๐ Vaultly
The zero-knowledge team password manager you own forever.
1Password Teams is $7.99 per user per month, so a five-person team pays roughly $1,438 over three years, forever, with everything in someone else's cloud. Vaultly runs the same zero-knowledge model on your own $5 VPS: everything is encrypted in your browser with AES-256-GCM before it reaches the server, which only ever stores ciphertext. $39, once, however many people you add.
Vaultly screenshot is being captured โ the app is shipped and real.
Features
Zero-knowledge client-side crypto
PBKDF2 at 600k iterations into AES-256-GCM via the Web Crypto API, so a server compromise is not a vault compromise.
Shared team vaults
Vault keys are wrapped with each member RSA-OAEP public key in the browser, and the server only relays wrapped keys it cannot read.
Logins, notes and cards
Store logins, secure notes and cards with folders, search, a strong password generator and a strength meter.
Inline TOTP
Store a 2FA secret alongside a login and get live 6-digit codes with copy-to-clipboard that auto-clears.
Opt-in breach check
HaveIBeenPwned k-anonymity range lookups only when you click, off by default, and your password never leaves the browser.
Audit log
Registrations, logins, item create/edit/delete/reveal and vault sharing are all recorded with who did what and when.
Auto-lock
Keys are wiped from memory after five minutes idle.
Vaultly vs 1Password Teams
1Password Teams at $7.99/user/mo runs roughly $96/year โ $192 over two years. Vaultly is $39, once.
| Vaultly | 1Password Teams | |
|---|---|---|
| Price | $39 once | $7.99/user/mo |
| 5-person team, 3 years | $39 | ~$1,438 |
| Zero-knowledge encryption | Yes | Yes |
| Your data on your server | Yes | No |
| Shared vaults | Yes | Yes |
| TOTP codes | Yes | Yes |
| Audit log | Yes | Business tier |
| Works offline / air-gapped | Yes | Limited |
| Source you can read | Yes, MIT | No |
Five months of 1Password for a five-person team already costs more than Vaultly, which then never charges you a per-seat cent again.
Three steps, no subscription
Buy once on Whop
One payment of $39 gets you the packaged 1-click installer, or clone the MIT source at github.com/bensblueprints/password-manager-selfhosted and run it yourself for free.
Deploy on your own server
Docker-compose onto a $5 VPS for a public team vault, or run the Electron desktop build air-gapped, then set ADMIN_PASSWORD so a stranger cannot claim the first account.
Add your team
Send invite links; each member gets a zero-knowledge vault whose contents even your server cannot read.
Honest answers
Is it really free on GitHub?
Yes. Vaultly is MIT-licensed at github.com/bensblueprints/password-manager-selfhosted and always will be. The $39 buys the packaged 1-click installer and setup; building from source is free.
Where does my data live, and what can the server see?
On your own server, as ciphertext. The server can see email addresses, item counts and timestamps, vault names and audit metadata, but not names, URLs, usernames, passwords or notes, which stay inside the encryption.
What if I forget my master password?
It is unrecoverable by design; there is no reset. Export regularly (the export is ciphertext too) and store it safely.
Is this a subscription in disguise?
No. $39 once, no renewal, no per-seat billing, no license server. Deploy it on your VPS and it keeps working regardless of team size.
Own Vaultly forever
$39 once. Deploy on your own server โ your data never leaves it. No renewal, no account with us, no meter. Or build it yourself from the MIT source โ it's the same app.