Share files only your recipient can open.
Nexro encrypts your files in the browser before upload. Nobody — not even us — can read your files without the access code.
AES-256-GCM
Client-side
Zero Knowledge
Server sees nothing
10 GB+ files
Chunked streaming
Rate-limited
5-attempt lockout
project-demo.mp4
1.4 GB · video/mp4
Algorithm
AES-256-GCM
PBKDF2
200k rounds
Chunk size
10 MB
Salt
16 B random
Access Code
KXMN·7PQR
Zero Knowledge
Server sees ciphertext only
10 GB+ Supported
Chunked streaming
Security architecture
Built from the ground up for privacy
Every design decision — algorithm, key derivation, access control, and storage — was made to guarantee your data stays yours.
AES-256
GCM mode
Encryption
AES-256-GCM, client-side
Encryption runs entirely in your browser via the Web Crypto API. The server only ever receives ciphertext — never your file or access code.
0 bytes
plaintext stored
Privacy
Zero knowledge by design
Only the recipient with the correct code can derive the decryption key. We mathematically cannot read your files, period.
bcrypt
cost factor 12
Access Control
Brute-force resistant codes
Codes are bcrypt-hashed at cost 12. Five failed attempts trigger a 15-minute lockout — no rainbow tables, no dictionary attacks.
10 GB+
any file size
Scale
Unlimited file size streaming
10 MB chunked streaming lets you encrypt and share multi-GB videos and archives without running out of RAM.
How it works
Four steps to a private share
Drop your file
Any type, any size. Drag & drop or tap — images, videos, documents, archives.
Browser-side encryption
AES-256-GCM runs in your browser before upload. Your key never leaves your device.
Share link + code
Copy the share URL and your unique access code. Send them through separate channels for layered security.
Recipient decrypts
They enter the code. Decryption runs in their browser — the server never sees plaintext.