Why Neulock?
Web3 native
Connect your wallet. Get your passwords anywhere.
True self-custody
Your wallet is your key. Passwords not stored, no vaults to crack.
Permissionless
Blockchain-backed, censorship-proof. Gatekeeper-free.
Hassle-free
No accounts. No emails. No lock-outs. Mint your freedom.
Built for Web3
Simply connect your wallet – no accounts, no credit cards, no master keys.
Defy Big Brother
Neulock lives the Cypherpunk ethos: privacy through cryptography, freedom through decentralization.
How Neulock Works
Securing your passwords with Web3 technology is simple, fast, and more secure than traditional password managers.
Connect Your Wallet
Sign in with your wallet. No account creation or personal information needed.
Generate Master Keys
Neulock derives a password generation key and an encryption key automatically from your wallet signature. No need to write them down.
Manage Your Passwords
Create ultra-strong passwords or import existing ones. Neulock-generated passwords never leave your device, not even under encryption.
Access Anywhere Securely
Your encrypted data is backed by blockchain technology and only accessible with your wallet. Use Neulock across all your devices with seamless synchronization.
Powered By
Pricing
Choose the option that works best for you. No lock-outs, ever.
No Lock-Out Policy
Unlike traditional password managers, Neulock will never lock you out of your passwords. Even after your subscription ends, you can always access and retrieve your passwords.
Backed by Optimism
Neulock has been awarded a 45,000 OP (~$40,000 USD) grant by the Optimism Foundation to fund a comprehensive smart contract audit by ChainSecurity, one of Web3's most trusted security firms.
This audit will rigorously validate Neulock's architecture.
It also reinforces our commitment to decentralized password security.
Because real privacy is trustless by design.
USD value based on OP price at time of request. See grant details.
Security comparison
Here's how Neulock compares to your typical cloud password manager:
| Risk | Neulock | Cloud Password Managers |
|---|---|---|
| End-User Device Compromise | At Risk All password managers are vulnerable if device security is compromised | At Risk Idem |
| Server Breach | Safe No Neulock-generated passwords are stored neither on servers, nor on-chain | At Risk Passwords potentially compromised, depends on encryption effectiveness and master key strength |
| Subscription lock-out | Safe No subscription; your passwords are always available by connecting your wallet | At Risk You may be locked out due to credit card issues |
| Password manager company going out-of-business | Safe All data backed by 3+ FileCoin permanent IPFS storage contracts, indexed on-chain; full data self-custody possible | At Risk Your data may be unretrievable if their cloud infrastructure goes offline |
| Master key bruteforce attack | Safe 256-bit master key derived from wallet is impossible to bruteforce | At Risk Humans can create weak master keys |
| Encryption Algorithm Obsolescence | Safe Passwords not stored, thus not affected | At Risk Stored passwords may become vulnerable |
| Master Key Recovery Mechanism Exploited | Safe Master key derived from wallet only | At Risk Recovery mechanisms can be a weak point |
| Quantum Computing Advances | Safe Utilizes quantum-resistant algorithms | At Risk May not be equipped with quantum-resistant measures |
Still have security concerns? Talk to us on Discord! We're proud and happy to discuss Neulock's security.
We don't ask permission
Don't take our word for it
Neulock is made by cybersecurity experts and loved by Web3 enthusiasts. But you don't need to trust others: check out our open-source code on GitHub to see it for yourself!
Here are the addresses of our open-source smart contracts:
| Contract | Description | Addresses |
|---|---|---|
| NEU | Our membership NFT implementing ERC-721 & ERC-7496 (dynamic traits) | |
| Storage | IPFS storage contract for encrypted user data (no secrets) | |
| Metadata | NEU token metadata, including series & dynamic traits |
Frequently Asked Questions
Got questions about how Neulock works? We've got answers.
We made Neulock to be resistant to government surveillance and censorship, corporate greed, and even our own mistakes. You, and you alone, own your passwords. Period.
You don't have to trust us. You only need to trust your own wallet.
With Neulock, your passwords never leave your devices, not even under encryption.
We borrowed this idea from Zero Trust Architecture in network security: ensure your devices are secure and assume the network is compromised. That's why we're the first password manager that's confident enough to use decentralized infrastructure.
Unlike traditional password managers, Neulock never exports your secrets from your devices, not even under encryption.
Your data is backed by blockchain technology and decentralized storage. Even if our company goes out of business, your passwords remain accessible by connecting your wallet.
Additionally, your master key is a 256-bit key derived directly from your wallet signature, making it impossible to brute force, unlike human-created master passwords.
It depends on your threat model. For most users, Neulock is safer than offline password managers.
Offline password managers promise perfect confidentiality, but they do so at the cost of availability. They demand perfect physical security and backups, and are cumbersome to use.
Neulock addresses all the three pillars of information security: confidentiality, integrity, and availability.
No! One of Neulock's key advantages is that you don't need to create an account or remember a master key.
Simply connect your Ethereum wallet and sign a message. Your wallet serves as your authentication method, and all necessary keys are automatically derived from your wallet signature.
Neulock uses decentralized infrastructure to seamlessly sync your passwords across devices. When you save data:
- Your app encrypts the data locally
- The encrypted data is uploaded to IPFS (decentralized storage)
- We procure at least 3 FileCoin permanent contracts to guarantee availability of your data
- Your app encrypts the reference to this data locally and stores it on the blockchain
- Your other devices can retrieve and decrypt this data when you connect your wallet
Importantly, your passwords generated by Neulock are not present in the uploaded data. They are regenerated locally. Your password generation key and encryption key never leave your devices, ensuring maximum security.
Neulock is designed to be resilient against service outages. All user data is stored on decentralized infrastructure (blockchain and IPFS) with at least 3 FileCoin permanent storage contracts. You can also pin your data to your own IPFS node for added redundancy. As long as the blockchain exists and you have access to your wallet, your passwords will remain accessible.
Neulock-generated passwords are never stored on the blockchain or IPFS, not even under encryption.
Only non-secret parameters are stored (under encryption), while the passwords themselves are deterministically recreated on your device using your wallet-derived keys.
This means your passwords remain secure even if the on-chain data gets compromised or decryption methods become vulnerable in the future.
Yes! Neulock uses two 256-bit keys derived from your wallet signature, which are way beyond the capabilities of brute-force attacks.
Yes, Neulock is designed to be quantum-resistant. Both the password derivation algorithm and the encryption algorithm are believed to be resistant to current quantum cracking methods, even with a quantum computer of the future.
We've partnered with ChainSecurity, a top Web3 auditing firm, to conduct a professional security audit of our smart contracts.
The audit is underway and supported by an Optimism Foundation grant. Security is our highest priority, and we're committed to having our code thoroughly validated by industry experts.
Once completed, the full audit report will be made publicly available to ensure transparency. Ask us on Discord for the latest updates!
Neulock offers two payment options. The monthly subscription costs $9.97/month and can be paid with crypto or credit card. The NFT membership is a one-time payment of 0.1337 ETH that provides lifetime access to all features and exclusive access to token-gated community channels on Discord. The NFT membership is also tradeable, meaning you can transfer your membership to others. Both options give you full access to all features, and regardless of which you choose, Neulock will never lock you out of your passwords.
Neulock Roadmap
Our journey to create the most secure and accessible password manager in Web3 and beyond.
Web App
Available NowCurrently available as a web app that works in wallet-enabled browsers (like Brave, or Chrome/Firefox with the MetaMask extension), as well as in mobile wallet apps (eg. Coinbase Wallet, Trust Wallet, etc).
Native Mobile Apps
Coming SoonDedicated native mobile applications for iOS and Android with biometric security, offline capabilities, and improved user experience.
Native Desktop Apps
In DevelopmentPowerful desktop applications offering deep integration with operating systems.
Password Autofill
PlannedSeamless password autofill capabilities across browsers and applications while maintaining the same high security standards of the Neulock platform.
Our roadmap is constantly evolving as we respond to community feedback. Join us and be part of the journey!