VaultKeepR is a decentralized, open-source password manager built for people who take privacy seriously.
Most password managers encrypt your credentials but store your metadata in plaintext -- device names, IP logs, beneficiary info. One breach exposes everything about you except the passwords themselves.
VaultKeepR is different. Every byte that leaves your device is encrypted client-side. Your vault lives on IPFS, not on a company server.
Encryption
XChaCha20-Poly1305 + Argon2id : all encryption happens on your device
HMAC-SHA256 commitment : prevents ciphertext substitution attacks
Zero plaintext metadata : even sync data and beneficiary info is encrypted
Decentralized
IPFS storage : content-addressed, no central database
CRDT sync (Automerge) : cross-device merge without server involvement
Shamir Secret Sharing (3-of-5) : vault recovery distributed across 5 locations
On-Chain Digital Inheritance
Designate heirs for your vault via smart contracts on Base L2
Powered by ERC-4337 Account Abstraction : completely gasless
Server only receives a 46-character IPFS CID : no names, no emails
Built-In Security Tools
TOTP authenticator (SHA-1/256/512)
Breach monitoring (HIBP, k-anonymity)
Password health scoring
Encrypted document vault with NFC scanning (iOS)
Email alias generation
Ephemeral secure sharing with PIN protection
Available On
Chrome and Firefox extensions
iOS (App Store)
Android (private beta, you can DM for access)
Built by a solo developer. Fully open-source. Zero telemetry.
