Secure-Store is a privacy-focused, end-to-end encrypted password manager designed with a zero-trust architecture. It ensures that your sensitive credentials remain secure and accessible only to you. Built with a Go backend and a Vite-powered React web extension, Secure-Store leverages libsodium for advanced cryptographic security.
- End-to-End Encryption: All stored passwords are encrypted client-side using
libsodiumbefore being sent to the server. - Zero-Trust Architecture: The server never has access to your plaintext passwords; only the client can decrypt them.
- Go Backend: A lightweight and secure backend for handling user authentication and storage.
- Vite + React Web Extension: A fast and modern UI to manage your credentials conveniently in your browser.
- Secure Key Management: Utilizes modern cryptographic principles to ensure strong password security.
# Clone the repository
git clone https://github.com/anandukch/secure-store.git
cd secure-store
cd backend
# run server
make server-dev
# using docker in dev mode
make docker compose -f docker-compose.dev.yml up --buildcd extension
# Install dependencies
npm run dev:chromeSecure-Store follows industry best practices:
- Uses
libsodiumfor encryption (AES-GCM, XChaCha20-Poly1305) - Strong client-side key derivation using Argon2
- Secure authentication with token-based access
- Regular security updates
We welcome contributions from developers passionate about security and privacy. Here’s how you can contribute:
- Fork the Repository: Start by forking the project on GitHub.
- Create a Feature Branch: Work on your contributions in an isolated branch.
- Write Clean, Secure Code: Follow best security practices when implementing new features.
- Submit a Pull Request: Once your code is tested and verified, submit a PR for review.
This project is licensed under the MIT License.