An open-source secrets manager built in Rust with multi-node clustering,
military-grade encryption, and developer-first design.
Krypt is designed for teams who need enterprise-grade secrets management without the complexity. Built from the ground up in Rust, it combines the security of HashiCorp Vault with modern developer experience.
Raft consensus for automatic failover. Deploy across regions. No single point of failure.
AES-256-GCM with Argon2id KDF. Envelope encryption. Every secret encrypted with unique keys.
Written in Rust. No GC pauses. Sub-millisecond latency. Handles millions of requests.
Simple CLI. Native SDKs for Go, Python, JS. gRPC API. Works with your existing tools.
Path-based policies. Role inheritance. Token scoping. Control access at any level.
Every operation logged. Tamper-proof. SIEM integration. Stay compliant effortlessly.
Get running in under a minute:
# Start with Docker
docker run -d -p 8200:8200 krypt/krypt:latest
# Or use the CLI
krypt engine create production --password "master-password"
krypt login production
krypt put production database/postgres user=admin password=secret
krypt get production database/postgres