Your secrets, encrypted before they leave your browser.

Store seed phrases, passwords, private keys, and notes. Everything is encrypted client-side with scrypt + AES-256-CTR. We store ciphertext. We never see your data.

Open vault Get a free API key

How it works.

1

You type your secret

Seed phrase, password, private key, anything. It stays in your browser.

2

Encrypted locally

Your password is run through scrypt to derive a key. AES-256-CTR encrypts the data. All in your browser, nothing sent in plaintext.

3

Ciphertext stored

Only the encrypted blob reaches our server. We cannot read it. We cannot decrypt it. By design, not by promise.

What you get.

Categories and search

Organise by type: seed phrases, passwords, private keys, notes. Search across everything instantly.

Edit in place

Update a secret without deleting and re-creating. Re-encrypts client-side on every save.

Export everything

One-click encrypted export of your entire vault. Your data is yours. Take it anywhere.

Auto-lock

Vault locks after 5 minutes of inactivity. Decrypted secrets are cleared from memory. Clipboard auto-clears after 30 seconds.

API access

Full REST API for every vault operation. Build your own tools, automate backups, integrate with CI/CD.

Audit trail

Every store, retrieve, update, and delete is logged with timestamp and IP. Available on paid plans.

Pricing.

Vault storage is included with every deny.sh plan.

Free

$0
  • 5 vault items
  • Client-side encryption
  • Categories and search
  • Export
Get started

Dev

$99/mo
  • 100 vault items
  • Everything in Free
  • Edit in place
  • Audit trail
  • API access
Upgrade

Pro

$199/mo
  • 1,000 vault items
  • Everything in Dev
  • Priority support
  • Higher API limits
Upgrade

Need geographic redundancy, SLA, or compliance documentation? Talk to us.

Your backup is only as good as where you keep it.

Store it somewhere that can't read it.

Open vault