I built this because I didn't trust privnote.com. It encrypts your message in the browser and never sends the key to the backend. The key is included in the fragment of the URL that you share. Messages are destroyed after they are read. The frontend is written in plain JavaScript, you can inspect the source code and see that only the encrypted payload is transmitted to the backend. I also plan to release the backend/IAC source code, just want to clean it up a bit more before I do.
Ppl who can read code to check such a site is not a scam also can share secrets without the site; ppl who can't read code have no reason to "trust me bro" some random site better than "secure" google.com/NSA.gov
In my humble view the audience for this is really really dumb criminals during their predictably very short criminal career ;)
I built this because I didn't trust privnote.com. It encrypts your message in the browser and never sends the key to the backend. The key is included in the fragment of the URL that you share. Messages are destroyed after they are read. The frontend is written in plain JavaScript, you can inspect the source code and see that only the encrypted payload is transmitted to the backend. I also plan to release the backend/IAC source code, just want to clean it up a bit more before I do.
just leaving this here:
Ppl who can read code to check such a site is not a scam also can share secrets without the site; ppl who can't read code have no reason to "trust me bro" some random site better than "secure" google.com/NSA.gov
In my humble view the audience for this is really really dumb criminals during their predictably very short criminal career ;)
[dead]