Skip to main content
Aarunya AppsAarunya Apps
🔐 Privacy & Security

Free Privacy & Security Tools

Tools for the data you least want on someone else's server — which is why these run entirely in your browser. Redact secrets from config files, strip PII from scanned documents, inspect JWTs, and generate compliance policies with nothing uploaded, ever.

🕵️ Verify, don't trust

Open DevTools → Network while using any of these tools. Zero requests fire while you work — that's the whole point.

🔁 Rotate after exposure

Redacting a leaked .env is step one; the leaked keys are still live. Rotate every credential that was ever committed or shared.

📋 Compliance is ongoing

A privacy policy generated once goes stale as your stack changes. Re-generate whenever you add a data-touching service.

FAQ

Is it safe to paste real secrets into the sanitizer?

The .env sanitizer runs 100% client-side — your file never leaves the browser tab, and you can verify that in the Network panel. The same engine is open source as the @aarunyaapps/env-redact npm package if you'd rather run it in your terminal or CI.

How does the OCR redactor keep documents private?

OCR runs locally via Tesseract.js compiled to WebAssembly. The scanned image, recognized text, and redacted output all stay in browser memory — nothing is transmitted.

Can I verify a JWT signature without exposing my secret?

Yes — HMAC-SHA256 verification happens in your browser via the Web Crypto API. Neither the token nor the secret is sent anywhere.

Is the generated privacy policy legally binding?

It's a solid GDPR/CCPA-aware starting point, not legal advice. Have a qualified attorney review it before publishing.

Browse other categories

Powered by Aarunya Apps