The libsodium library is used for all cryptography. You can read the full technical details here.


  • Encrypt files/folders with a password, keyfile, or asymmetric keys.

  • Create and verify digital signatures. Supports an authenticated comment and prehashing for large files.​

  • Generation of asymmetric key pairs. The private key is encrypted for protection at rest.​

  • UNIX style password entry and random passphrase generation.

  • Encrypting files using a recipient's public key allows for authenticated file sharing.​

  • Random keyfile generation. Any type of file can also be used as a keyfile.

  • Optional obfuscation of output file names when encrypting files/folders.

  • Optional overwriting of input files.


  • Kryptor runs locally on your computer. No personal data is ever collected or sent to anyone.​

  • Kryptor runs offline unless you run the -u|--update command, which downloads a text file from GitHub. You can read GitHub's Privacy Policy here.

  • During the beta, error logs are saved to LocalApplicationData. These logs do not contain any sensitive or identifiable information. This information is stored to help resolve bugs if you decide to share the error log file when reporting a bug on GitHub.