Last updated: 2026-05-03
Every operation - encryption, decoding, hashing, steganography, analysis - runs entirely inside your browser. Your input never leaves your device. There are no servers. There is nothing to leak.
| Data type | Sent to server? | Stored? |
|---|---|---|
| Tool inputs (text, files, keys, passwords) | Never | Not persisted |
| Analytics or usage data | Never | Nothing collected |
| Cookies | None set | No server, no cookies |
| IP address | Never logged by us | GitHub Pages may log (see below) |
| Your browser/OS | Never logged by us | - |
| localStorage data | Never | Stays on your device only |
Trust should not require faith. Open DevTools and check:
- Open any CyberTools page.
- Open DevTools:
F12(Windows/Linux) orCmd+Option+I(Mac). - Click the Network tab. Click the clear button (🚫) to empty the log.
- Use a tool - paste text, encode something, decrypt a JWT, compute a hash.
- Observe the Network tab. Zero new requests will appear after the initial page load. Your data stayed entirely in your browser.
CyberTools uses your browser's localStorage for convenience. This data never leaves your device:
| Key | Contents |
|---|---|
ct-theme |
Your dark/light preference ("dark" or "light") |
ct-history |
IDs of the last 10 tools visited - no input data, just tool names |
ct-favorites |
Tool IDs you have starred |
ct-visit-count |
Visit count integer used for the PWA install prompt |
ct-install-dismissed |
Whether you dismissed the install prompt ("1" or absent) |
To clear everything: Open DevTools → Application → Storage → Clear Site Data.
CyberTools self-hosts every dependency. No external CDN requests are made at runtime. All assets are served from the same GitHub Pages origin.
| Dependency | Version | Purpose | Source |
|---|---|---|---|
| Tailwind CSS | 3.x | Styling utilities | Built locally from package.json, committed to repo |
| Inter font | 5.x | UI typography | @fontsource/inter - woff2 file committed to repo |
| JetBrains Mono | 5.x | Code/output typography | @fontsource/jetbrains-mono - woff2 file committed to repo |
Run pnpm audit from the repo root to verify the dependency tree has no known CVEs.
CyberTools is fully open-source under the MIT License. Every line of code is publicly auditable at https://github.com/ctlib/CyberTools.
If you find a discrepancy between this policy and the actual code, the code is authoritative - and please open an issue.
CyberTools is hosted on GitHub Pages. GitHub may collect standard web server logs (IP address, timestamp, user-agent) as part of serving the static files. This is GitHub's standard infrastructure logging and is outside of CyberTools' control.
See GitHub's Privacy Statement for details.
CyberTools adds zero tracking on top of what GitHub Pages provides by default.
To report a security vulnerability, see SECURITY.md or use GitHub's private security advisory.
For privacy-related questions that are not security vulnerabilities:
Open a GitHub issue with the privacy label.