SecureIt

• 

  This is how the Landing Page looks like

• 

  A special feature to encrypt but in .aadi format

• 

  A demo input of password

• 

  Robustness and Breach History is measured

• 

  A special feature to encrypt and decrypt files but in .aadi format

Inspiration

SecureIt was inspired by the growing problem of weak and reused passwords causing major cybersecurity breaches worldwide. While studying cybersecurity, ethical hacking, and intrusion detection systems, I noticed that most users still lack simple tools that explain password security in a practical and interactive way. I wanted to build a futuristic, privacy-first platform where users could validate passwords, check breach exposure, and encrypt sensitive notes entirely inside the browser using a Zero-Trust Architecture.

What it does

SecureIt is a fully client-side password security platform that:

Analyzes password strength in real time Estimates password entropy and time-to-crack Checks leaked password exposure using the Have I Been Pwned (HIBP) k-Anonymity API Generates ultra-secure passwords using cryptographically secure randomness Encrypts and decrypts private notes locally using AES-GCM encryption Allows users to download encrypted .aadi files securely

No plaintext passwords or sensitive data ever leave the browser.

How we built it

We built SecureIt as a single-file React application using:

React + Tailwind CSS for the cyberpunk dark-mode UI Web Crypto API for SHA-1 hashing, AES-GCM encryption, and secure password generation HIBP k-Anonymity protocol for privacy-preserving breach detection Client-side entropy calculations and password analysis logic for robustness estimation

The application follows a strict Zero-Trust frontend-only architecture with no backend server.

Challenges we ran into

Some major challenges included:

Implementing secure cryptography fully in the browser Handling binary encryption data and file conversions Building secure password generation without using Math.random() Designing a modern cyberpunk UI while keeping the application responsive and user-friendly Integrating the HIBP API securely without exposing user passwords Accomplishments that we're proud of

We are proud that SecureIt:

Uses real-world cybersecurity principles instead of basic password checks Implements secure client-side AES-GCM encryption Uses cryptographically secure randomness through the Web Crypto API Integrates HIBP breach checking securely using k-Anonymity Maintains complete privacy with a 100% frontend-only architecture Combines strong security engineering with a polished cyberpunk UI experience What we learned

Through this project, we learned:

Practical implementation of Zero-Trust security architecture Browser-based cryptography using the Web Crypto API Secure password entropy analysis and threat modeling Privacy-preserving breach verification techniques Advanced frontend engineering and responsive UI design The importance of making cybersecurity tools both secure and user-friendly

Built With

• .aadi
• aes-gcm
• api
• client-side
• crypto
• csprng
• css
• css3
• data
• ecosystem
• encryption
• entropy
• file
• framer
• hashing
• html5
• javascript
• k-anonymity
• kyxgo
• password
• pwned
• react.js
• serverless
• sha-1
• spa
• static
• tailwind
• uiux
• vault
• web