Zero-knowledge password manager
Your passwords.Your vault.Your control.
Military-grade encryption. Zero-knowledge architecture. No servers, no tracking, no accounts.Just you and your vault.
Built for security. Designed for privacy.
Every feature designed with zero-knowledge architecture in mind
Local-Only Storage
Your encrypted vault never leaves your device. No cloud, no servers, no sync. Complete custody.
Military-Grade Encryption
Argon2id + AES-256-GCM. The same cryptography protecting classified government data.
Zero Knowledge
We never see your password or data. Even if we wanted to, we mathematically cannot.
Who uses Passary?
Developers & power users
Need a password manager that doesn't hide the details behind "easy to use" features? Passary is transparent about every aspect of its security and gives you complete control over your data.
Security-conscious individuals
If you don't want your passwords living in a big central database, Passary gives you complete custody. Nobody can access your encrypted vault except you. No "just trust us."
Minimalists & privacy fans
No sign-up. No app, no reset email. A traceless password manager with a dead simple model: one file, one password, your device, your data.
What you get with Passary
Security Center
Complete visibility into encryption methods and protection mechanisms.
Advanced strength analysis
Analyze your passwords for strength, reuse, and weak credentials. Generate strong passwords.
Folders & tags
Organize logins by folders, favorites, tags. Quickly filter and search by flexible labeling and smart views.
Fast keyboard-driven UI
Quick search, keyboard shortcuts, and a minimal design so you can find what you need and get back to work.
Local backups & portability
Export your encrypted vault file at any time. Keep backups on multiple devices with your own schedule.
Dark, distraction-free design
A clean, dark interface that feels like a developer tool. No clutter, just your passwords.
Under the hood
Passary uses industry-standard cryptography you'd expect — not proprietary obscure algorithms. Below is a clear rundown of the technical guarantees you should expect:
Key derivation
Argon2id with bounded time cryptographic hash using a large salt and key derivation function. High cost makes brute-force attacks impractical.
Authenticated encryption
Vault content encrypted with AES-256-GCM to provide confidentiality and integrity — encryption fails if even one bit is tampered with.
Memory-only decryption
When you open a vault, keys only exist in memory and are never cached, making it relatively clean (nothing in cleartext stored in directories, no sneaky caching on refresh or close).
Zero-knowledge design
Passary never sees your master password or decrypted vault. Without the key yourself, the vault is and will remain mathematically irrecoverable.
If this doesn't hit your spec, including latest PII parameters and encryption modes, see the detailed security model page.
Read the full security model →Military-grade password generation
Stop using "Password123". Passary's built-in generator creates cryptographically secure passwords that are mathematically impossible to guess.
- Cryptographically secure randomness (Web Crypto API)
- Diceware passphrases (correct-horse-battery-staple)
- Base64-safe API keys & PIN mode
- 210+ bit entropy capability
- Clipboard auto-clear & memory safety
Roadmap & transparency
Product direction and current trajectoryShipped
- ✓Secure Argon2 & password-kdf core
- ✓Folder organization & advanced search
- ✓Local-first encrypted vault with experiments
Coming next
- →Keyboard shortcuts for quick fill
- →Import from other password managers
- →Optional vault hosting with server for advanced users