About EnigmaBin

EnigmaBin is a secure, privacy-focused pastebin service built with flexible end-to-end encryption options. We believe code sharing shouldn't compromise security or usability.

How It Works

1. Client-Side Encryption

Your content is encrypted in your browser using either fast classical encryption (X25519) or enhanced dual-layer protection that adds ML-KEM for quantum resistance.

2. Secure Storage

We store only encrypted data and temporary burn tokens. Even with direct database access, your content remains protected by your chosen encryption method.

3. Secure Sharing

Share links contain the decryption keys in the URL fragment. Classical mode generates shorter URLs, while quantum mode adds extra protection with longer URLs (about ~4k characters).

4. Automatic Expiration

Pastes automatically expire after your chosen duration, with secure deletion from our database.

Technical Stack

Flexible Encryption

Choose between fast X25519 classical encryption or enhanced security with both X25519 and ML-KEM-1024 working together.

Authenticated Encryption

ChaCha20-Poly1305 AEAD using libsodium provides fast, secure symmetric encryption for your content.

Modern Tech Stack

Built with SvelteKit, TypeScript, and Prisma for type-safe, full-stack development.

Editor Integration

Monaco Editor (VS Code's editor) with support for many popular programming languages.

Security Features

Secure Key Management

Decryption keys are transmitted via URL fragments, never touching our servers. Choose between shorter classical keys or enhanced quantum-resistant keys.

No Logs Policy

Zero logs of paste content, IP addresses, or user activity. We use Vercel Analytics for minimal metrics.

Our Privacy Commitment

EnigmaBin was built with privacy as its foundation. By default, we use fast and secure classical encryption (X25519). For enhanced security, you can enable our dual-layer encryption that combines both ML-KEM and X25519, protecting against both current and future quantum threats. This flexibility lets you choose the right balance of security and usability for your needs. Our zero-knowledge architecture means we never have access to your unencrypted data.