OpenSource-Hub
D

Databunker

1.4k stars·Privacy Protection·SHA-256 checksum verified

A self-hosted, GDPR-compliant vault that tokenizes and encrypts personal data (PII/PHI/KYC) to prevent breaches and simplify compliance.

Smart Download

Visit Project Homepage

No installer available yet — head to the source repository

Replace sensitive data with tokens and lock real info in an encrypted vault to prevent breaches.

Core Features

  • Tokenization engine replaces real data with UUID tokens for safe ref in apps
  • AES-256 encrypted storage for all records at rest
  • Built-in protection against SQL injection and GraphQL data exposure
  • Hash-based indexing enables search without exposing raw values
  • Bulk retrieval disabled by default to prevent data exfiltration

What It Can't Do

  • Free version lacks credit-card tokenization (use Pro). 2. No built-in HA/cluster setup; requires manual configuration. 3. Tokens are one-way; cannot reverse to original data. 4. Production must replace DEMO token with strong API key.

Use Cases

  • Securely store user PII (name, email, phone) in SaaS platforms
  • Store patient health records in HIPAA-compliant healthcare systems
  • KYC/AML data vault for fintech and crypto startups
  • E-commerce merchant credential and credit card tokenization (Pro)

Databunker is a Go-based open-source tool that replaces traditional database encryption with a secure tokenization layer. It stores sensitive personal records in an encrypted vault and returns UUID tokens for use in your main application. This approach eliminates SQL injection, GraphQL data exposure, and bulk data leaks while providing built-in consent management, audit trails, and GDPR/CCPA/HIPAA readiness. With a simple REST API and SDKs, developers can integrate robust data protection in minutes. Databunker runs on your own infrastructure, supports MySQL/PostgreSQL, and offers high performance via Go. It solves the false sense of security from disk-level encryption by encrypting at the API level and using hash-based indexing for search.

Tags

tokenizationGDPRPIIsecuritydata-vaultself-hostedprivacycompliance

Getting Started

1

Download installer

Click the button above to download the installer for your system

Visit Project Homepage
2

Install the software

Double-click the downloaded installer and follow the prompts

3

Step 1: Docker pull and run: docker pull securitybunker/databunker && docker run -p 3000:3000 -d --rm --name dbunker securitybunker/databunker demo

4

Step 2: Create a user via API: curl -s http://localhost:3000/v1/user -X POST -H "X-Bunker-Token: DEMO" -H "Content-Type: application/json" -d '{"first":"John","last":"Doe","login":"john","email":"user@gmail.com"}'

5

Step 3: Retrieve user by login (returns token + encrypted data): curl -s -H "X-Bunker-Token: DEMO" -X GET http://localhost:3000/v1/user/login/john

Install Guide
  1. Step 1: Docker pull and run: docker pull securitybunker/databunker && docker run -p 3000:3000 -d --rm --name dbunker securitybunker/databunker demo
  2. Step 2: Create a user via API: curl -s http://localhost:3000/v1/user -X POST -H "X-Bunker-Token: DEMO" -H "Content-Type: application/json" -d '{"first":"John","last":"Doe","login":"john","email":"user@gmail.com"}'
  3. Step 3: Retrieve user by login (returns token + encrypted data): curl -s -H "X-Bunker-Token: DEMO" -X GET http://localhost:3000/v1/user/login/john
File Integrity

Checksum not available

This project has not published a SHA-256 checksum on its GitHub Release page

SHA256 Checksum

No checksum available

Download directly from GitHub Releases and verify file integrity yourself

All SHA-256 checksums on this platform are extracted from the project's official GitHub Release page, without any modification. You can independently verify them on the GitHub Releases page.

Open Source Transparency

View GitHub Source
Environment Guide

Uninstall Info

Stop and remove container: docker stop dbunker && docker rm dbunker. Delete persistent volumes if mounted.

No Extra Dependencies

Ready to use after download. No additional runtime required.

Project Info
LicenseMIT
Last Updated2026-06-25 12:55:35
GitHub RepositoryOfficial Website

Having issues? Check the FAQ below

4 FAQs

Similar Projects

U

uBlock Origin

uBlock Origin is a wide-spectrum content blocker for Chromium and Firefox that is CPU and memory efficient. Blocks ads, trackers, miners, and malware out of the box.

U

Umami

Umami is a simple, fast, privacy-focused web analytics tool that gives you full control over your data.

A

AdGuardHome

Network-wide DNS server that blocks ads and trackers across all home devices without needing client software.