UtilityKit

500+ fast, free tools. Most run in your browser only; Image & PDF tools upload files to the backend when you run them.

Paste and Share

Share text with a short link, expiry, optional max opens, password, and QR code

About Paste and Share

Paste and share on UtilityKit is a free, instant text-sharing tool that turns any snippet into a short link in seconds — no account, no install, no ads. Paste a config file, log output, code block, API response, meeting notes, or any block of text, choose how long the link should stay alive (from ten minutes to seven days), and optionally cap how many times it can be opened before it permanently self-destructs. A downloadable QR code lets you hand off the link in person without typing. For sensitive content, add a password: your browser encrypts the text with AES-GCM before it ever leaves your device, so the server stores only ciphertext and can never read your data — the password itself is never transmitted. Paste and share is designed for quick, practical handoffs and ephemeral collaboration. A 100 KB body limit keeps the service fast and fair for everyone.

Why use Paste and Share

Instant Handoff

Share configs, logs, code, or meeting notes without email attachments, chat upload limits, or permanent chat history.

Auto-Expiry

Automatic expiry eliminates long-lived accidental leaks — the paste disappears at your chosen time without any follow-up.

Client-Side Encryption

AES-GCM encryption means the server stores only ciphertext; even a server breach cannot expose your content.

Burn-After-Read

Max opens lets you create true burn-after-read links that permanently self-destruct after a set number of successful views.

QR Code Sharing

QR codes make mobile sharing instant at presentations and meetups — no typing, no copy-paste.

No Account Needed

No account, no email, no tracking — share privately without giving your data to a third-party paste service.

How to use Paste and Share

Type or paste your text into the input field — plain text, code, JSON, logs, or any snippet works.
Choose an expiry from the dropdown: 10 minutes, 1 hour, 1 day, or 7 days. The paste is permanently deleted once this time passes.
Optionally set Max opens to limit how many times the link can be loaded. Set it to 1 for true burn-after-read behaviour.
Optionally enter a password to enable client-side AES-GCM encryption. Only people with the link and the password can read it.
Click Create link, then copy the shareable URL or click Download QR to get a scannable PNG you can share anywhere.
Recipients open the link in any browser. Password-protected pastes prompt for the password and decrypt entirely in their browser — nothing is sent back to the server.

When to use Paste and Share

When you need to pass a stack trace, config snippet, API key, or error log without creating a permanent record in Slack, Teams, or email.
When you want a link that automatically stops working after an hour, a day, or a week with zero follow-up effort.
When sharing sensitive content like credentials or tokens — password mode keeps plaintext entirely off the server.
When you need a one-time link that self-destructs after the first person opens it (Max opens = 1).
When handing off a link in person at a meeting or event where a QR code is faster than typing.
When you need a no-signup alternative to Pastebin or a screenshot for quick, ephemeral text sharing.

Examples

Sharing a config snippet

Input: DATABASE_URL=postgres://user:pass@localhost/mydb REDIS_HOST=127.0.0.1 APP_SECRET=s3cr3t

Output: A shareable link valid for 1 hour with Max opens 1 — the paste self-destructs after the first recipient opens it.

Sharing a stack trace for debugging

Input: TypeError: Cannot read properties of undefined (reading ‘map’) at processData (app.js:42:18) at Handler.run (index.js:18:5)

Output: A 24-hour link sent to a teammate — no permanent Slack message, no screenshot, expires automatically.

Password-protected token handoff

Input: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJ1c2VyXzEyMyJ9.abc (JWT or API token)

Output: Encrypted paste — server stores only ciphertext. Share the URL via one channel and the password via another for two-factor handoff.

Tips

Set Max opens to 1 for true burn-after-read: the paste permanently self-destructs the moment the first recipient opens it.
Combine a short expiry (10 minutes) with Max opens 1 for maximum ephemerality — the paste disappears at whichever limit hits first.
Always use password mode for anything containing credentials, tokens, or personal data. The server stores only ciphertext and cannot help recover the content.
The password is never in the shareable URL — you can safely post the link publicly and send the password via a separate channel for two-factor handoff.
The QR image downloads as a standalone PNG — save it for presentations, meetup slides, or printed handouts where a typed URL is impractical.

Frequently Asked Questions

Can the server read my paste?▾

Plain pastes are stored as readable text on the server until they expire. If you set a password, the server stores only AES-GCM ciphertext and cannot decrypt it — your browser encrypts the content before it is ever transmitted, and decrypts it locally after download. The password itself is never sent to the server.

What encryption does password mode use?▾

Password-protected pastes use AES-GCM (256-bit), a standard authenticated encryption algorithm. Your browser derives a strong encryption key from your password using PBKDF2, encrypts the content locally, and transmits only the ciphertext. The password and key never leave your device.

What happens when a paste expires?▾

It can no longer be retrieved. Opening an expired or deleted link shows an error, and the record is permanently removed from storage. There is no recovery — expiry is by design.

What does Max opens do?▾

Each time someone successfully loads the share link, that counts as one open. After the last allowed open, the server permanently deletes the paste and the link stops working for everyone — similar to burn-after-read, but you control the view count from 1 to 100. Set it to 1 for single-recipient sharing.

Is there a size limit?▾

Yes. Each paste is limited to approximately 100 KB of text to keep the service fair and fast for everyone. For larger content, consider splitting into multiple pastes or using a dedicated file-sharing service.

Do I need an account?▾

No. Create and view pastes with no sign-up, no email address, and no personal information required.

Is Paste and share free?▾

Yes. Paste and share on UtilityKit is completely free with no ads, no account, and no hidden limits beyond the stated size and expiry constraints.

Can I use Paste and share on mobile?▾

Yes. The tool works in any modern mobile browser. You can also scan or save the QR code image to share links without typing a URL.

Explore the category

Glossary

TTL (Time To Live): The duration a paste remains accessible before the server automatically deletes it. Options range from 10 minutes to 7 days.
AES-GCM: Advanced Encryption Standard in Galois/Counter Mode — a modern authenticated encryption algorithm used to encrypt password-protected pastes entirely in your browser before transmission.
PBKDF2: Password-Based Key Derivation Function 2 — an algorithm that derives a strong cryptographic key from a user-supplied password, making brute-force attacks significantly harder.
Ciphertext: The encrypted, unreadable form of your paste that the server stores when a password is used. Without the correct password, ciphertext cannot be decrypted.
Burn-after-read: A sharing pattern where content self-destructs after a fixed number of views. Setting Max opens to 1 enables burn-after-read on any paste.
Max opens: An optional view limit set at paste creation. Once reached, the server permanently deletes the paste and the link stops working for everyone.