Encrypted Notes - AES-256
Encrypt and decrypt private notes with a password using AES-256 encryption. Everything stays in your browser -- nothing is sent to a server.
Runs in your browser. No data leaves your device.
Frequently Asked Questions
How does Secure Notes work?
Your password is stretched into a 256-bit key using PBKDF2 with 100,000 iterations and a random 16-byte salt via the Web Crypto API. That derived key encrypts your text with AES-256-GCM using a random 12-byte IV. The salt, IV, and ciphertext are concatenated into a single byte array and Base64-encoded. Decryption reverses the process by extracting the salt and IV from the payload.
How secure is the encryption?
It uses AES-256-GCM via the Web Crypto API, the same encryption standard used by governments and financial institutions. The encryption happens entirely in your browser -- the encrypted text never touches a server.
What happens if I forget my password?
There is no way to recover your encrypted note without the password. No server stores your password or a recovery key. This is by design -- it means nobody else can access your note either.
Can I share an encrypted note with someone?
Yes. Copy the encrypted output text and send it to them through any channel (email, chat, etc.). They can paste it into this same tool and decrypt it with the password you share separately.