIPAA-compliant password manager". Bitwarden Blog. 7 December 2020. Archived from the original on 19 October 2021. Retrieved 30 December 2020.
  56. "Privacy Shield: Bitwarden Inc". Privacy Shield Network. International Trade Administration. 5 December 2020. Archived from the original on 11 September 2022. Retrieved 2 March 2021.
  57. "Privacy Policy". Bitwarden. Retrieved 3 March 2021.
  58. "Bitwarden 2020 and 2021 Security Audits are Complete". The Bitwarden Blog. 2 August 2021. Archived from the original on 18 August 2022.
  59. 1 2 "Bitwarden Announces $100 Million Growth Investment Led by PSG to Further its Mission to Empower Businesses and Individuals to Stay Safe Online". Business Wire . 6 September 2022. Archived from the original on 8 September 2022.
  60. 1 2 Crandell, Michael (6 September 2022). "Bitwarden announces $100 million financing". Archived from the original on 7 September 2022.
  61. 1 2 3 "Bitwarden acquires Passwordless.dev to help companies authenticate users without passwords". Techcrunch. 18 January 2023. Archived from the original on 18 January 2023.
  62. "Bitwarden extends passwordless leadership with acquisition". Bitwarden. 18 January 2023. Archived from the original on 19 January 2023.
  63. Spearrin, Kyle (28 February 2023). "Bitwarden Upholds High Security Standards with Annual Third-Party Audits". The Bitwarden Blog. Archived from the original on 1 March 2023.
  64. "Bitwarden Network Security Assessment Report" (PDF). Bitwarden. Archived (PDF) from the original on 2 March 2023.
  65. "Bitwarden Security Assessment Report" (PDF). Bitwarden. Archived (PDF) from the original on 2 March 2023.
  66. "Bitwarden passes annual security audit with flying colors". ghacks.net. 1 March 2023. Archived from the original on 2 March 2023.
  67. "Bitwarden launches its own free and open-source Authenticator app". Android Authority. 2 May 2024. Retrieved 19 May 2024.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.