Self-hosted · End-to-end encrypted

Your passwords,
your server, your keys.

A free, open-source password manager you run yourself. Master password never leaves your device. Encrypted with AES-256-GCM. Works on web and Android, with iOS coming soon.

Create your vault How encryption works →

Zero-knowledgeAES-256-GCMPBKDF2 · 600kMIT licensedSelf-hosted

Features

Everything you'd expect.
Nothing you wouldn't.

End-to-end encryption

AES-256-GCM with PBKDF2-SHA256 (600k iterations). Your master password is never sent to any server.

Self-hosted on your hardware

Run it on a $5 VPS, Raspberry Pi, or your home server. No SaaS lock-in, no third-party dependency.

Built-in TOTP

2FA codes generated alongside your logins (RFC 6238). One app, fewer steps to log in everywhere.

7 entry types

Logins, secure notes, credit cards, identities, bank accounts, SSH keys, WiFi credentials — all encrypted.

Nested folders & tags

Organize your vault the way you think. Folder hierarchy plus free-form tags, mix and match.

Custom fields & history

Add arbitrary fields to any entry, with hide/reveal. Every password change is snapshotted, encrypted.

Open source

MIT licensed. Read the code, audit the crypto, contribute on GitHub. No magic, no backdoors.

Your passwords, your server, your keys.

Everything you'd expect. Nothing you wouldn't.