Tunnels
Gateways
Webhooks
Secrets
Reports
Bastion
Teams
Password Manager
Share passwords securely!
Secure storage and sharing of passwords for infrastructure and services.
The password manager works in the web interface of your personal account. We don't store passwords in plain text, following the zero-knowledge model: only the user has the keys that can decrypt the data.
Available on all plans
Why did we build a password manager into Tuna?
- We noticed that many developer and administrator teams lack a culture of secure password and secret storage.
- At the same time, everyone needs to store various infrastructure passwords, SSH keys, office Wi-Fi passwords, etc.
- However, there aren't always available tools for a secure and convenient way to share passwords with the team, clients, auditors, or friends.
- Then people start transmitting passwords in plain text in chats, emails, notes.
- Our goal is to improve the culture of secret storage and protect you from leaks and unauthorized access to your infrastructure.
- That's why Password Manager is a basic and free feature for everyone.
Why do you need password management?
TUNA Password Manager is designed for secure storage and convenient sharing of passwords and other types of secrets for developers, administrators, and their teams.
We don't store passwords in plain text, following the zero-knowledge model — only the user has the keys that can decrypt the data.
You can store passwords, SSH keys, licenses, notes, database credentials, and other types of secrets, as well as create shared folders with secrets within the team and share them with anyone outside the Tuna platform.
Reviews about Password Manager
How does it work?
- 1
When creating a vault, the browser generates Private (Private key) and Public (Public key) RSA keys, as well as a Master key (Passphrase in openssl terminology), which encrypts the Private key.
- 2
Only the user has the Master key, we recommend storing it in a safe place (preferably written on paper) and never sharing it with anyone under any circumstances.
- 3
If you lose your Master key, it will be impossible to recover access to passwords.
- 4
Private and Public (Public key) keys are stored on the Tuna side in encrypted form.
- 5
The passwords themselves are encrypted with the Private key.
When editing or creating a new entry, the data is first encrypted using the private key in the browser, then sent to the server — this guarantees that we cannot decrypt the records stored on Tuna servers and cannot restore access to them if the master key is lost.
- Read documentation →
TUNA — platform for developers
TUNA
platform for developers
TUNA — platform for developers
TUNA
platform for developersPricing
Get 2 months free with annual subscription
Hobby
- 1 HTTP tunnel
- 30 minutes of operation
- Dynamic subdomains
- 1 project
- 5 environments per project
- 5 configs per environment
- 1 webhook
- 1 project
- 7 days storage
Free
InstallDeveloper
- 5 tunnels simultaneously
- 10 subdomains in tuna.am zone
- 1 static port
- 1 own domain
- No time limit
- All tunnel types
- 10 projects
- 10 environments per project
- 10 configs per environment
- 3 monitors (watch)
- 10 webhooks
- 1 project
- 30 days storage
5 USD /month
50 USD /year
BuyTeam
- 10 tunnels simultaneously
- 10 subdomains in tuna.am zone
- 10 own domain
- 5 static ports
- Own domain zones
- Traffic policies
- IP access policies
- 20 projects
- 20 environments per project
- 20 configs per environment
- 5 monitors (watch)
- 10 webhooks
- 20 projects
- Unlimited storage
- 200 nodes per team i
10 USD /month
100 USD /year
Buy
What's included in the plan
- Traffic policies i
- IP access policies
- Own domain zones (wildcard)
- IP address hiding in dynamic subdomains
- 10 tunnels simultaneously
- 10 own domains
- 5 static ports
- No time limit
- HTTP tunnels
- TCP tunnels (RAW, SSHd, Postgres, Redis)
- SSHd tunnels (built-in SSH server)
- Trigger tunnels (Webhook or Email)
- 10 subdomains in tuna.am zone
- Multiple regions
- Dynamic subdomains
- End-to-end encryption
- Let's Encrypt SSL/TLS certificates
- HTTP / Postgres / Redis requests inspector
- Basic authentication
- Access restrictions by IP/Api-Key/User-Agent
- Rate limiting
- CORS automation
- Websocket and Server-Sent Events (SSE) support
- Built-in file server
- WebDAV server
- Service creation management (background operation)
+1 Additional license
$2 /month
- +1 active tunnel
- +1 subdomain in tuna.am zone
- +1 own domain
- +1 static port
What's included in the plan
- TCP tunnels (RAW, SSHd, Postgres, Redis)
- SSHd tunnels (built-in SSH server)
- Trigger tunnels (Webhook or Email)
- No time limit
- 5 tunnels simultaneously
- 10 subdomains in tuna.am zone
- 1 static port
- 1 own domain
- HTTP tunnels
- HTTP / Postgres / Redis requests inspector
- Multiple regions
- Dynamic subdomains
- End-to-end encryption
- Let's Encrypt SSL/TLS certificates
- Basic authentication
- Access restrictions by IP/Api-Key/User-Agent
- Rate limiting
- CORS automation
- Websocket and Server-Sent Events (SSE) support
- Built-in file server
- WebDAV server
- Service creation management (background operation)
+1 Additional license
$1 /month
- +1 active tunnel
- +1 subdomain in tuna.am zone
- +1 own domain
- +1 static port
What's included in the plan
- Multiple regions
- 1 HTTP tunnel
- Dynamic subdomains
- 30 minutes of operation
- End-to-end encryption
- Let's Encrypt SSL/TLS certificates
- HTTP requests inspector
- Basic authentication
- Access restrictions by IP/Api-Key/User-Agent
- Rate limiting
- CORS automation
- Websocket and Server-Sent Events (SSE) support
- Built-in file server
- WebDAV server
- Service creation management (background operation)
What's included in the plan
- 1 project
- 5 environments per project
- 5 configs per environment
- Secrets generator
- Change history
- Secrets synchronization across environments
- Compare secret values across environments
- Hidden secrets
- IP address access
- Service keys for specific configuration access
What's included in the plan
- 10 projects
- 10 environments per project
- 10 configs per environment
- 3 monitors (watch)
- Automatic application restart on secret change (watch)
- Secrets generator
- Change history
- Secrets synchronization across environments
- Compare secret values across environments
- Hidden secrets
- IP address access
- Service keys for specific configuration access
What's included in the plan
- 20 projects
- 20 environments per project
- 20 configs per environment
- 5 monitors (watch)
- Automatic application restart on secret change (watch)
- Secrets generator
- Change history
- Secrets synchronization across environments
- Compare secret values across environments
- Hidden secrets
- IP address access
- Service keys for specific configuration access
What's included in the plan
- 1 webhook
- View HTTP requests
- View Email
What's included in the plan
- 10 webhooks
- View HTTP requests
- View Email
What's included in the plan
- 10 webhooks
- View HTTP requests
- View Email
What's included in the plan
- Password storage using zero-knowledge model
- Secrets type separation
- TOTP support
- External sharing capability
What's included in the plan
- Password storage using zero-knowledge model
- Secrets type separation
- TOTP support
- External sharing capability
What's included in the plan
- Shared catalogs
- Password storage using zero-knowledge model
- Secrets type separation
- TOTP support
- External sharing capability
What's included in the plan
- 200 nodes per team i
- Zero-Trust SSH access to servers
- Mandatory (RBAC) access model
- Authentication using temporary RSA keys and PKI certificates
- Audit and observability (coming soon)
- SSO integration (coming soon)
What's included in the plan
- Traffic policies i
- Number of gateways is limited by the limit on static domains and subdomains in the tuna.am zone
What's included in the plan
- Role-based access control (RBAC)
- Event audit
- Invoice payment (RU)
What's included in the plan
- 1 project
- 7 days report storage
- Screen recording
- Browser console
- Network requests
- DOM snapshot
- Report comments
What's included in the plan
- 30 days report storage
- 1 project
- Screen recording
- Browser console
- Network requests
- DOM snapshot
- Report comments
What's included in the plan
- 20 projects
- Unlimited report storage
- Screen recording
- Browser console
- Network requests
- DOM snapshot
- Report comments
How to start?
Start with installing and initial setup of the client - it will take no more than a minute
Frequently asked questions about Password Manager
Password Manager is a free feature and is available to all users and teams without exception!
Password Manager works with any systems and platforms.
How to use the service with usage examples is described in detail in the corresponding section of our documentation.
Still have questions? Email us at info@tuna.am or ask a question in our Telegram community.
Unified platform for:
- accelerating development
- simplifying team collaboration
- improving security
- cost optimization
Tuna Desktop
A new way to manage tunnels without the console. Install on Windows, MacOS or Linux and get started in seconds.
Install