Zero-knowledge — your key never leaves your browser
Your passwords,
encrypted by you.
Kagiko is a personal password manager built on the Web Crypto API. Everything is encrypted client-side before it touches the cloud — the server only ever sees ciphertext.
AES-256-GCM encryption
Every entry is encrypted with a unique IV before leaving your browser. The server stores only ciphertext.
PBKDF2 key derivation
Your master password is stretched with 600,000 iterations of PBKDF2-SHA-256. It never leaves your device.
Auto-lock
The decryption key lives only in memory. The vault locks automatically after inactivity or on page refresh.
Passwords & secure notes
Store logins with usernames and passwords, or free-form encrypted notes — all in one vault.
Password generator
Generate strong, random passwords with configurable length and character sets using the Web Crypto API.
Firebase-backed sync
Encrypted entries sync across your devices via Firestore. Google handles availability — you hold the key.