v1.1.67 — Now available

Your passwords,
protected by science.

Zero-knowledge architecture means your master password never reaches our servers — not even in encrypted form. SRP-6a, Argon2id, AES-256-GCM. Built right.

Download for WindowsChrome ExtensionFirefox Add-on
ConfPass — Vault
CP
ConfPass
Search vault…
All Items24
Accounts18
Cards3
Passkeys1
All Items
+
G
Google
emre@gmail.com
Gh
GitHub
emreconf
Am
Amazon
emre@amazon.com
Di
Discord
emre#0001
🛡SRP-6a Zero-Knowledge
🔒AES-256-GCM Vault
⚙️Argon2id KDF
🪪FIDO2 / WebAuthn
🧬7-Layer Rate Limiting
Free Forever
Features

Everything you need,
nothing you don't.

Built with the same security standards as enterprise password managers — without the enterprise price.

🔐

Zero-Knowledge Auth

Your master password never leaves your device. SRP-6a protocol ensures the server sees only a cryptographic verifier — never the password itself.

SRP-6a · Zero-Knowledge

Smart Autofill

Context-aware autofill detects login forms across all sites. One-click fill for credentials, bank cards, and passkeys — even on complex SPAs.

Chrome · Firefox · Edge
🛡️

Health Dashboard

Real-time vault health scoring. Detects weak, reused, and breached passwords via HIBP k-anonymity — your actual passwords never leave the device.

HIBP · k-Anonymity · Auto-scan
🔑

Passkey Support

Store and autofill WebAuthn FIDO2 passkeys through the browser extension. Full credential management alongside traditional passwords.

FIDO2 · WebAuthn · Passkeys
✈️

Travel Mode

Instantly hide sensitive vault entries with a single toggle. No trace left in the UI. Re-enable with your PIN after crossing borders.

Per-entry · Bulk toggle
🚨

Emergency Access

Grant trusted contacts access to your vault after a configurable wait period. You retain full deny rights throughout the timer.

Trusted contact · Timer
🧠

Sentinel Risk Engine

Multi-signal anomaly detection: new device fingerprint, geographic anomaly, impossible travel, velocity checks. Auto step-up MFA on high risk.

Risk scoring · Step-up MFA
🔗

Secure Sharing

Share credentials with zero-knowledge one-time links. Set expiry, view limits, and password protection. Server decrypts nothing.

E2E · One-time · Expiry
🖥️

Windows Hello Biometric

Unlock with fingerprint or face. Exponential lockout with automatic vault wipe after 20 failed attempts. Biometric state synced with PIN lockout.

Windows Hello · DPAPI
Security Architecture

Built for paranoid
engineers.

Every layer of ConfPass was designed under the assumption that the server is compromised. Your vault remains encrypted and private regardless.

Full Security Report
0
Plaintext passwords on server
256
Bit AES-GCM vault encryption
128
MB Argon2id vault key memory
7
Rate limiting layers
85
Security score out of 100
8
MFA methods supported
Download

Get started in 30 seconds.

Native Windows app + browser extensions. No account required to get started.

🪟

Windows App

Full-featured desktop vault with Windows Hello biometric, DPAPI encryption, auto-updater, and native performance.

v1.1.67 · Windows 10/11 · x64
Download .msi

Chrome / Edge

Smart autofill, passkey injection, inline dropdown, vault lock. Works standalone — no desktop app required.

v9.5 · Chrome Web Store
Add to Chrome →

Firefox

Full feature parity. Passkey injection via bootstrap script. Vault lock PIN with PBKDF2 protection.

v9.5 · Firefox Add-ons
Add to Firefox →

Ready to actually secure
your digital life?

Free forever. No subscription. No telemetry. Your data stays yours — cryptographically guaranteed.

Download for WindowsRead Security Report