// establishing secure channel
CryptNet
9F3A · 2C77 · E210 · 4B88
CryptNet cryptnet // systems lab Start a project
$ cryptnet --privacy=default

Everything encrypted. By default, not by toggle.

CryptNet ships end-to-end encrypted systems — Link messenger, CSLTrust PKI, and the protocols beneath them. Keys never leave the device.

cryptnet@link · ~/session
// built on standards
you can audit
AES-256-GCM X25519 Ed25519 TLS 1.3 ChaCha20-Poly1305 Double Ratchet HKDF Argon2id
// what we build

A full stack for systems
that hold data.

From protocol to production. We build systems where security and scale don't argue with each other — then we run them.

01CORE
End-to-end encryption
Data is sealed on the device and stays closed to everyone in transit and at rest — including us.
02INFRA
Messaging infrastructure
Scalable backends for realtime, high-volume communication — the plumbing under Link.
03PROTO
Cryptographic engineering
Protocol design, key management, and review of the primitives underneath the product.
04ZK
Zero-knowledge architecture
Systems that operate while knowing nothing about the content they carry.
05SCALE
Scalable backends
Reliability under load — from an MVP to millions of live, concurrent sessions.
06AUDIT
Audit & hardening
Threat modeling, penetration testing, and continuous security monitoring.
// second product in development

CSLTrust.
Run your own trust.

A self-hosted PKI & secrets platform — like a Vault you own. Stand up a private CA, issue and rotate certificates, and keep keys sealed.

Private CA
issue & rotate your own certs
Cert lifecycle
request · sign · renew · revoke
Secrets vault
sealed storage for keys & tokens
Self-hosted
runs in your own infra
csltrust · certificate x509
Root CA Intermediate Leaf
CNlink.cryptnet.co.id
IssuerCryptNet Intermediate CA
Serial3F:A2:9C:14:EE:07
KeyX25519 · Ed25519
Valid2026-07 → 2027-07
chain verified · secrets sealed
// zero-knowledge

We can't read your data.
By design.

Type below. Everything on the left stays on your device — everything on the right is all our servers ever hold.

on your device · plaintext
encrypted on-device before it ever leaves
what our servers storePOST 200
AES-256-GCM ciphertext · no key on file
End-to-end encryption Zero-knowledge Keys on device No data selling
// start a project

Tell us the problem —
we'll design the way
to secure it.

From the first call to launch. We reply within one business day.

Send a message
Address
Gg. Ibu Aisah No. 182A,
Bandung 40241, Indonesia
E-mail
contact@cryptnet.co.id
PGP fingerprint
9F3A 2C77 E210 4B88
// contact

Send us a message

Tell us about your project — we usually reply within one business day.

Please add your name, a valid email and a message.
Your details stay private — we never share them.

Message sent

Routed to our team — we'll reply to you within one business day.