Open-source cryptographic tools for distributed key recovery — built so every line can be audited in-tree.

Shamir's Secret Sharing for BIP-39 wallet seeds and short passwords. Split into N shares, recover with any M. Designed for inheritance and disaster recovery — paper cards, distributed across trusted parties, recoverable when any threshold cooperates.

Four front-ends: wizard TUI, scriptable CLI, localhost web server, and a standalone offline HTML bundle. Zero third-party crypto dependencies — every primitive in-tree.

• No crypto dependencies. SHA-256, constant-time GF(2^8), Shamir split/combine, BIP-39 — every primitive is in-tree and citable to a primary spec. Audit surface = the source repo.
• Primary-source test vectors only. RFC, FIPS, BIP, NIST CAVP — never second-hand re-derivations.
• Reproducible, signed releases. Two-pass byte-identical builds in CI; every artifact signed with minisign; SHA-256 hashes published three ways (inline in release notes, a signed SHA256SUMS file, and per-artifact .sha256).
• Constant-time where it matters. No data-dependent table lookups in the Shamir / GF(2^8) hot paths.
• Audit-friendly by construction. Each project ships an AUDITORS.md with threat model, provenance, and load-bearing invariants — independent reviewers shouldn't have to reverse-engineer what's load-bearing.

All SecretSplitKit projects are dual-licensed under MIT and Apache-2.0 at your option.