Encrypted local secret manager for passwords, API keys, and sensitive notes. AES encryption, stored entirely on your device — never leaves your browser.
Most password managers sync to their servers and charge a subscription. KeyVault encrypts everything with AES and stores it only in your browser's SQLite database. Nothing is ever sent to a server.
Store passwords, API keys, tokens, and sensitive notes in one encrypted vault. Unlock it with a master password, copy what you need, and lock it again. Your secrets stay private by design — not just by policy.
All secrets are encrypted using AES before being written to SQLite. Even if someone accesses the database file, the contents are unreadable without your master password.
Store any type of credential — website passwords, API tokens, SSH keys, or database connection strings. Each entry has a name, username, value, and notes field.
Write encrypted freeform notes for recovery codes, PINs, or sensitive information that doesn't fit a credential format. Stored with the same AES encryption.
Copy passwords and keys to your clipboard with one click without revealing the value on screen. The clipboard is cleared automatically after 30 seconds.
Zero network requests. KeyVault never connects to a remote server — there is no backend, no sync service, and no account to breach.
The encrypted vault lives in local SQLite storage. Works completely offline — your secrets are always accessible and always encrypted.
Most password managers sync to their servers and charge a subscription. KeyVault encrypts everything with AES and stores it only in your browser's SQLite database. Nothing is ever sent to a server.
When a password manager's servers get breached, millions of vaults are at risk. KeyVault eliminates that attack surface entirely — there is no server, no sync, no third-party holding your secrets.
Free forever. No account needed to get started.