notepad.mx

🔑 Login with a unique passphrase

Can be as short as you want, but in order to make it harder for others to guess (or brute-force), make it at least 4 words.

Characters: 0 Words: 0 Entropy: 0 bits

A simple web-based application for people to write and store notes securely online. Can be accessed from any device anywhere in the world. Built to be as a more portable, more secure alternative to Simplenote and Evernote.

Features

  • 🔑 Uses passphrase as your universal login - no accounts to create, no emails to verify. Pick some hard to guess combination of words, and that is your one and only login.
  • 🔐 Fully encrypted - your notes are encrypted client-side before being sent and stored on the server. No one (not even the authorities) will be able to decrypt or view the contents of your notes, unless they can guess your passphrase.
  • 💻 Open source - see how this all works, and deploy your own version of this application on your own servers if you want.
  • 💾 Fully exportable - anyone can download all the notes ever created on this app (encrypted of course), and host their own copy of this application including all of its data no problem! Your notes do not have to disappear if the server gets shut down, as long as copies of it are still being mirrored elsewhere.

It works on any device/platform that has a web-browser. It's also very small (~100 kilobytes), and very fast so it works well on even the slowest internet connections.

🔐 How secure is it?

It depends entirely on your passphrase. If someone can guess it (or brute-force it), then they would gain access to your notes.

Apart from that, your notes are fully encrypted client-side (using portion of your passphrase as the encryption key) before being saved on the server's hard drive. To prove how safe they are, you can actually download all the notes stored on this server from here:
https://notepad.mx/archive.tar.gz

You will get a bunch of files with encrypted looking text inside that is of no use to you, unless you plan on hosting your own copy of this application.

Additionally, there are no usernames or emails for us to keep track off. We do not log IP addresses either. All we have is a bunch of text files whose contents are a mystery to anyone without corresponding encryption key.

What happens if I forget my passphrase?

Then your notes are lost forever. It will continue existing somewhere on the server, but because it was encrypted, not even the server administrator will be able to find it or decrypt it.

💡 Ideas/Feedback

This project is entirely open source. You can discuss it all on our GitHub page here: https://github.com/Athlon1600/notepad