Majik Message is a secure messaging platform built on cryptographic identity. Your account is your encryption keys—no phone numbers, no passwords, just your 12-word seed phrase and complete privacy.
Read more about Majik Message here
Click the image to try Majik Message live.
Also available on Microsoft Store for free.
Also available on Google Chrome Web Store for free.
- Majik Message
Majik Message replaces traditional username and password accounts with cryptographic identity. Messages are encrypted end-to-end using Ed25519 and X25519 elliptic curve cryptography, ensuring only recipients with the correct private keys can decrypt them.
Whether online or offline, you maintain full control over your encrypted communications—without relying on centralized infrastructure, personal information, or trusted intermediaries.
- True End-to-End Encryption: Military-grade encryption using Ed25519 and X25519
- Seed Phrase Identity: No email or phone number required—your 12-word seed phrase is your account
- Works Offline: Encrypt and decrypt messages without internet connection
- No Permanent Storage: Messages automatically expire and are never permanently stored on servers
- Multi-Platform: Desktop app, web app, and Chrome extension
Majik Message uses proven elliptic curve cryptography:
- Ed25519: Generates and manages your cryptographic identity
- X25519 (Curve25519): Handles secure key exchange and message encryption
- AES-256-GCM: Encrypts message content with authenticated encryption
Every message is encrypted on your device before transmission and can only be decrypted by the intended recipient. Not even Majik Message servers can access your message content.
Your account is a 12-word BIP39 mnemonic seed phrase—the same standard used by cryptocurrency wallets:
- Each seed phrase deterministically generates an Ed25519 keypair
- Your public key serves as your account identity and fingerprint
- Your private key never leaves your device and is never transmitted
- No email, phone number, or personal information required
As long as you have your 12 words, you can recover full access to your identity and decrypt your messages—anywhere, anytime.
Majik Message doesn't require constant connectivity:
- Encrypt messages offline: Generate encrypted messages without internet access
- Decrypt messages offline: Read previously received messages anytime
- Verify identities independently: Confirm contact fingerprints using cryptographic verification
This makes Majik Message ideal for high-security environments, air-gapped systems, or situations where network access is restricted.
When online, Majik Message provides instant encrypted messaging:
- WebSocket-based realtime delivery
- Messages stored temporarily in Redis with automatic expiration (24 hours default, expandable to 30 days)
- Typing indicators and read receipts for active conversations
- Messages automatically expire and are permanently deleted from servers
Secure group conversations with up to 25 participants:
- Each message is individually encrypted for every group member
- Same security guarantees as one-on-one messaging
- Typing indicators and read receipts work in group chats
Set custom expiration times for sensitive conversations. Messages automatically delete after the specified duration, reducing your digital footprint.
Messages can be exported as encrypted Base64 strings:
- Download and archive encrypted messages locally
- Share encrypted content through any channel (email, file storage, etc.)
- Messages remain fully encrypted outside the platform
Encrypt messages where you are the only recipient—perfect for private notes and journals:
- Sender-only encryption for personal storage and archival
- Works entirely offline in local mode (Message tab)
- Perfect for encrypted journals, notes, passwords, or sensitive information
- Export as encrypted Base64 strings for backup or transfer
Manage multiple cryptographic identities for different contexts:
| Account Type | Local Storage | Online Registration |
|---|---|---|
| Free Users | Up to 25 accounts | 5 accounts |
| Paid Users | Up to 25 accounts | 10 accounts |
What this means:
- Local accounts can encrypt and decrypt messages offline but cannot send/receive realtime messages
- Registered accounts have full access to realtime messaging, typing indicators, and online features
- You can swap which accounts are registered online at any time
Available on the Google Chrome Web Store:
- Browser-based encryption and decryption
- DOM scanning: Automatically detect encrypted messages on any webpage and decrypt them inline
- Offline-only operation: Designed for local encryption/decryption workflows
When you create a Majik Message account:
- A 12-word BIP39 mnemonic seed phrase is generated using cryptographically secure random number generation
- The seed phrase deterministically generates an Ed25519 keypair
- The Ed25519 keys are converted to X25519 (Curve25519) keys for encryption
- Your public key is hashed (SHA-256) to create your account fingerprint
- Your private key is encrypted with a passphrase (PBKDF2-SHA256, 250k iterations) and stored locally in IndexedDB
Critical security note: Your seed phrase and private key never leave your device. The passphrase you set protects your encrypted private key in local storage.
- An ephemeral X25519 keypair is generated for this message only
- A shared secret is computed using your ephemeral private key and your own public key (ECDH)
- The shared secret is hashed (SHA-256) to derive a 256-bit AES key
- Your message is encrypted with AES-256-GCM using the derived key and a random 12-byte IV
- The encrypted message, IV, and ephemeral public key are packaged and stored locally
- A random 256-bit AES key is generated for the message
- The message is encrypted once with AES-256-GCM
- An ephemeral X25519 keypair is generated
- The AES key is individually encrypted for each recipient using X25519 shared secrets
This ensures only authorized recipients can decrypt the message, and the ephemeral key prevents long-term compromise.
- Your device retrieves the encrypted payload from the server or extracts it from the DOM (browser extension)
- The message fingerprint identifies which of your accounts should decrypt it
- Your private key is unlocked by decrypting it with your passphrase
- A shared secret is computed using your private key and the sender's ephemeral public key
- The AES key is derived from the shared secret (SHA-256)
- The message is decrypted using AES-256-GCM with the derived key and the provided IV
If decryption fails (due to tampering or incorrect keys), an authentication error is thrown and the message is rejected.
- Windows: Microsoft Store or GitHub Releases
- macOS: GitHub Releases
- Linux: GitHub Releases
- Access at: https://message.majikah.solutions
- Chrome: Chrome Web Store
- iOS app
- Android app
Choose your platform:
- Desktop (Windows): Microsoft Store or GitHub Releases
- Web App: message.majikah.solutions
- Chrome Extension: Chrome Web Store
- Launch Majik Message
- A 12-word seed phrase will be automatically generated
- You may regenerate a new seed phrase at any time by clicking the dice icon
- Enter a display name (optional - your public key address will be used by default if left empty)
- Enter a strong password, then click Apply to create the account
- Upon creation, a JSON backup file will be downloaded automatically
- Important: Keep this file secure and private. Anyone with access to this backup can open your account and decrypt your messages.
- Your backup file downloads automatically upon account creation
- Store it securely offline
- This is the ONLY way to recover your account if needed
To use realtime chat features:
From the Accounts tab:
- Hover over an account and click 'Register Online' in the action menu
From the Majikah tab:
- Find 'Registered Identities' section and click the Plus (+) icon to register an existing local account
Note: Registration is only needed for realtime chat. Local encryption/decryption works without registration.
- Open the Side Panel
- Go to the Contacts tab
- Click the Add Friend icon
- Paste the other user's invite key
Or share your own invite key:
- Go to the Accounts tab
- Hover over your account
- Click the Share icon
- Copy and share your invite key
- For realtime chat: Use the 'Chats' tab (requires at least 2 participants including yourself)
- For local encryption: Use the 'Message' tab to encrypt messages offline and share through any channel
- Pro tip: You can encrypt solo messages (only yourself as recipient) for personal storage like journals or notes—available only in local mode
- Open Majik Message
- A seed phrase will be automatically generated (click the dice icon to regenerate)
- Enter a display name and password
- Click Apply to create the account
- Save the downloaded JSON backup file securely
In the Message Tab (Local Mode):
- Toggle mode to Encrypt
- Choose recipients (yourself only, or add contacts)
- Enter your text
- Choose output: Copy to clipboard, download as .txt, or download as .json
In Realtime Chat:
- Select a conversation or create a new one
- Type your message
- Click send - the message is automatically encrypted before transmission
In the Message Tab:
- Toggle mode to Decrypt
- Paste the encrypted text
- View the decrypted message
In Realtime Chat:
- Messages are automatically decrypted when received
- Switch accounts: Click on any account in the Accounts tab
- Register online: Hover over account → Register Online
- Share invite key: Hover over account → Share icon
- Export backup: Hover over account → Export
- Import account: Accounts tab → Import Account button
- Highlight the text you want to encrypt
- Right-click to open the context menu
- Select Majik Message → Encrypt
- Choose to encrypt for yourself or a specific contact
The selected text will be replaced with an encrypted string.
Decrypt Selected Text:
- Highlight the encrypted text
- Right-click → Majik Message → Decrypt
Decrypt Entire Page:
- Right-click anywhere on the page
- Select Majik Message → Decrypt Page
All valid encrypted strings on the page will be decrypted.
Enable automatic detection and decryption:
- Open the Side Panel
- Go to the Scanner tab
- Enable Scan
- Enter your account password when prompted
Once enabled, any page you load will be automatically scanned for encrypted content.
| Component | Implementation |
|---|---|
| Identity Generation | Ed25519 (EdDSA on Curve25519) |
| Key Exchange | X25519 (ECDH on Curve25519) |
| Symmetric Encryption | AES-256-GCM (authenticated encryption) |
| Hash Function | SHA-256 |
| Key Derivation (Passphrase) | PBKDF2-SHA256 (250,000 iterations) |
| Key Derivation (Mnemonic) | PBKDF2-SHA256 (200,000 iterations) |
| Mnemonic Standard | BIP39 (12-word seed phrases) |
| Random Number Generation | Browser crypto.getRandomValues (CSPRNG) |
| Fingerprint | SHA-256 hash of public key (Base64-encoded) |
All cryptographic operations use the @stablelib library suite for consistent, auditable implementations across platforms.
| Component | Technology |
|---|---|
| Realtime Messaging | WebSocket |
| Message Storage | Redis with TTL (24h default, max 30 days) |
| Data Persistence | No permanent server-side storage |
| Local Storage | IndexedDB (encrypted private keys, contacts) |
| Desktop App | Microsoft Store, GitHub Releases |
| Browser Extension | Google Chrome (Chrome Web Store) |
Important: Messages are automatically deleted from Redis after expiration. Majik Message servers never retain message content permanently and cannot decrypt messages even during temporary storage.
| Feature | Status |
|---|---|
| Text Messages | ✓ Supported |
| Group Chats | ✓ Up to 25 participants |
| Typing Indicators | ✓ Supported |
| Read Receipts | ✓ Supported |
| Message Expiration | ✓ Custom timers available |
| File/Image Sharing | ⧗ Coming soon |
- Message content: End-to-end encrypted with AES-256-GCM
- Identity privacy: No phone numbers or email addresses required
- Private keys: Never transmitted; encrypted at rest with PBKDF2-derived passphrase
- Forward secrecy: Ephemeral keys ensure past messages remain secure even if current keys are compromised
- Your 12-word seed phrase: This is the ONLY way to recover your account. If lost, your account and messages are permanently inaccessible. Store it securely offline.
- Your passphrase: Protects your locally stored private key. Choose a strong, unique passphrase.
- Device security: If your device is compromised while your account is unlocked, an attacker could access your private keys.
- Metadata: Timing, message frequency, and participant relationships may be visible to servers or network observers
- IP addresses: Your IP address is visible to Majik Message servers when you connect for realtime messaging
- Device compromise: If malware or an attacker gains access to your unlocked device, they may access decrypted messages or private keys
Majik Message is under active development. Planned features include:
- File and image sharing (Coming soon): Send encrypted files and images directly through Majik Message
- Voice messages (Coming soon): Encrypted audio recording and playback
- Mobile apps (Planned): Native iOS and Android applications
- Paid tiers (Coming soon): Subscription and pay-as-you-go options with increased account limits and extended message retention
If you want secure messaging without linking your phone number or email address, Majik Message provides true anonymity.
Communicate with sources securely. The offline encryption capability allows you to exchange encrypted messages through air-gapped systems.
Lawyers, healthcare providers, researchers, and other professionals can communicate confidentially without relying on third-party platforms.
Majik Message's cryptographic implementation is transparent and uses well-audited libraries (@stablelib).
If you believe your communications should be private by default and you want full control over your identity and data, Majik Message is designed for you.
Majik Message is currently free for all users. Realtime messaging, encryption, and all core features are available at no cost.
Coming soon: Paid subscription and pay-as-you-go models with expanded account limits and additional features will be available in the future.
Majik Message is a flagship product within the Majikah system—a suite of privacy-focused, user-controlled tools designed to give individuals full ownership of their digital communications and data.
All Majikah products share the same core principles: cryptographic identity, zero-knowledge architecture, and user sovereignty over personal information.
If you want to contribute or help extend support to more platforms, reach out via email. All contributions are welcome!
Apache-2.0 — free for personal and commercial use.
Made with 💙 by @thezelijah
- Developer: Josef Elijah Fabian
- GitHub: https://github.com/jedlsf
- Project Repository: https://github.com/jedlsf/majik-message
- Business Email: business@thezelijah.world
- Official Website: https://www.thezelijah.world