Add FileShot – zero-knowledge AES-256-GCM encrypted file sharing (MIT, self-hostable) #5
Description
Tool Submission: FileShot
Category: Secure File Transfer / Zero-Knowledge Encryption
Link: https://github.com/FileShot/FileShotZKE
Live instance: https://fileshot.io
What it does
FileShot is a zero-knowledge file sharing tool that encrypts files in the browser using AES-256-GCM before upload. The decryption key is placed in the URL fragment and never sent to the server.
Relevant properties for a security-focused open source list:
- Zero-knowledge design: server receives only ciphertext; key transport uses URL
#fragmentwhich browsers exclude from HTTP requests - Client-side crypto: uses the Web Crypto API (
SubtleCrypto), no server-side key handling, no key escrow - No account required: ephemeral sharing without identity exposure
- Self-hostable: MIT-licensed Node.js backend, static HTML frontend — deploy on your own infrastructure
- Auto-expiry: configurable TTL, files are purged on schedule
Threat model
This architecture defends against server-side breaches, insider threats, and legal compulsion — the server operator genuinely cannot decrypt files.
Technical stack
- Frontend: Vanilla JS, Web Crypto API, AES-256-GCM
- Backend: Node.js (Express)
- License: MIT
This seems like a good fit for the "file transfer" or "encryption tools" section of this list.