CipherAuth

CipherAuth is a secure, lightweight, and privacy-focused dual vault designed to give you full control over your passwords and two-factor authentication (2FA) tokens. Built with a strict offline-first approach, CipherAuth ensures that your sensitive credentials never leave your device. All databases are stored locally and encrypted using military-grade AES-256-GCM, protected by a master password that only you know. With no reliance on cloud services, CipherAuth delivers true privacy—Your keys. Your device.

Unlike many other managers and authenticators, CipherAuth does not require an internet connection or any cloud accounts. This eliminates risks associated with database breaches, remote hacks, and external servers, making it a highly secure solution for managing both your web logins and authentication codes. There are no accounts to create, no third-party tracking or telemetry, and no hidden analytics. Everything stays securely sandboxed on your device, giving you complete ownership of your data.

The app features a clean and modern interface designed for simplicity and speed. You can easily switch between your 2FA authenticator codes and password entries under dedicated tabs. Quickly add new accounts using QR code scanning, organize multiple credentials, and use the real-time search feature to instantly find what you need. For browsers and mobile apps, Android Autofill support lets you log in seamlessly. Tap-to-copy shortcuts make filling credentials on Windows effortless.

Security is at the core of CipherAuth. In addition to strong local encryption, the app supports biometric authentication (face and fingerprint unlock via Windows Hello or Android biometrics) for convenient and secure access. It also includes screenshot protection, a built-in passphrase generator for creating robust, memorable passwords, and an encrypted CSV import/export system for secure backups. A local recycle bin keeps deleted items for up to 30 days, guarding against accidental data loss. This ensures you can always recover your records if you make a mistake.

To keep your credentials in sync across multiple platforms (such as Windows and Android), CipherAuth provides a secure, offline local network sync feature. Devices on the same Wi-Fi discover each other and perform an encrypted peer-to-peer merge directly. This custom local sync protocol keeps your secrets offline and off the internet, ensuring network sniffers only see encrypted ciphertext during synchronization.

CipherAuth is built with Flutter for a minimal, fast, and cross-platform experience. It offers a modern tool for people who refuse to trust their most private keys to third-party servers. It is designed from the ground up for users who value privacy, control, and zero-compromise security.