Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
Cloakmy.org is an online secure messaging service designed for temporary sharing of sensitive information. Users can enter a message, set a recipient, password, secondary password, hint, and expiration policy, then generate a secure link to send to the other party. The page also indicates support for file selection or drag-and-drop uploads, so it is not limited to plain-text use cases. Its positioning is closer to a “one-time secret sharing tool” than a full enterprise password vault or data loss prevention platform.
In terms of protection features, Cloakmy.org offers encrypted message sharing, randomly generated keys, and optional primary and secondary password mechanisms. The page states that messages are encrypted using a randomly generated key; if a password is set, it is used as part of the protection as well. The secondary password is intended for more sensitive data and is encrypted locally in the browser via JavaScript before transmission, then encrypted again by the server. The site recommends using a password different from the primary one. Expiration policies include the default Auto Destruct mode, which deletes the message after the link is opened, as well as Timed, Never Expire, Start Date, End Date, and other options, providing a basic level of lifecycle control.
The service is a hosted web-based offering, so users do not need to install a client or deploy their own system. Management features are fairly basic and mainly apply at the individual message level, including recipient, subject, password, expiration time, and whether deletion is allowed. The page does not disclose capabilities such as team management, role-based permissions, centralized auditing, alerts, SSO, APIs, or SIEM integrations. For integrations, the only confirmed feature is that it can send secure links to recipients via email, but it also sends the sender’s IP address to the email recipient.
For pricing, the page explicitly states that the service aims to remain free for everyone, and it provides Ethereum, Bitcoin, and PayPal donation options to support server costs and maintenance time. In terms of compliance certifications, the main content does not provide SOC 2, ISO 27001, GDPR, HIPAA, or similar certification or compliance statements, so it should not be used in production workflows that require strong compliance evidence.
Its advantages are simplicity, free access, default auto-destruction, and support for multi-layer password protection. It is suitable for individuals or small teams that need to temporarily share passwords, tokens, key fragments, or other sensitive information. The drawbacks are also clear: the page states that IP addresses are logged; when using the email service, the sender’s IP is sent to the recipient; and it does not disclose details about encryption algorithms, third-party audits, enterprise-grade controls, or support mechanisms. As a result, it is better suited to low-friction, temporary secret sharing, rather than enterprise-grade secrets management or compliance auditing.
The main content does not state whether Cloakmy.org is accessible from mainland China, so actual availability should be verified through network testing. Payment or support options mainly consist of donations via PayPal, Bitcoin, and Ethereum. If you need enterprise-grade capabilities, 1Password and Bitwarden Send are worth considering; if you prefer open-source self-hosting, alternatives such as PrivateBin and One-Time Secret may be more relevant.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on cloakmy.org official site.
cloakmy.org is an Unknown Security provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of China direct-connect friendly. Click "Visit Official Site" to reach cloakmy.org directly.