AES-256-GCM encrypted vault. No cloud, no account, no subscription. Your data never leaves your computer.
Windows 10 version 1809+ · x64 · No .NET required
One-time codes live right next to your passwords — no extra app needed.
See weak, reused or breached passwords at a glance.
Now available in six languages.
An activity log, plus auto-lock that warns you before it locks.
Every feature is designed around a single principle: your data belongs to you and only you.
Every entry is encrypted with AES-256-GCM using a unique per-blob nonce. Key derivation with Argon2id (64 MB · 3 iterations · 4 threads) and PBKDF2-SHA256 (600 000 iterations) for backward compatibility.
No cloud sync. No telemetry. No analytics. No network requests of any kind. PassKey is 100% offline-first — your vault never leaves your device.
GPL v3 licensed. The full source code is on GitHub — readable, auditable and forkable by anyone.
One-click autofill for Chrome, Firefox and Edge. Communicates with the desktop app via native messaging — no data leaves your machine.
Available in Italian, English, French, German, Spanish and Portuguese — with full UI localisation across every screen.
Migrate from other managers or create encrypted backups in the PassKey format (.pkbak), secured with Argon2id-AES-GCM.
Up and running in minutes, no account required.
Download the installer from GitHub Releases. Self-contained, no .NET runtime required. Runs on Windows 10 1809+ x64.
Open the extension popup, unlock your vault, and autofill credentials with a single click — without ever leaving your browser tab.
Everything you need to know before downloading.
No. PassKey is fully offline. Your vault is stored locally on your Windows device and is never transmitted to any server. There is no cloud sync, no telemetry, and no network requests of any kind.
Your passwords and data are protected by state-of-the-art encryption. PassKey encrypts every entry in your vault locally using AES-256-GCM with a unique nonce for each item. Your master password is never stored anywhere; instead, it is used to derive your encryption key using Argon2id (64 MB memory, 3 iterations, 4 threads). For backward compatibility, PBKDF2-SHA256 (600,000 iterations) is also supported.
Yes. PassKey is completely free and open-source under the GNU General Public License v3 (GPL v3). There are no subscriptions, no premium tiers, and no in-app purchases — ever.
The PassKey extension supports Google Chrome, Mozilla Firefox, and Microsoft Edge. It communicates with the desktop app via native messaging — no credentials are sent over the network.
PassKey requires Windows 10 version 1809 (build 17763) or later, 64-bit. The installer is self-contained — no .NET runtime or additional dependencies are required.
Yes. You can easily import your credentials from other password managers like Bitwarden (JSON export) and 1Password (.1pux format). You can also import passwords exported from web browsers (Chrome, Firefox, Edge, etc.) via standard CSV files. Additionally, PassKey supports creating and restoring its own secure backup format (.pkbak), encrypted using Argon2id-AES-GCM.
Yes. PassKey is fully open-source under GPL v3. The complete source code is publicly available on GitHub and can be audited, forked, or contributed to by anyone.
PassKey does not sync automatically — this is by design, to keep your data local. You can manually transfer your vault by creating an encrypted .pkbak backup and restoring it on another Windows machine.
Because PassKey is fully local and offline, there is no central server, reset button, or customer support that can recover your password. Your master password is the only key that can decrypt your vault. If you forget it, your data is lost forever. We strongly recommend writing down your master password on a physical piece of paper and keeping it in a safe place.
Currently, PassKey is a native desktop application designed specifically for Windows 10 and 11, along with its web browser extensions. Mobile apps for Android and iOS are not available at this time. To access your passwords on other machines, you can manually transfer your vault via encrypted .pkbak backups.
Your vault database is stored locally in your Windows user profile folder under AppData (typically at AppData\Local\PassKey\vault.db). You can easily back up this file manually or include it in your system backups. Remember that this file is fully encrypted; it is completely useless to anyone who does not know your master password.
Free, open-source, and runs entirely on your machine.