OverclockedApps
Android App

SecureStorage

Your vault. Your device. No cloud. No recovery.

A fully on-premise, encrypted Android vault — an alternative to Samsung Secure Folder. Store files, photos, videos, and APKs behind AES-256-GCM encryption with biometric unlock, intrusion detection, and stealth mode. All data stays on-device with no cloud storage, no password recovery, and no external dependencies.

Join the Beta Coming Soon
Enter PIN 1 2 3 4 5 6 7 8 9 or use fingerprint

Features

AES-256-GCM Encryption

Every file is encrypted with AES-256-GCM using a unique 12-byte IV per operation. Master key lives in Android Keystore, hardware-backed when available. 128-bit authentication tags verify integrity.

PIN, Password & Biometric

Set up a PIN (4-16 digits) or password (8+ characters) with a guided wizard. Optionally enable fingerprint unlock. Credentials hashed with PBKDF2-HMAC-SHA512 at 310,000 iterations.

Intrusion Detection

Optional front camera capture on failed login attempts. Progressive lockout doubles from 30 seconds after 3 failures, capped at 1 hour. Optional data wipe after configurable failed attempts.

Encrypted File Vault

Import files from device storage with multi-file import and optional source deletion. Auto-categorization for images, videos, audio, documents, and APKs. Real-time search with favorites.

Gallery & Video Playback

Photo and video grid browser with encrypted thumbnail previews. ExoPlayer integration plays encrypted videos without writing decrypted copies to disk.

App Vault & Work Profiles

Import and encrypt APK files. Install them on demand with metadata extraction (app name, package, version). Work profile support via Android Managed Profile API for app isolation.

Stealth & Disguise

Hide from recent apps, disguise the app icon as a calculator, and block screenshots with FLAG_SECURE. Panic button — shake to instantly lock the vault and clear clipboard.

Auto-Lock & Quick Lock

Configurable timeout: immediately, 30 seconds, 1 minute, or 5 minutes. Foreground service with persistent quick-lock notification. Temporary decrypted files cleaned up automatically on lock.

Secure Deletion

Files are overwritten with random data before deletion — not just unlinked from the filesystem. No recovery tools can reconstruct wiped vault contents.

Security Architecture

Designed so that even physical access to the device cannot compromise your data.

Encryption

  • AES-256-GCM (Galois/Counter Mode)
  • 12-byte random IV per encryption operation
  • 128-bit GCM authentication tag for integrity
  • Master key in Android Keystore (hardware-backed)
  • 8KB buffer streaming for large files
  • EncryptedSharedPreferences (AES-256-SIV keys, AES-256-GCM values)

Password Hashing

  • PBKDF2-HMAC-SHA512
  • 310,000 iterations (NIST SP 800-132)
  • 32-byte cryptographically secure random salt
  • 256-bit derived key output
  • Constant-time comparison prevents timing attacks
  • No password recovery by design

Technical Details

Android 9+

Min SDK 28 (Android 9.0), targeting SDK 34 (Android 14). Built with Kotlin and Jetpack Compose using Material 3 theming.

Room Database

SQLite via Room for file, app, and intrusion log metadata. Three tables with typed DAOs. Android backup and data extraction are disabled.

Zero Cloud

No network permissions, no cloud sync, no accounts, no telemetry. Files stored as UUID.enc in internal app storage. Uninstalling deletes everything.

Keep your private files truly private.

Join the SecureStorage beta for early access.

Sign Up for Beta