It happens in your browser
The cryptography runs entirely on your device using the browser's built-in Web Crypto engine. Nothing to encrypt is ever uploaded — there's no server-side copy to leak, subpoena, or lose.
Lock text and files with a passphrase, share a secret that burns after one read, or send a message only one person can open. Every byte is encrypted right here in your browser — the server never sees your passphrase, your keys, or a single line of what you wrote.
Checking service…The cryptography runs entirely on your device using the browser's built-in Web Crypto engine. Nothing to encrypt is ever uploaded — there's no server-side copy to leak, subpoena, or lose.
For one-time secrets, only unreadable ciphertext is stored. The key travels inside the link itself, in the part browsers never send to a server. We couldn't read your secret if we wanted to.
AES-256-GCM with PBKDF2 key stretching — the same primitives that secure banks and password managers. No home-rolled ciphers, no obscurity. The whole method is written out on the How it works page.
Whatever you need to protect, the private part stays with you.
Lock any text or file with a passphrase. Share the result over email, chat, anywhere — it's useless without the passphrase, which you send separately.
Open the tool →Turn a password or note into a link that self-destructs after it's read once. Perfect for handing someone a credential without leaving it in their inbox forever.
Create a link →Generate a keypair, publish the public half, and let anyone send you a message only your private key can open — no shared passphrase to agree on first.
Make a keypair →Your passphrase is run through PBKDF2 — 250,000 rounds of hashing — into a 256-bit key. The stretching makes brute-forcing a weak passphrase far slower for an attacker.
A fresh random salt and nonce go into every operation, and GCM adds an authentication tag — so any tampering with the ciphertext is detected instead of silently decrypting to garbage.
Send the encrypted block however you like; deliver the passphrase through a different channel. Neither half is useful alone, and the server was never in the loop.
The honest inventory. This is the whole reason to encrypt on the device instead of on a server you have to trust.