A private, end-to-end encrypted image hosting platform. Your images are encrypted in your browser before they ever leave your device. The server only stores encrypted data it cannot read or preview.
Your browser generates a unique AES-256-GCM key, encrypts the image locally, then uploads the ciphertext. The key is embedded in the URL fragment (after the #), which is never sent to the server. Only someone with the full link can decrypt.
No. The server stores encrypted blobs that look like random data. Without the decryption key (which only exists in the share link), the image cannot be reconstructed. This is true zero-knowledge hosting.
No. There are no accounts, no sign-ups, no emails. Upload and share immediately. Nothing to trace back to you.
PNG, JPEG, GIF, WebP, BMP, TIFF, and ICO. Maximum 25 MB per image. SVG is not supported for security reasons.
Yes. Check private when uploading and set a password. Viewers need both the share link and the password to decrypt the image.
By default no. You can optionally set expiry when uploading: 1 hour, 1 day, 1 week, or 30 days. Once expired, the image is permanently deleted from the server.
Yes. After uploading you receive a control token. Use it with the delete API endpoint to permanently remove the image.
The image becomes permanently inaccessible. The decryption key only exists in the link. Nobody, including us, can recover it. This is a feature, not a bug.
Yes. No accounts, no payments, no hidden fees, no data harvesting. Completely free to use.
On top of client-side AES-256-GCM, the server wraps stored data with NIST-standardized quantum-resistant algorithms: ML-KEM-1024, ML-DSA-87, and SLH-DSA-SHAKE-256s. Protection against future quantum computer attacks.
Yes. The client-side encryption code runs in your browser and is fully inspectable via DevTools. The encryption is transparent by design. Nothing hidden.