Tokenpaste

Tokenpaste reads Europe bank entry/transfer security PINs from SMS. Once it receives SMS in known format, Tokenpaste reads the PIN twice. Supported languages depends on Android version, phone model and installed speech engines, but English works on any device.

Supported banks: mBank Czech, Fio Czech, Air Bank Czech, CSOB Czech, KB Czech, Reiffeisen Czech.

Don't see your bank? Send us example SMS (replace pin with some random numbers but keep the length) together with number it comes from and we will add it.

Tokenpaste can be used for other token or OTP services, not only banks. Feel free to send us example messages with description of what (public) service is it used for and we will add it.

Warning: If you use other SMS clients (GoSMS...) do not activate "Disable 3rd party notifications" options, Tokenpaste will not work otherwise.

Is Tokenpaste dangerous? It is not. Technically, it is not possible to steal tokens, because if you check out Application Permissions, you will see app can only receive, read and write (mark as read) SMS messages. No internet connection, no SMS/MMS sending, nothing like that.

(c) Libor Zoubek, Lukas Zapletal. Icon published under Creative Commons CC BY license (c) poptones.