Skip to content
/ pass-dock Public

πŸ” A Zero-Knowledge Cross-Platform Credential Manager built with Flutter and Go. Features client-side AES encryption, MFA (TOTP) support, and a secure vault-key mechanism ensuring the server never sees your plain-text data.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ByteMaster2003/pass-dock

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

4 Commits
android
android
Β 
Β 
assets
assets
Β 
Β 
ios
ios
Β 
Β 
lib
lib
Β 
Β 
linux
linux
Β 
Β 
macos
macos
Β 
Β 
test
test
Β 
Β 
web
web
Β 
Β 
windows
windows
Β 
Β 
.gitignore
.gitignore
Β 
Β 
.metadata
.metadata
Β 
Β 
README.md
README.md
Β 
Β 
analysis_options.yaml
analysis_options.yaml
Β 
Β 
devtools_options.yaml
devtools_options.yaml
Β 
Β 
flutter_launcher_icons.yaml
flutter_launcher_icons.yaml
Β 
Β 
pubspec.lock
pubspec.lock
Β 
Β 
pubspec.yaml
pubspec.yaml
Β 
Β 

Repository files navigation

πŸ” Pass-Dock

A secure, Zero-Knowledge Credential Manager built for privacy-conscious users. Pass-Dock ensures that your sensitive data remains yours alone by performing all encryption and decryption locally on your device.

πŸ›‘οΈ Security Architecture (Zero-Knowledge)

The core philosophy of Pass-Dock is "Trust No One." Even if the backend server or MongoDB database is fully compromised, your credentials remain undecipherable.

  • Client-Side Encryption: Plaintext data is encrypted on your device (Android/macOS) using AES before it ever touches the network.
  • Encrypted Vault Key: Your master vault key is stored in an encrypted format. The server has zero visibility into your keys or passwords.
  • Two-Step Authentication: 1. Standard Email/Password verification. 2. MFA (Multi-Factor Authentication) via TOTP (Google Authenticator, Authy, etc.).
  • Secure Backend: A lightweight Go service handles storage and sync without ever possessing the means to decrypt your data.

πŸš€ Tech Stack

Frontend (Cross-Platform)

  • Framework: Flutter
  • Platforms: Android, macOS
  • Security: Local encryption libraries for AES-256 and TOTP integration.

Backend & Storage

  • Language: Golang (Standard Library + Chi/Gin)
  • Database: MongoDB
  • Design: Simple, stateless REST API focused on secure DB updates.

✨ Key Features

  • Cross-Platform Sync: Seamlessly manage credentials across your mobile (Android) and desktop (macOS) environments.
  • MFA Support: Robust protection using Time-based One-Time Passwords (TOTP).
  • End-to-End Privacy: Decryption happens exclusively in the application layer.
  • Clean UI: Minimalist and intuitive interface designed for quick access.

🚦 Getting Started

Prerequisites

  • Flutter SDK
  • Go (for backend hosting)
  • MongoDB instance

Local Setup

  1. Backend:

    cd backend
go build -o server main.go
./server

  2. Frontend:

    cd frontend
flutter pub get
flutter run # Select your device (Android or macOS)

πŸ› οΈ Development Motivation

I built Pass-Dock for personal use to solve a specific problem: Trusting third-party password managers. By building my own system, I gained full control over the encryption flow and ensured that my "Vault" is truly private. This project allowed me to explore:

  1. Integrating Go-based backends with Flutter.
  2. Implementing secure client-side cryptographic protocols.
  3. Managing cross-platform state and data synchronization.

πŸ‘¨β€πŸ’» Author

Vivek Sahani Software Engineer | Security & Backend Specialist GitHub: @ByteMaster2003

License

Distributed under the MIT License.

About

πŸ” A Zero-Knowledge Cross-Platform Credential Manager built with Flutter and Go. Features client-side AES encryption, MFA (TOTP) support, and a secure vault-key mechanism ensuring the server never sees your plain-text data.

Topics

android macos golang security cryptography mongodb cross-platform totp flutter aes-encryption mfa credential-manager zero-knowledge

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages