🗝️ Free · private · in-browser

Free one-time secret sharing — self-destructing notes

Share a password or note via a link that works exactly once.

Share a password without leaving a trail

Credentials pasted into chat or email do not go away when the conversation ends - they sit in message history, search indexes, and backups indefinitely. ShareNimbus gives you a safer hand-off: type the secret, get a link, and that link self-destructs after a single view. The text is encrypted with AES-256-GCM before it is stored and deleted the instant it is read, so there is no lingering copy to leak later.

How to use it

  1. Type or paste your secret in the box above.
  2. Choose an expiry and keep "destroy after first view" on for a true one-time link.
  3. Optionally add a password for a second layer, and share it over a different channel.
  4. Press Create secret link and send the URL. The first person to open it sees the secret; everyone after gets an expired page.

When one-time secrets beat a password manager

Shared vaults are great for standing access, but they are heavy for a quick, one-off hand-off: onboarding a contractor, sending a database password to a teammate, or passing a recovery code to someone who is not in your vault. For those moments you want the credential to exist briefly and then vanish. A self-destructing link does exactly that - it is read once, by one person, and then it is gone. Pair it with a short expiry so that even an unopened secret cannot linger.

Need to send a file instead?

For documents, images, or archives rather than text, useSecure File Share - the same expiring-link model, with a password and one-time download for files up to 25 MB.

Frequently asked questions

What is a one-time secret?

It is a private note - a password, API key, or short message - shared through a link that works exactly once. The moment the recipient opens it, the secret is revealed and then permanently destroyed, so it can never be read again.

Is the secret encrypted?

Yes. Your secret is encrypted with AES-256-GCM before it is stored, and the ciphertext is deleted as soon as the link is viewed (or when it expires, whichever comes first). Plaintext is never written to disk.

Why not just send it over chat or email?

Chat logs, inboxes, and message backups keep a copy of whatever you paste, often forever. A self-destructing link means the credential exists in one place for one view, then it is gone - nothing to leak from an archived thread.

Can I add a password too?

Yes. Set an optional password and share it over a separate channel from the link. Even if the link is intercepted, it is useless without the password - and it still self-destructs after the first successful view.