Secure Pastebin

End-to-End Encrypted • Password Protected • Self-Destructing

🔒 AES-256-GCM 🔑 Password 🛡️ Zero-Knowledge ⚡ Web Crypto API
🔐
This message is password protected.

Enter Password to Decrypt

🔓 Decrypted Content

⚠️
Important: The encryption key is stored only in the URL fragment (after #). If you lose the URL, the data is permanently lost. We cannot recover it.
Use the toolbar to insert Markdown quickly. The raw text is what gets encrypted, and the Markdown is rendered only after decryption.
Choose the exact expiration moment in your local timezone.
Password strength will appear here
This password will be required to decrypt the message. Share it separately.
Successfully encrypted.
⏰ Expires: • 🔑 Key never leaves your browser • ✨ Full + short share links

🔍 How It Works

1

Client-Side Encryption

Your message is encrypted in your browser using AES-256-GCM before being sent to the server. The encryption key is generated locally and never transmitted.

2

Zero-Knowledge Storage

The server only stores the encrypted ciphertext. It cannot read, decrypt, or access your original message. We have zero knowledge of your content.

3

Key in URL Fragment

The decryption key is embedded in the URL fragment (after #) which never reaches the server. Only the recipient with the full URL can decrypt.

4

Password Protection (Optional)

You can add an extra password layer. The password is used to derive the encryption key via PBKDF2 with 100,000 iterations. Share it separately.

5

Self-Destruction

Choose burn-after-read to automatically delete the message after first view, or set a preset expiration or exact custom date and time.

🛡️ Technical Specifications

AES-256-GCM Encryption
PBKDF2 Key Derivation (100k iterations)
Random 12-byte IV per message
256-bit Encryption Keys
No Server-Side Logs
MySQL Database Storage
Web Crypto API (Native)
Custom Expiration Support
Markdown Rendering After Decryption