Pricing Get Started
Product Release

Introducing Secret Pusher v3.0: Business Plan & MFA Share

SP
Secret Pusher Team
5 min read
$ TENANT OWNER TEAM A TEAM B TEAM C 15 MEMBERS DISTRIBUTED

We are excited to announce the official release of Secret Pusher v3.0. Our biggest update yet. This release introduces two game-changing features: the Business Plan for organizations that need centralized team management, and MFA Share Links that finally solve the challenge of securely sharing 2FA access across your team.

Business Plan: Security That Scales With Your Team

Business Plan Exclusive Now Available

As your organization grows, so do the security challenges. Individual accounts with scattered secrets create blind spots. When someone leaves, you're left wondering what credentials they still have access to. The Business Plan solves this by bringing your entire team under one secure roof.

With support for up to 15 users across 3 teams, unlimited secrets, 2GB of storage, and easy team management.

Centralized Team Management

Invite up to 15 users via email. Organize them into 3 teams (or only 1 if you want). Remove team members instantly when someone leaves the organization.

Unified Quota Pool

Forget individual limits. Your entire team shares from a unified pool: unlimited secrets and 2GB of storage, all managed by the tenant owner.

Cost-Effective Scaling

Individual Professional plans cost $9/user. With Business at $49 for up to 15 users, you save over 70% compared to individual subscriptions.

Flexible Team Composition

Invite anyone by email — no domain restrictions. Perfect for projects with contractors, freelancers, or temporary service providers who need secure access.

Starting at

$49 /month

or $499/year (save 2 months)

MFA Share Links

Available on Professional & Business Plans

Sharing passwords is easy with Secret Pusher. But what about 2FA? Often, teams need to share access to a single account (like a corporate Twitter or root AWS login) that requires a Time-based One-Time Password (TOTP).

The Problem

Usually, people take a screenshot of the QR code and email it (insecure) or text the 6-digit code every time someone needs to login (inefficient).

The Solution: Client-Side TOTP Generation

MFA Share Links solve this by sharing the Secret Key securely. Here is exactly how it works:

  1. You Input the Secret: You copy the TOTP Secret Key (usually a Base32 string provided by the service, e.g., JBSWY3DPEHPK3PXP...) into Secret Pusher.
  2. Client-Side Encryption: Your browser encrypts this secret key locally using AES-256 before it ever touches our network. We never see the raw secret.
  3. Recipient Access: When you share the link, the recipient's browser decrypts the secret.
  4. Live Code Generation: The recipient's browser uses the decrypted secret to calculate the 6-digit TOTP code in real-time, just like an authenticator app. They see a live, rotating code right in their browser window.
SENDER Encrypts Locally RECEIVER Decrypts & Generates SECRET PUSHER Zero Knowledge

Advanced Viewer Security

We take extra precautions on the public viewing side to ensure the safety of your TOTP codes:

Memory Scrubbing

The secret seed is never stored in RAM. It is decrypted, used to generate the code, and immediately wiped from memory.

Shoulder Surfer Proof

Codes are hidden by default. You must click to reveal them, preventing prying eyes from seeing your codes.

Auto-Timeout

For password-protected links, the view automatically locks after 90 seconds of inactivity, requiring re-authentication.

Real-World Scenarios

The Marketing Agency

You have 5 people who need to post to the company Instagram, which is protected by 2FA. Instead of buying 5 phones or sharing one device, the admin creates an MFA Share Link in Secret Pusher. Now, any authorized team member can open the secure link, see the current 6-digit code, and log in instantly.

The IT Support Team

MSPs and IT Support teams often manage hundreds of client portals (AWS, Registrars, Firewalls). When a technician on the night shift needs access to a client's Cloudflare account to mitigate an attack, they can't wake up the account manager for a code. With MFA Share, the code is securely accessible to the entire support staff, ensuring 24/7 operational readiness.

The Bottleneck Founder

Founders often set up the initial Stripe or Hosting accounts. As the team grows, they become a bottleneck, constantly fielding "What's the code?" messages from the finance or dev team. By creating a Password-Protected MFA link, they can delegate access to specific departments without handing over the root phone or disabling 2FA.

Ready to Secure Your Organization?

Stop sharing credentials through insecure channels. Upgrade to the Business Plan and give your team the security infrastructure they deserve.

Upgrade to Business Plan Compare All Plans

Secret Pusher v3 RELEASED!

More Faster, Strong and Secure! ⚡
And for the pros? The Business Plan has arrived. 🤵‍♂️

Learn More