// SECURE PASSWORD MANAGER

YOURSECRETSARE SAFE.

Zero-knowledge password manager with AES-256 encryption and native AI agent integration. Your master key never leaves your device. We can't read your data. Nobody can.

AI agents only access what you explicitly grant, via encrypted, revocable API keys.

OPEN VAULTAPI DOCS

MILITARY GRADEENCRYPTION FOREVERYONE.

Encryption

FIG. 01

// ENCRYPTION

AES-256
GCM

Every credential in your vault is protected by AES-256-GCM, the same encryption standard used by governments and financial institutions. Your master password generates a unique key through PBKDF2 with 100,000 iterations.

Key derivation happens entirely on your device. We never receive, store, or process your master password. Even if our servers were completely compromised, your credentials remain unreadable.

256

BIT ENCRYPTION

100K

PBKDF2 ROUNDS

// ARCHITECTURE

ZERO
KNOWLEDGE.

We literally cannot see your passwords. All encryption and decryption happens in your browser. Our servers only ever touch encrypted blobs of data.

If we get hacked, your data is safe. If we get subpoenaed, we have nothing to hand over. If we shut down tomorrow, export your vault and move on.

Encrypted cloud sync only. No telemetry. No analytics. No tracking pixels. No cookies beyond authentication. We built the password manager we wanted to use ourselves.

NO TRACKINGNO TELEMETRYNO BACKDOORS
Zero knowledge

FIG. 02

// PAINFUL. CUSTOMIZABLE. EXPANDABLE.

BUILT FOR DEVELOPERS WHO DON'T TRUST ANYONE WITH THEIR CREDENTIALS.

Developer workflow

// claude_desktop_config.json

{ "mcpServers": { "lxgic-vault": {

"command": "npx",

"args": ["@lxgic/vault-mcp"]

} } }

FIG. 03

// AI NATIVE

MCP
INTEGRATED.

Ships with a built-in MCP server. Claude, GPT, and any compatible AI assistant can securely access your approved credentials.

You control exactly which credentials each AI sees. New credentials added by AI go to a pending queue. Full audit trail. Revoke anytime.

Plus REST API with scoped keys and a full CLI for headless environments. Manage credentials from terminals, CI/CD pipelines, and automation scripts.

READ THE DOCS

// HOW IT WORKS

THREE STEPS.
THAT'S IT.

01

CREATE

Sign up. Set your master password. That password never leaves your device. We never see it.

02

STORE

Add credentials through the web app, CLI, or let AI add them via MCP. Everything encrypted client-side.

03

ACCESS

Unlock with your master password. Search, copy, share with AI agents. Auto-lock when idle. Full audit trail.

Global
GLOBAL

AES-256

ENCRYPTION

0

KNOWLEDGE

100%

CLIENT-SIDE

<1s

UNLOCK TIME

// READY?

LOCK ITDOWN.

OPEN VAULTCREATE ACCOUNT

ZERO KNOWLEDGE. FULL CONTROL. NO COMPROMISES.