AES-256-GCM encrypted vault. No cloud, no account, no subscription. Your data never leaves your computer.
Windows 10 version 1809+ · x64 · No .NET required
Every feature is designed around a single principle: your data belongs to you and only you.
Every entry is encrypted with AES-256-GCM using a unique per-blob nonce. Key derivation with Argon2id (64 MB · 3 iterations · 4 threads) and PBKDF2-SHA256 (600 000 iterations) for backward compatibility.
No cloud sync. No telemetry. No analytics. No network requests of any kind. PassKey is 100% offline-first — your vault never leaves your device.
GPL v3 licensed. The full source code is on GitHub — readable, auditable and forkable by anyone.
One-click autofill for Chrome, Firefox and Edge. Communicates with the desktop app via native messaging — no data leaves your machine.
Available in Italian, English, French, German, Spanish and Portuguese — with full UI localisation across every screen.
Migrate from other managers or create encrypted backups in the PassKey format (.pkbak), secured with Argon2id-AES-GCM.
Up and running in minutes, no account required.
Download the installer from GitHub Releases. Self-contained, no .NET runtime required. Runs on Windows 10 1809+ x64.
Open the extension popup, unlock your vault, and autofill credentials with a single click — without ever leaving your browser tab.
Everything you need to know before downloading.
No. PassKey is fully offline. Your vault is stored locally on your Windows device and is never transmitted to any server. There is no cloud sync, no telemetry, and no network requests of any kind.
Every vault entry is encrypted with AES-256-GCM using a unique per-blob nonce. The master password is never stored — it derives the encryption key via Argon2id (64 MB, 3 iterations, 4 threads). PBKDF2-SHA256 (600,000 iterations) is supported for backward compatibility.
Yes. PassKey is completely free and open-source under the GNU General Public License v3 (GPL v3). There are no subscriptions, no premium tiers, and no in-app purchases — ever.
The PassKey extension supports Google Chrome, Mozilla Firefox, and Microsoft Edge. It communicates with the desktop app via native messaging — no credentials are sent over the network.
PassKey requires Windows 10 version 1809 (build 17763) or later, 64-bit. The installer is self-contained — no .NET runtime or additional dependencies are required.
Yes. PassKey supports importing from Bitwarden (JSON), 1Password (.1pux), and generic CSV files. You can also create and restore encrypted backups in PassKey's own .pkbak format.
Yes. PassKey is fully open-source under GPL v3. The complete source code is publicly available on GitHub and can be audited, forked, or contributed to by anyone.
PassKey does not sync automatically — this is by design, to keep your data local. You can manually transfer your vault by creating an encrypted .pkbak backup and restoring it on another Windows machine.
Free, open-source, and runs entirely on your machine.
