AES-256-GCM Encrypted · Zero-Knowledge

The secure workspace your team actually needs

Share secrets, manage passwords, store API keys, and encrypt documents — all in one zero-knowledge platform. Nothing leaves our servers unencrypted. Ever.

Create a Secret — Free See Plans
End-to-end encrypted We can never see your data Auto-destructing secrets

One platform, four pillars of security

Everything IT and engineering teams need to stop sharing credentials over Slack.

One-Time Secrets

Create self-destructing, password-protected links for sensitive data. Viewed once, then gone forever. No account required for the free tier.

  • Auto-deletes after viewing
  • Optional password protection
  • IP allowlisting & webhooks
  • Custom expiration (1h–30 days)

Password Manager

Store logins, service accounts, and credentials with military-grade encryption. Search, categorize, and share securely with your team.

  • AES-256-GCM at rest
  • Strong password generator
  • Team sharing with roles
  • Category & search

API Key Vault

Persistent encrypted storage for API keys and secrets. Pull them into CI/CD pipelines with our REST API or export as .env files.

  • REST API with key auth
  • .env & JSON export
  • Environment tagging
  • Access audit log

Document Vault

Upload any file type — contracts, certificates, SSH keys, configs — and encrypt it at rest. Share with time-limited links you can revoke instantly.

  • Any file type, up to 25 MB
  • Time-limited share links
  • Instant revoke
  • Download tracking

How it works

Three steps to secure sharing — no crypto knowledge required.

1

Enter your data

Paste a secret, upload a file, or save a password. Everything is encrypted the moment it hits our server using AES-256-GCM.

2

Share the link

Send the generated secure link to your recipient. Add a password or IP restriction for extra protection.

3

Poof — it's gone

Once viewed, the secret self-destructs. No traces, no copies, no plaintext ever stored on our servers.

Zero-knowledge. Zero compromise.

We literally cannot read your data — even if someone asked us to.

AES-256-GCM

The same authenticated encryption used by banks and governments. 256-bit keys, unique nonces, tamper detection built in.

Zero-Knowledge Architecture

Your data is encrypted before storage. We hold only ciphertext — never plaintext. Not in memory, not in logs, not anywhere.

Auto-Destruction

Secrets are permanently deleted after viewing or expiration. No backups, no recovery — exactly how it should be.

IP Allowlisting

Restrict secret access to specific IPs or CIDR ranges. Perfect for compliance-heavy environments.

Full Audit Trail

Know exactly who viewed your secret — timestamp, IP address, user agent. Complete accountability.

Webhook Alerts

Get notified instantly in Slack, Teams, Discord, or any webhook when your secrets are accessed.

Built for teams that take security seriously

Shared vaults, role-based access, per-seat billing, and a superadmin panel — all included.

Free

$0/mo
  • 10 secrets/day
  • 5,000 character limit
  • 24-hour expiration
  • AES-256-GCM encryption
  • Zero-knowledge
  • No account required
Start Free
Best Value

Premium

$7.99/seat/mo
  • Everything in Free, plus:
  • 1,000 secrets/day, 50K chars
  • Password Manager (500 entries)
  • API Key Vault (500 entries)
  • Document Vault (100 files, 25 MB)
  • Team workspace with roles
  • REST API + .env export
  • IP allowlisting & webhooks
  • Full audit trail
  • Custom expiration (1h–30 days)
  • Priority support
Get Premium

Who uses PoofKey?

From startups to enterprise — anyone who shares sensitive data.

Engineering Teams

Store API keys in the vault, export to .env files, and integrate secrets into CI/CD pipelines via REST API.

DevOps & SRE

Manage production credentials, SSH keys, and config files. Tag by environment, restrict by IP.

IT & Support

Share temporary passwords and access codes with end users via self-destructing links.

Legal & Finance

Encrypt contracts, NDAs, and financial documents. Share with time-limited links and audit every download.

Consultants & Agencies

Securely exchange credentials and deliverables with clients. No more passwords in email.

Security-Conscious Individuals

Share Wi-Fi passwords, bank details, or personal documents without leaving a trace.

Create a One-Time Secret

Paste sensitive data below. It gets encrypted instantly and destroyed after viewing.

0 / 10,000 characters
Free tier: 10 secrets/day, 5,000 chars. Upgrade for password protection, longer secrets, and more.

Stop sharing secrets over Slack and email.

Join teams that trust PoofKey to protect their most sensitive data.

Create Free Account Read Our Security Model