AESend

The backend is open source here. Read more about the architecture here.

Anyone can register a username and upload their RSA public key to create a mailbox. When someone sends you a message, their browser fetches your public key, generates a random AES-256 key, encrypts the message with AES-GCM, encrypts the AES key with your RSA public key, and sends the ciphertext and encrypted AES key to the server. The server never sees the plaintext or any unencrypted decryption keys. Only you can decrypt messages in your inbox using your private key, which never leaves your browser.

RSA-OAEP 4096-bit + AES-256-GCM hybrid encryption