Nexoryn Vault Pro is a desktop encryption vault for businesses, professionals, and security-conscious individuals. AES-256-GCM encryption. 100% offline. No subscription. No cloud.
Nexoryn Vault Pro combines the most trusted encryption standards with features designed for real-world business use.
Every file encrypted with its own unique AES-256-GCM key. Compromising one file never exposes the rest. Same cipher used by banks and governments.
Passphrase stretched with Argon2id — winner of the Password Hashing Competition. 64MB memory cost makes GPU brute-force practically impossible.
Every unlock, file add, extract, and delete is logged in an HMAC-SHA3-256 chained log. Any deletion or modification is instantly detected.
Vault master key is sealed to your specific PC via Windows DPAPI and TPM. Copy the vault to another machine — it won't open.
Set a duress passphrase. If forced to unlock, enter it — attacker sees a fake empty vault. Your real data stays completely hidden.
Compatible with Google Authenticator, Aegis, and Authy. Require a 6-digit code in addition to your passphrase on every unlock.
SHA3-256 hash of every file stored at time of encryption. One-click integrity check detects if any file has been tampered with outside the vault.
Vault locks automatically after configurable idle time. Failed attempt counter with lockout. Master key wiped from memory on lock.
Create separate vaults for different clients, projects, or departments. Each vault has its own passphrase, audit log, and encryption keys.
Built-in cryptographically secure password generator using secrets.choice. Generate strong passwords or memorable passphrases instantly.
Optionally overwrite original files with 3-pass random data before deletion after encrypting. No file recovery possible.
No internet connection required. No cloud sync. No telemetry. No accounts. Your data never leaves your device under any circumstances.
Every layer independently protects your data. Even if one is bypassed, the others hold.
Your passphrase is never stored. It is stretched with Argon2id (64MB, 3 iterations) into a 256-bit master key — a process that takes ~1 second and makes brute force infeasible.
Each file gets a unique randomly generated AES-256 key. This key is encrypted (wrapped) by the master key and stored alongside the file. No two files share a key.
On Windows, the master key derivation parameters are additionally sealed to your specific PC via DPAPI and TPM. The vault cannot be opened on any other machine.
Every vault event is written to a tamper-evident log where each entry contains an HMAC of the previous one. Deleting or modifying any past entry breaks the chain.
Dashboard · Files · Audit · Integrity · Settings
TOTP · Auto-lock · Attempt limiting · Decoy
Multi-vault · Metadata · Integrity tree
HMAC-SHA3-256 chained binary log
Argon2id · Per-file wrapping · Memory wipe
Machine-bound key seal via Windows TPM
Any business that stores confidential client files needs Nexoryn Vault Pro.
Protect client ITR files, financial statements, audit reports, and tax records. Encrypted per-client vaults with full access history. DPDP Act 2023 compliant.
Encrypt case files, client communications, contracts, and legal briefs. Tamper-evident audit log proves chain of custody. Attorney-client privilege protected.
Secure patient records, diagnostic reports, prescription histories, and medical images. Decoy vault protects patient privacy even under pressure.
Protect employee data, trade secrets, financial projections, vendor contracts, and business strategies from data breaches and ransomware.
Store exploit code, credentials, pentest reports, and sensitive findings securely. DPAPI binding prevents evidence from being accessed on seized hardware.
Protect student records, exam papers, fee data, and faculty records. Multi-vault support lets different departments have isolated encrypted storage.
Pay once, use forever. No recurring fees, no cloud account, no lock-in.
All licenses include a signed NDA. International pricing available on request. Contact us for custom enterprise pricing.
Nexoryn Vault Pro helps you meet regulatory requirements for data security in India and globally.
Fulfils data protection obligations under the Indian Information Technology Act for businesses handling sensitive personal data.
Supports compliance with India's Digital Personal Data Protection Act 2023 by encrypting personal data at rest with AES-256.
Encryption at rest, access control, audit logging, and integrity checks align with ISO/IEC 27001 information security requirements.
Protects patient health information in line with best practices for clinical data security under Indian healthcare regulations.
Attorney-client privilege protected through hardware-bound encryption and tamper-evident audit chain proving document integrity.
Suitable for CA firms and financial institutions protecting client financial data under ICAI and RBI data security guidelines.
Yes, 100%. Nexoryn Vault Pro never connects to the internet. No files, keys, passwords, or metadata leave your device under any circumstances. All encryption and decryption happens locally.
There is no recovery option. This is by design — if there were a backdoor, it could be exploited. We strongly recommend writing your passphrase on paper and storing it in a physically secure location. Consider using a passphrase like "Maple-River-47-Torch-Zebra" that is memorable but strong.
Yes, but if you have DPAPI hardware binding enabled, you must disable it first. Without DPAPI, the vault can be opened on any PC with the correct passphrase. With DPAPI, the vault is bound to your specific machine's hardware — a security feature for users who want extra protection.
BitLocker encrypts the entire drive — if you're logged in, all files are accessible. Nexoryn Vault Pro encrypts individual files with per-file keys, requires explicit authentication, auto-locks on idle, maintains an audit trail, and includes features like decoy vaults and TOTP 2FA that enterprise-grade tools charge thousands for.
Nexoryn Vault Pro implements AES-256 encryption, access controls, and audit logging — the technical safeguards recommended under the DPDP Act 2023 for protecting personal data. We recommend consulting a legal professional for full compliance assessment specific to your organisation.
The current version is optimised for Windows 10 and 11. Most features work on Linux and Mac, but DPAPI hardware binding is Windows-only. Mac and Linux builds are planned for a future release. Contact us if you need a cross-platform deployment.
One-time purchase. No subscription. No cloud. No compromise. Contact us to get your license and have it set up for your organisation.
Call us: +91 90583 25613 · nexoryn.vapt@gmail.com