The Soul Shield for
Your Digital Life
Full End-to-End Encryption, Passkeys, and seamless cloud sync.
Simple yet powerful password management for all your devices.
Key Features
Cloud Sync
Sign in with your Google account to sync passwords across all devices in real-time. Data is encrypted before storage.
Passkey Support
Log in securely using Face ID, Touch ID, or other biometrics without typing your master password.
Breach Check
Safely check if your passwords have been compromised using the Have I Been Pwned API (k-Anonymity).
Password Generator
Instantly generate strong, random passwords. Includes a strength meter and estimated crack time.
TOTP Auth
Built-in 2FA code generation (Time-based One-Time Password). No need to open a separate app.
Recovery Kit
Create and download an emergency access PDF sheet in case you forget your master password.
Security Advisor (Aura)
Chat with Aura, your security advisor, for personalized recommendations and instant answers about your vault's security.
Why Soul?
Solving the "inconvenient truths" of traditional password managers.
Problem: Centralization Risk
Many services depend on company-managed servers. If they get hacked or have internal fraud, your data is at risk.
Solution: Zero Knowledge
Your data is encrypted on your device before sending. Keys are never sent to the server, making it mathematically impossible for admins to see your data.
Problem: Black Box
Closed-source apps hide what they do. You can't verify if there are backdoors or if encryption is properly implemented.
Solution: Open Source
Source code is fully available on GitHub. Developers and security experts worldwide can audit it. Transparency builds trust.
Problem: High Cost
Useful features like device sync and 2FA often require a monthly subscription.
Solution: Free Forever
Soul is not a commercial product. Advanced security features and unlimited device sync are provided completely free.
Honest Talk: Current Limitations
Soul is a developing project. For transparency, we openly disclose current technical limitations.
Dependency on Google Infrastructure
We use Google Firebase for backend (Auth/DB). While data is E2EE protected and unreadable by Google, service availability depends on Google's infrastructure.
Native Integration Limits
Built on Web technologies (PWA), it currently does not support system-level autofill (e.g., keyboard password suggestions) on iOS or Android.
Development Stage (Beta)
Currently an "Unstable" version. Frequent feature additions or changes may occur, and long-term stable support is not guaranteed.
Comparison
| Soul Password Manager | Google Password Manager |
Proton Pass | KeePass | Apple iCloud Keychain |
|
|---|---|---|---|---|---|
| Security Model | E2EE / Zero Knowledge (Hybrid Encryption) |
Server-side Encryption | Zero Knowledge (Open Source) |
Local File (Self-managed) |
End-to-End Encryption |
| Main Auth | Passkey Native | Google Account | Master Password | Master Password +Key File |
Device Auth (Face/Touch ID) |
| Autofill | cancel (PWA Limit) |
check_circle | check_circle | check_circle | check_circle |
| TOTP (2FA) | check_circle | cancel | check_circle | check_circle | check_circle |
| Sharing | cancel (Personal) |
△ Family | △ Paid | △ File Share | △ AirDrop etc. |
| Cross Platform | Major Browsers | Google Centric | ◎ All Major OS | △ Many Unofficial | Apple Centric |
| Open Source | check_circle | cancel | check_circleClient | check_circle | cancel |
| Cost | Free Forever | Free | Free + Paid | Free | Free (Device) |
FAQ
Is it really free?
Yes, Soul Password Manager is an open-source project, and all features are completely free. No ads, no hidden fees.
Can I recover if I forget my master password?
No, you cannot. Due to our Zero-Knowledge security model, we do not know your master password. If you lose it, your data is lost forever. Please keep it safe.
Where is data stored?
Data is strongly encrypted and stored in Google Firebase cloud database. Encryption keys exist only on your device, so even server admins cannot see your data.
Can I migrate from other password managers?
Yes, we support importing from JSON format. Export data from your current manager and import it via the settings menu.
Is there a mobile app?
There is no native app (App Store/Play Store), but it can be installed as a PWA (Progressive Web App). Add it to your home screen from your browser menu to use it like an app.
Does it work offline?
Yes, PWA technology allows you to view and edit data offline. Changes will automatically sync to the cloud when you connect to the internet.
What if the service shuts down?
Soul is open-source software. Even if the official hosting ends, you can host your own server using the source code. You can also export your data as JSON at any time.
Robust Security Architecture
You
(Master Password)
PBKDF2
Key Derivation
AES-256
Encryption
Cloud
Encrypted Storage
encrypted AES-256 & RSA Hybrid Encryption
Data is encrypted with military-grade AES-256-GCM, and the key is protected by RSA-2048. This robust hybrid method ensures data is fully encrypted before leaving your device.
key PBKDF2 Key Derivation (600k iterations)
Your master password is converted into an encryption key using the PBKDF2 algorithm (SHA-256, 600,000 iterations). This provides extreme resistance against brute-force attacks.
visibility_off Complete Zero-Knowledge
We do not know or store your master password. The server (Firebase) stores only "encrypted data". No one but you (not developers, Google, or hackers) can mathematically view your data.
blur_on Privacy Shield
The screen automatically blurs when switching apps to prevent shoulder surfing. Encryption keys are also destroyed when the session ends, ensuring safety on shared PCs.
policy Security Audit & Transparency
Soul Password Manager is an open-source project. Source code is available on GitHub for audit by security researchers and developers worldwide. Transparency ensures reliable security without backdoors.