How often have we shared database credentials over Slack? Or sent production API keys to a developer in another organization over unencrypted email? Sending sensitive data in the clear is a widely known security fail, but we do it because it's convenient. This tool is an attempt to make sharing those secrets in a secure way easier than before - in the hopes that we'll stop sending sensitive information over insecure channels.
When you click the button below, your web browser will generate a public and private key pair. The private key is downloaded to your computer, and the public key gets stored on our servers. A unique URL is generated which you can share with the person who needs to tell you a secret. On their side, the secret will be encrypted with your public key. The encrypted secret is then available for you to decrypt with your private key.
Share the below URL with whomever you want. Once they've submitted their secrets, browse to the URL yourself and use your private key to decrypt the secrets.