Every clicked bookmarklet concatenates a character to a passphrase used for AES decryption. The encrypted text and current passphrase are stored as intermediate state in the URL hash. When it decrypts, it redirects. If it doesn't decrypt, it goes to a fallback page as if it was a regular bookmark.
It was mostly a fun proof-of-concept, but I am hopeful that the technique has actually been useful to someone.
https://jstrieb.github.io/projects/hidden-bookmarks/
Every clicked bookmarklet concatenates a character to a passphrase used for AES decryption. The encrypted text and current passphrase are stored as intermediate state in the URL hash. When it decrypts, it redirects. If it doesn't decrypt, it goes to a fallback page as if it was a regular bookmark.
It was mostly a fun proof-of-concept, but I am hopeful that the technique has actually been useful to someone.