Bitwarden encrypts vault data client-side before sync. The free tier covers core features; paid adds advanced 2FA and reporting. Vaultwarden-compatible servers appeal to homelab users.

Ideal for: Most readers wanting balance of sync and transparency.

Pricing: Free tier; paid personal/family plans. Platforms: All major OS, browsers, CLI.

Why it's here: Default recommendation for open sync with mainstream UX.

KeePassXC stores encrypted .kdbx databases on disk you sync manually (Syncthing, USB, etc.). No vendor cloud means no vendor breach—but backup discipline is on you.

Ideal for: Privacy maximalists and air-gapped workflows.

Pricing: Free. Platforms: Windows, macOS, Linux; mobile via compatible ports.

Why it's here: Gold standard for local-only control.

Proton Pass ties into Proton accounts with hide-my-email aliases on higher tiers. Cryptography follows Proton's public materials; evaluate if you want another cloud vault from the same vendor as mail.

Ideal for: Existing Proton users consolidating vendors.

Pricing: Free tier; bundled with Proton Unlimited. Platforms: Browser extensions, mobile, desktop.

Why it's here: Credible if you already chose Proton for email.

Vaultwarden (formerly bitwarden_rs) lets you run a compatible server for Bitwarden clients. You gain data residency; you inherit patching, TLS, and backup responsibilities.

Ideal for: Homelab operators with backup discipline.

Pricing: Free software; you pay for hosting. Platforms: Server-side; clients via Bitwarden apps.

Why it's here: Represents self-hosted password sync seriously.

KeePassDX opens .kdbx files on Android with autofill integration. Pair with a sync you trust; avoid leaving databases on untrusted cloud folders without encryption.

Ideal for: Android users committed to KeePass file workflows.

Pricing: Free. Platforms: Android.

Why it's here: Essential mobile piece for KeePass households.

LessPass derives site passwords from a master password + site rules deterministically. Losing the master or changing rules bricks logins—understand the trade-off before adopting.

Ideal for: Minimalists who accept deterministic limitations.

Pricing: Free. Platforms: Browser, mobile, CLI.

Why it's here: Included to show non-vault approaches honestly.

Padloc offers polished clients and optional cloud sync with open code. Smaller community than Bitwarden—verify feature parity for your platforms before migrating.

Ideal for: Readers wanting alternative open UX.

Pricing: Free core; paid cloud hosting optional. Platforms: Desktop, mobile, web.

Why it's here: Valid mid-size open alternative.

Enpass stores data locally by default with optional cloud sync through user-chosen providers. Closed-source clients—evaluate trust accordingly.

Ideal for: Users wanting local storage without KeePass UI.

Pricing: Free tier limits; paid unlock. Platforms: Major desktop and mobile OS.

Why it's here: Represents commercial local-first niche.

1Password targets families and teams with slick apps and travel mode features. Closed source with strong security reputation and regular external reviews—trade transparency for UX.

Ideal for: Households prioritizing support and UX over OSS.

Pricing: Subscription. Platforms: All major platforms.

Why it's here: Acknowledged for readers who will not use open tools.

NordPass bundles with Nord's security marketing universe. Evaluate cryptography claims like any closed vendor; we list it for readers already subscribed to Nord services.

Ideal for: Existing Nord customers consolidating bills.

Pricing: Free tier; paid plans. Platforms: Desktop, mobile, extensions.

Why it's here: Disclosure-friendly mention with affiliate placeholder only.