End-to-end encrypted

Share a secret

Everything is encrypted in your browser before it leaves your machine. The server never sees the plaintext.

AES-256-GCM encryption

Military-grade encryption happens entirely in your browser

Zero-knowledge architecture

We never see your data. The decryption key stays in the URL fragment

Burn after reading

Secrets auto-destruct after the first view or on expiry

envdrop - encryption flow

Client-side onlyNo sign-upOpen source

OPTIONS

Burn after read

Destroyed after first view

Expiry

Auto-delete after time

Password protection

Require a password to decrypt