Open Source Alternatives LogoOpen Source Alternatives
AlternativesBlogAdvertise
Open Source Alternatives LogoOpen Source Alternatives

Stay Updated

Subscribe to our newsletter for the latest news and updates about Alternatives

Open Source Alternatives LogoOpen Source Alternatives

Handpicked Open Source Alternatives to Paid Softwares

Product
  • Search
  • Categories
  • Tag
  • Sign In
Resources
  • Blog
  • Collection
  • Submit
  • Advertise your tool
Company
  • Privacy Policy
  • Terms of Service
  • Refund Policy
  • Sitemap
Copyright © 2026 All Rights Reserved.
Home/Categories/Security & Monitoring/Keestash
icon of Keestash

Keestash

Open source alternative to LastPass, 1Password and Keeper

Keestash is an open source, self-hosted password manager for individuals and teams with a web interface for shared credential management and team access control. GPL-3.0 licensed.

10 starsPHPAGPL-3.0Active this week
Visit websiteGitHub repo
image of Keestash
Contents
  1. 01Who Keestash is for
  2. 02The problem it solves
  3. 03How it solves it
  4. 04Strengths and trade-offs
  5. 05Tech stack
  6. 06FAQ
  7. 07Similar open-source tools
TL;DR

Keestash is an AGPL-3.0 password manager server for encrypted password storage, sharing, and extensibility through apps. It gives teams a self-hosted alternative to managed vaults when they are willing to operate the server stack themselves.AGPL-3.0 · PHP · 10 stars · Active this week

who it's for

Who Keestash is for#

Teams self-hosting password storage

Keestash fits teams that want control over encrypted vault infrastructure and can maintain a secure server.

Skip if:

You want a managed password manager with vendor-run recovery and support.

Groups sharing credentials privately

The sharing model works for small groups that need shared credentials without using a commercial cloud vault.

Skip if:

You only need an offline personal password database.

the problem

The problem it solves#

Password managers hold some of a team's most sensitive operational data. Hosted vaults reduce setup work, but they also place credential storage, account recovery, and sharing controls under a third-party service.

Self-hosting a vault gives teams more control, but it raises the bar for secure deployment. TLS, database migrations, permissions, backups, and upgrades all become part of the password manager decision.

how Keestash solves it

How it solves it#

Encrypted password vault

Keestash is built around encrypting passwords inside a dedicated password manager server.

Shared credentials

The README describes sharing passwords with teams, family, or friends, which supports group vault workflows.

Docker development setup

The README states that local development moved from Vagrant to Docker, with Docker Compose used to create the container.

Extensible app ecosystem

Keestash positions extensibility through an app ecosystem as part of its password manager model.

strengths · trade-offs

Strengths and trade-offs#

Strengths

  • Self-hosted credential controlKeestash lets organizations run password storage on their own infrastructure instead of depending entirely on a managed vault provider.
  • Designed for sharingTeam and friend sharing is part of the project positioning, which matters for groups that need more than a personal password file.

Trade-offs

  • -Setup is not lightweightThe documented setup includes Docker, TLS files, database migrations, instance data, system users, and permissions, so it needs admin comfort.
tech stack · detected from GitHub

What it's built on#

Languages
JavaScriptPHP
frequently asked

FAQ#

What is Keestash?

Keestash is an open-source password manager server for encrypted password storage and shared vault workflows.

Can Keestash be self-hosted?

Yes. The README describes installing Keestash on your own server and includes a Docker-based development setup.

What license does Keestash use?

Keestash uses AGPL-3.0 according to repository metadata.

also worth a look

Similar open-source tools#

Vaultwarden

Vaultwarden

Self-hosted Bitwarden-compatible password management

60.2KRustAGPL-3.0
KeePass

KeePass

Free open source password manager with encrypted local file

44TypeScriptGPL-3.0
Passbolt

Passbolt

Open source team password manager with sharing and audit

6KPHPAGPL-3.0
Passwordcockpit

Passwordcockpit

Self-hosted team password manager with role-based access

135DockerfileBSD-3-Clause
Password Safe

Password Safe

Store passwords in an encrypted local database, no cloud account

849C++
KeePassXC

KeePassXC

Cross-platform open source password manager with browser plugin

27.4KC++

Repository

Stars
10
Forks
2
License
AGPL-3.0
Latest
nightlyabed3a93477ee51d873081f4c736eda6176e63ea
Last commit
3 days ago
Last verified
May 29, 2026
Repo
keestash/server ↗

Additional details

Language
PHP
Open issues
5
Contributors
3
First release
2019

Categories

Security & MonitoringBusiness & ProductivityCommunication & Collaboration

Tags

SecurityAuthenticationAuthorizationSelf HostedCybersecurityOpen CoreDeveloper Tools