Password Manager

Your master password never reaches the server. Vault data is encrypted and decrypted inside your browser, while the server stores only encrypted payloads.

Create Account Sign In Offline Viewer

Zero Knowledgeserver cannot decrypt

AES-GCMper-item encryption

Offlinebackup viewer included

Transparent model

The server stores ciphertext. Your browser does the sensitive work.

What stays with you

Master password, vault key, decrypted logins, decrypted passwords, and imported plaintext backup data.

What the server stores

Encrypted item fields, encrypted vault key material, salts, auth verifier hash, and account metadata.

Why Use It

Built for people who do not want the server to know their secrets.

Zero-knowledge

Master password stays local

The master password is used in the browser to derive local keys. It is never submitted to the server and is not stored in the database.

WebCrypto

AES-256-GCM vault encryption

Each vault item is encrypted client-side with AES-GCM and a fresh random nonce before anything is saved on the server.

Encrypted backups

Export and import safely

Backup files are encrypted, and imports are decrypted and re-encrypted in browser memory before encrypted data is sent back.

Offline access

Viewer works without network

The offline viewer opens encrypted backups locally and disables network APIs so it does not send requests even when internet is available.

Account protection

Argon2id and rate limiting

Authentication uses an Argon2id-hashed verifier with login rate limits, hardened cookies, CSRF protection, and security headers.

Automatic lock

Decrypted state is short-lived

Idle timeout, tab-hidden locking, and offline viewer cleanup reduce how long decrypted vault data remains available in memory.

How it works

Browser encrypts. Server stores ciphertext. You keep the key.

1Enter master password locally

2Derive keys with PBKDF2-SHA256

3Encrypt vault items with AES-256-GCM

4Store only encrypted fields on the server

Optional offline mode

Use the website once, then keep your vault offline.

After creating your vault, you can export an encrypted backup and download the free offline viewer. Then you can open your passwords locally from your own device without visiting the website again.

CreateAdd your vault items in the browser.

ExportDownload your encrypted backup file.

View OfflineOpen it with the offline viewer whenever you need it.

More control for cautious users

If you prefer not to keep using the online vault, store the encrypted backup somewhere safe and use the offline viewer locally. After downloading your backup, you can delete your online account data if you want. Later, if you need to edit or add items again, create or sign in to an account and import the encrypted backup back into the site. The backup still requires the original master password to open, and it cannot be recovered if that password is forgotten.

Important security rules

Keep your master password safe. There is no password recovery.

This password manager is designed around zero-knowledge encryption. Control stays with you, but that also means the technical team cannot recover, reset, or decrypt your vault if you forget your master password.

No recovery option There is no forgot-password or remember-password feature. If you forget the master password, encrypted backups and online vault data cannot be opened.

Inactive accounts are removed For security, accounts with no activity for 3 months are automatically deleted, and vault data is deleted with the account.

Short secure sessions The online vault logs out after 1 minute without activity. The offline viewer also clears decrypted data after 1 minute of inactivity.