Hi PrivacyGuides!
I’m excited to introduce AliasVault, an open-source password and (email) alias manager designed to protect your privacy online.
AliasVault combines password management with unique identity generation, including email aliases, to help you compartmentalize your online presence. This helps in preventing third parties (e.g. data brokers) from creating shadow profiles of you, a common issue when the same email address is used across multiple services. AliasVault is end-to-end encrypted, fully self-hostable, and designed with privacy-first principles at its core.
This project was recently mentioned by a PrivacyGuides.net user in another forum section, and I’m happy to now formally present it here to gather feedback from privacy enthusiasts like you. Shortly about me: I’m Leendert, a software developer with over 15 years of experience and a long term privacy enthusiast myself. As an example of this I’ve been running SpamOK.com, a free temp email service since 2013.
Over the past year, I’ve poured my heart into AliasVault, dedicating much of my free time to creating a tool that empowers people to take control of their digital identities.
AliasVault is completely free and open-source under the MIT license because I believe privacy is a right, not a privilege. While I plan to introduce optional convenience features for the cloud version in the future (for a small fee to cover upkeep and aid future development), the self-hosted version will always remain free and accessible.
I’d love your help, whether by trying it out, sharing it with friends, or simply offering feedback / advice.
Key Features:
- Unique Identities & Passwords: Generate unique email aliases and strong passwords for every service.
- Self-Hosted Email Server: Create and manage aliases without relying on third-party services.
- Zero-Knowledge Design: AES-256-GCM and Argon2id encryption ensure your data is secure. Your master password never leaves your device.
- Open-Source & Self-Hostable: Review, audit, and deploy AliasVault on your own infrastructure. Installation is quick with Docker (also supports ARM for Raspberry Pi).
- Official Cloud Version: For convenience, a fully-supported hosted option is available.
Try it Out:
- Cloud Version: AliasVault.net
- Self-Hosting & Docs: GitHub | Docs
I’m also proud to share that a community member created an independent in-depth review and self-hosting tutorial for AliasVault. Check it out on YouTube: https://www.youtube.com/watch?v=T7IqvNj5b2M
Future Plans:
I’m working to meet all PrivacyGuides’ recommended criteria for listing, with the security audit being a top priority. Transparency, open-source availability, and privacy-first practices are core to AliasVault.
Here are some of the short-term priorities (< 4-6 months):
- Security Audit: I’m actively exploring options with independent auditors and have applied for grants to support this effort. Hope to be able to share progress on this in the coming weeks.
- Feature Roadmap: The up-to-date roadmap is published on GitHub, but the biggest things being worked on right now are:
- Creating browser extensions (Chrome/Firefox) with autofill mechanism. Already making good progress on this and it’s looking really nice, hope to have the first version out in the next two weeks.
- Custom domain support on cloud version
- Allow importing passwords from other password managers
Additional plans for the longer-term:
- Adding native mobile apps (iOS/Android)
- Team / organization features (sharing passwords/aliases)
- Integrating disposable phone number service for SMS confirmation
Feedback
I’d love to hear your thoughts:
- Would AliasVault fit into your privacy toolkit?
- What features or improvements would you prioritize?
- How can I make it easier for self-hosters and privacy advocates to adopt?
Your feedback will directly shape AliasVault’s development, so please share your thoughts. Thank you for taking the time to read about AliasVault, much appreciated! Looking forward to your input! 
. I do hope to add TOTP support to the client in the near future, which shouldn’t be too hard as AliasVault already has TOTP functionality built-in for it’s own 2FA.