diff --git a/client/src/builtin/E2EE.js b/client/src/builtin/E2EE.js
index 4f6c73fb..f0b8095c 100644
--- a/client/src/builtin/E2EE.js
+++ b/client/src/builtin/E2EE.js
@@ -8,33 +8,34 @@
  * LICENSE file in the root directory of this source tree.
 */
 
-import { Settings } from 'modules';
+import { Settings, Cache } from 'modules';
 import BuiltinModule from './BuiltinModule';
-import { WebpackModules, ReactComponents, MonkeyPatch, Patcher, DiscordApi } from 'modules';
+import { WebpackModules, ReactComponents, MonkeyPatch, Patcher, DiscordApi, Security } from 'modules';
 import { VueInjector, Reflection } from 'ui';
 import { ClientLogger as Logger } from 'common';
+import { request } from 'vendor';
+import { Utils } from 'common';
 import E2EEComponent from './E2EEComponent.vue';
 import E2EEMessageButton from './E2EEMessageButton.vue';
-import aes256 from 'aes256';
-import crypto from 'crypto';
+import nodecrypto from 'node-crypto';
 
 const userMentionPattern = new RegExp(`<@!?([0-9]{10,})>`, "g");
 const roleMentionPattern = new RegExp(`<@&([0-9]{10,})>`, "g");
 const everyoneMentionPattern = new RegExp(`(?:\\s+|^)@everyone(?:\\s+|$)`);
 
-let seed = Math.random().toString(36).replace(/[^a-z]+/g, '');
+const TEMP_KEY = 'temporarymasterkey';
+let seed;
 
 export default new class E2EE extends BuiltinModule {
 
     constructor() {
         super();
-        this.master = this.encrypt(seed, 'temporarymasterkey');
         this.encryptNewMessages = true;
     }
 
     setMaster(key) {
-        seed = Math.random().toString(36).replace(/[^a-z]+/g, '');
-        const newMaster = this.encrypt(seed, key);
+        seed = Security.randomBytes();
+        const newMaster = Security.encrypt(seed, key);
         // TODO re-encrypt everything with new master
         return (this.master = newMaster);
     }
@@ -49,11 +50,28 @@ export default new class E2EE extends BuiltinModule {
     }
 
     encrypt(key, content, prefix = '') {
-        return prefix + aes256.encrypt(key, content);
+        if (!key) {
+            // Encrypt something with master
+            return Security.encrypt(Security.decrypt(seed, this.master), content);
+        }
+
+        if (!content) {
+            // Get key for current channel and encrypt
+            const haveKey = this.getKey(DiscordApi.currentChannel.id);
+            if (!haveKey) return 'nokey';
+            return Security.encrypt(Security.decrypt(seed, [this.master, haveKey]), key);
+        }
+        return prefix + Security.encrypt(key, content);
     }
 
     decrypt(key, content, prefix = '') {
-        return aes256.decrypt(key, content.replace(prefix, ''));
+        return Security.decrypt(key, content, prefix);
+    }
+
+    async createHmac(data) {
+        const haveKey = this.getKey(DiscordApi.currentChannel.id);
+        if (!haveKey) return null;
+        return Security.createHmac(Security.decrypt(seed, [this.master, haveKey]), data);
     }
 
     getKey(channelId) {
@@ -73,6 +91,9 @@ export default new class E2EE extends BuiltinModule {
     }
 
     async enabled(e) {
+        seed = Security.randomBytes();
+        // TODO Input modal for key
+        this.master = Security.encrypt(seed, TEMP_KEY);
         this.patchDispatcher();
         this.patchMessageContent();
         const selector = '.' + WebpackModules.getClassName('channelTextArea', 'emojiButton');
@@ -119,6 +140,8 @@ export default new class E2EE extends BuiltinModule {
         const MessageContent = await ReactComponents.getComponent('MessageContent', { selector });
         MonkeyPatch('BD:E2EE', MessageContent.component.prototype).before('render', this.beforeRenderMessageContent.bind(this));
         MonkeyPatch('BD:E2EE', MessageContent.component.prototype).after('render', this.renderMessageContent.bind(this));
+        const ImageWrapper = await ReactComponents.getComponent('ImageWrapper', { selector: '.' + WebpackModules.getClassName('imageWrapper') });
+        MonkeyPatch('BD:E2EE', ImageWrapper.component.prototype).before('render', this.beforeRenderImageWrapper.bind(this));
     }
 
     beforeRenderMessageContent(component) {
@@ -137,7 +160,7 @@ export default new class E2EE extends BuiltinModule {
         if (!component.props.message.content.startsWith('$:')) return; // Not an encrypted string
         let decrypt;
         try {
-            decrypt = this.decrypt(this.decrypt(this.decrypt(seed, this.master), key), component.props.message.content);
+            decrypt = Security.decrypt(seed, [this.master, key, component.props.message.content]);
         } catch (err) { return } // Ignore errors such as non empty
 
         component.props.message.bd_encrypted = true; // signal as encrypted
@@ -166,10 +189,77 @@ export default new class E2EE extends BuiltinModule {
 
     renderMessageContent(component, args, retVal) {
         if (!component.props.message.bd_encrypted) return;
+        try {
+            retVal.props.children[0].props.children.props.children.props.children.unshift(VueInjector.createReactElement(E2EEMessageButton));
+        } catch (err) {
+            Logger.err('E2EE', err.message);
+        }
+    }
 
-        retVal.props.children[0].props.children.props.children.props.children.unshift(VueInjector.createReactElement(E2EEMessageButton, {
-            message: component.props.message
-        }));
+    beforeRenderImageWrapper(component, args, retVal) {
+        if (!component.props || !component.props.src) return;
+        if (component.props.decrypting) return;
+        component.props.decrypting = true;
+
+        const src = component.props.original || component.props.src.split('?')[0];
+        if (!src.includes('bde2ee')) return;
+        component.props.className = 'bd-encryptedImage';
+
+        const haveKey = this.getKey(DiscordApi.currentChannel.id);
+        if (!haveKey) return;
+
+        const cached = Cache.find('e2ee:images', item => item.src === src);
+        if (cached) {
+            if (cached.invalidKey) { // TODO If key has changed we should recheck all with invalid key
+                component.props.className = 'bd-encryptedImage bd-encryptedImageBadKey';
+                component.props.readyState = 'READY';
+                return;
+            }
+            Logger.info('E2EE', 'Returning encrypted image from cache');
+            try {
+                const decrypt = Security.decrypt(seed, [this.master, haveKey, cached.image]);
+                component.props.className = 'bd-decryptedImage';
+                component.props.src = component.props.original = 'data:;base64,' + decrypt;
+            } catch (err) { return } finally { component.props.readyState = 'READY' }
+            return;
+        }
+
+        component.props.readyState = 'LOADING';
+        Logger.info('E2EE', 'Decrypting image: ' + src);
+        request.get(src, { encoding: 'binary' }).then(res => {
+            (async () => {
+                const arr = new Uint8Array(new ArrayBuffer(res.length));
+                for (let i = 0; i < res.length; i++) arr[i] = res.charCodeAt(i);
+
+                const aobindex = Utils.aobscan(arr, [73, 69, 78, 68]) + 8;
+                const sliced = arr.slice(aobindex);
+                const image = new TextDecoder().decode(sliced);
+
+                const hmac = image.slice(-64);
+                const data = image.slice(0, -64);
+                const validateHmac = await this.createHmac(data);
+                if (hmac !== validateHmac) {
+                    Cache.push('e2ee:images', { src, invalidKey: true });
+                    if (component && component.props) {
+                        component.props.decrypting = false;
+                        component.forceUpdate();
+                    }
+                    return;
+                }
+
+                Cache.push('e2ee:images', { src, image: data });
+
+                if (!component || !component.props) {
+                    Logger.warn('E2EE', 'Component seems to be gone');
+                    return;
+                }
+
+                component.props.decrypting = false;
+                component.forceUpdate();
+            })();
+        }).catch(err => {
+            console.log('request error', err);
+        });
     }
 
     patchChannelTextArea(cta) {
@@ -215,7 +305,7 @@ export default new class E2EE extends BuiltinModule {
     handleChannelTextAreaSubmit(component, args, retVal) {
         const key = this.getKey(DiscordApi.currentChannel.id);
         if (!this.encryptNewMessages || !key) return;
-        component.props.value = this.encrypt(this.decrypt(this.decrypt(seed, this.master), key), component.props.value, '$:');
+        component.props.value = Security.encrypt(Security.decrypt(seed, [this.master, key]), component.props.value, '$:');
     }
 
     async disabled(e) {
diff --git a/client/src/builtin/E2EEComponent.vue b/client/src/builtin/E2EEComponent.vue
index 7e8042c4..d767385d 100644
--- a/client/src/builtin/E2EEComponent.vue
+++ b/client/src/builtin/E2EEComponent.vue
@@ -10,19 +10,26 @@
 
 <template>
     <div class="bd-e2eeTaContainer" @contextmenu.prevent="channelType === 'DM' && $refs.ee2eLockContextMenu.open()">
-        <div v-if="error" class="bd-e2eeTaBtn bd-e2eeLock bd-error">
-            <MiLock v-tooltip="error" />
-        </div>
-        <div v-else-if="state === 'loading'" class="bd-e2eeTaBtn bd-e2eeLock bd-loading bd-warn">
-            <MiLock v-tooltip="'Loading'" />
-        </div>
-        <div v-else-if="!E2EE.encryptNewMessages" class="bd-e2eeTaBtn bd-e2eeLock bd-warn" @click="E2EE.encryptNewMessages = true">
-            <MiLock v-tooltip="'New messages will not be encrypted.'" />
-        </div>
-        <div v-else class="bd-e2eeTaBtn bd-e2eeLock bd-ok" @click="E2EE.encryptNewMessages = false">
-            <MiLock v-tooltip="'Ready!'" />
-        </div>
+        <v-popover popoverClass="bd-popover bd-e2eePopover" placement="top">
+            <div v-if="error" class="bd-e2eeTaBtn bd-e2eeLock bd-error">
+                <MiLock v-tooltip="error" />
+            </div>
+            <div v-else-if="state === 'loading'" class="bd-e2eeTaBtn bd-e2eeLock bd-loading bd-warn">
+                <MiLock v-tooltip="'Loading'" />
+            </div>
 
+            <div v-else-if="!E2EE.encryptNewMessages" class="bd-e2eeTaBtn bd-e2eeLock bd-warn">
+                <MiLock v-tooltip="'New messages will not be encrypted.'" />
+            </div>
+
+            <div v-else class="bd-e2eeTaBtn bd-e2eeLock bd-ok">
+                <MiLock v-tooltip="'Ready!'" />
+            </div>
+            <template slot="popover">
+                <div @click="toggleEncrypt" :class="{'bd-warn': !E2EE.encryptNewMessages, 'bd-ok': E2EE.encryptNewMessages}"><MiLock size="16" v-tooltip="'Toggle Encryption'" /></div>
+                <div v-close-popover @click="showUploadDialog" v-if="!error"><MiImagePlus size="16" v-tooltip="'Upload Encrypted Image'" /></div>
+            </template>
+        </v-popover>
         <div class="bd-taDivider"></div>
         <context-menu id="bd-e2eeLockContextMenu" class="bd-e2eeLockContextMenu" ref="ee2eLockContextMenu" v-if="channelType === 'DM'">
             <li class="bd-e2eeLockContextMenuOption" @click="generatePublicKey()">Generate Public Key</li>
@@ -31,42 +38,20 @@
     </div>
 </template>
 
+
+
 <script>
+    import fs from 'fs';
+    import { Utils } from 'common';
+    import { remote } from 'electron';
     import { E2EE } from 'builtin';
-    import { DiscordApi } from 'modules';
-    import { MiLock } from '../ui/components/common/MaterialIcon';
+    import { DiscordApi, Security } from 'modules';
+    import { MiLock, MiPlus, MiImagePlus } from '../ui/components/common/MaterialIcon';
     import contextMenu from 'vue-context-menu';
-    import { clipboard } from 'electron';
     import { Toasts } from 'ui';
 
-    function generatePublicKey() {
-        const dmChannelID = location.pathname.split("/")[3];
-        const publicKeyMessage = `My public key is: \`${E2EE.createKeyExchange(dmChannelID)}\`. Please give me your public key if you haven't done so and add my public key by pasting it in the chat textbox, right clicking the lock icon, and selecting \`Receive Public Key\`.`;
-        const chatInput = document.getElementsByClassName('da-textArea')[0];
-        chatInput.value = publicKeyMessage;
-        const evt = { currentTarget: chatInput };
-        chatInput[Object.keys(chatInput).find(k => k.startsWith('__reactEventHandlers'))].onChange.call(chatInput, evt);
-    }
-
-    function computeSharedSecret() {
-        try {
-          const dmChannelID = location.pathname.split("/")[3];
-          const chatInput = document.getElementsByClassName('da-textArea')[0];
-          const otherPublicKey = chatInput.value;
-          const secret = E2EE.computeSecret(dmChannelID, otherPublicKey);
-          E2EE.setKey(dmChannelID, secret);
-          chatInput.value = "";
-          const evt = { currentTarget: chatInput };
-          chatInput[Object.keys(chatInput).find(k => k.startsWith('__reactEventHandlers'))].onChange.call(chatInput, evt);
-          Toasts.success("Encryption key has been set for this DM channel.");
-        } catch (e) {
-          Toasts.error("Invalid public key. Please set up a new key exchange.");
-          console.error(e);
-        }
-    }
-
     export default {
-        components: { MiLock, contextMenu },
+        components: { MiLock, MiPlus, MiImagePlus },
         data() {
             return {
                 E2EE,
@@ -75,7 +60,60 @@
                 channelType: DiscordApi.currentChannel.type
             };
         },
-        methods: { generatePublicKey, computeSharedSecret },
+        methods: {
+            async showUploadDialog() {
+                const dialogResult = remote.dialog.showOpenDialog({ properties: ['openFile'] });
+                if (!dialogResult) return;
+
+                const readFile = fs.readFileSync(dialogResult[0]);
+                const FileActions = _bd.WebpackModules.getModuleByProps(["makeFile"]);
+                const Uploader = _bd.WebpackModules.getModuleByProps(["instantBatchUpload"]);
+
+                const img = await Utils.getImageFromBuffer(readFile);
+
+                const canvas = document.createElement('canvas');
+                canvas.height = img.height;
+                canvas.width = img.width;
+                const arrBuffer = await Utils.canvasToArrayBuffer(canvas);
+                const encrypted = E2EE.encrypt(img.src.replace('data:;base64,', ''));
+                const hmac = await E2EE.createHmac(encrypted);
+                const encodedBytes = new TextEncoder().encode(encrypted + hmac);
+                Uploader.upload(DiscordApi.currentChannel.id, FileActions.makeFile(new Uint8Array([...new Uint8Array(arrBuffer), ...encodedBytes]), 'bde2ee.png'));
+            },
+            toggleEncrypt() {
+                const newState = !E2EE.encryptNewMessages;
+                E2EE.encryptNewMessages = newState;
+                if (!newState) {
+                    Toasts.warning('New messages will not be encrypted');
+                    return;
+                }
+                Toasts.success('New messages will be encrypted');
+            },
+            generatePublicKey() {
+                const dmChannelID = location.pathname.split("/")[3];
+                const publicKeyMessage = `My public key is: \`${E2EE.createKeyExchange(dmChannelID)}\`. Please give me your public key if you haven't done so and add my public key by pasting it in the chat textbox, right clicking the lock icon, and selecting \`Receive Public Key\`.`;
+                const chatInput = document.getElementsByClassName('da-textArea')[0];
+                chatInput.value = publicKeyMessage;
+                const evt = { currentTarget: chatInput };
+                chatInput[Object.keys(chatInput).find(k => k.startsWith('__reactEventHandlers'))].onChange.call(chatInput, evt);
+            },
+            computeSharedSecret() {
+                try {
+                  const dmChannelID = location.pathname.split("/")[3];
+                  const chatInput = document.getElementsByClassName('da-textArea')[0];
+                  const otherPublicKey = chatInput.value;
+                  const secret = E2EE.computeSecret(dmChannelID, otherPublicKey);
+                  E2EE.setKey(dmChannelID, secret);
+                  chatInput.value = "";
+                  const evt = { currentTarget: chatInput };
+                  chatInput[Object.keys(chatInput).find(k => k.startsWith('__reactEventHandlers'))].onChange.call(chatInput, evt);
+                  Toasts.success("Encryption key has been set for this DM channel.");
+                } catch (e) {
+                  Toasts.error("Invalid public key. Please set up a new key exchange.");
+                  console.error(e);
+                }
+            }
+        },
         mounted() {
             if (!E2EE.master) {
                 this.error = 'No master key set!';
diff --git a/client/src/builtin/VueDevToolsModule.js b/client/src/builtin/VueDevToolsModule.js
index 1d835d71..794042b5 100644
--- a/client/src/builtin/VueDevToolsModule.js
+++ b/client/src/builtin/VueDevToolsModule.js
@@ -37,7 +37,7 @@ export default new class VueDevtoolsModule extends BuiltinModule {
     }
 
     devToolsOpened() {
-         electron.remote.BrowserWindow.removeDevToolsExtension('Vue.js devtools');
+        electron.remote.BrowserWindow.removeDevToolsExtension('Vue.js devtools');
         electron.webFrame.registerURLSchemeAsPrivileged('chrome-extension');
         try {
             const res = electron.remote.BrowserWindow.addDevToolsExtension(path.join(Globals.getPath('ext'), 'extensions', 'vdt'));
diff --git a/client/src/data/user.settings.default.json b/client/src/data/user.settings.default.json
index 2ca31ad6..29db2e30 100644
--- a/client/src/data/user.settings.default.json
+++ b/client/src/data/user.settings.default.json
@@ -93,6 +93,13 @@
                         "hint": "When this is enabled you can use Ctrl/Cmd + B to open the BetterDiscord settings menu.",
                         "value": false,
                         "disabled": false
+                    },
+                    {
+                        "id": "enable-toasts",
+                        "type": "bool",
+                        "text": "Enable Toasts",
+                        "hint": "Allows plugins to show toasts.",
+                        "value": true
                     }
                 ]
             }
@@ -144,7 +151,7 @@
     {
         "id": "security",
         "text": "Security and Privacy",
-        "headertext": "Security Settings",
+        "headertext": "Security and Privacy Settings",
         "settings": [
             {
                 "id": "default",
diff --git a/client/src/index.js b/client/src/index.js
index 3e9dac4a..04248269 100644
--- a/client/src/index.js
+++ b/client/src/index.js
@@ -10,7 +10,7 @@
 
 import { DOM, BdUI, BdMenu, Modals, Reflection, Toasts } from 'ui';
 import BdCss from './styles/index.scss';
-import { Events, CssEditor, Globals, Settings, Database, Updater, ModuleManager, PluginManager, ThemeManager, ExtModuleManager, Vendor, WebpackModules, Patcher, MonkeyPatch, ReactComponents, ReactHelpers, ReactAutoPatcher, DiscordApi, BdWebApi, Connectivity } from 'modules';
+import { Events, CssEditor, Globals, Settings, Database, Updater, ModuleManager, PluginManager, ThemeManager, ExtModuleManager, Vendor, WebpackModules, Patcher, MonkeyPatch, ReactComponents, ReactHelpers, ReactAutoPatcher, DiscordApi, BdWebApi, Connectivity, Cache } from 'modules';
 import { ClientLogger as Logger, ClientIPC, Utils } from 'common';
 import { BuiltinManager, EmoteModule, ReactDevtoolsModule, VueDevtoolsModule, TrackingProtection, E2EE } from 'builtin';
 import electron from 'electron';
@@ -37,6 +37,7 @@ class BetterDiscord {
             EmoteModule,
             BdWebApi,
             Connectivity,
+            Cache,
             Logger, ClientIPC, Utils,
 
             plugins: PluginManager.localContent,
diff --git a/client/src/modules/cache.js b/client/src/modules/cache.js
new file mode 100644
index 00000000..76822f15
--- /dev/null
+++ b/client/src/modules/cache.js
@@ -0,0 +1,38 @@
+/**
+ * BetterDiscord Cache Module
+ * Copyright (c) 2015-present Jiiks/JsSucks - https://github.com/Jiiks / https://github.com/JsSucks
+ * All rights reserved.
+ * https://betterdiscord.net
+ *
+ * This source code is licensed under the MIT license found in the
+ * LICENSE file in the root directory of this source tree.
+*/
+const CACHE = [];
+
+export default class Cache {
+
+    static get cache() {
+        return CACHE;
+    }
+
+    /**
+     * Push something to cache
+     * @param {String} where Cache identifier
+     * @param {any} data Data to push
+     */
+    static push(where, data) {
+        if (!this.cache[where]) this.cache[where] = [];
+        this.cache[where].push(data);
+    }
+
+    /**
+     * Find something in cache
+     * @param {String} where Cache identifier
+     * @param {Function} what Find callback
+     */
+    static find(where, what) {
+        if (!this.cache[where]) this.cache[where] = [];
+        return this.cache[where].find(what);
+    }
+
+}
diff --git a/client/src/modules/modules.js b/client/src/modules/modules.js
index f8a78a41..af7e1c23 100644
--- a/client/src/modules/modules.js
+++ b/client/src/modules/modules.js
@@ -25,3 +25,4 @@ export { default as DiscordApi, Modules as DiscordApiModules } from './discordap
 export { default as BdWebApi } from './bdwebapi';
 export { default as Connectivity } from './connectivity';
 export { default as Security } from './security';
+export { default as Cache } from './cache';
diff --git a/client/src/modules/patcher.js b/client/src/modules/patcher.js
index bf220f2a..2105da9a 100644
--- a/client/src/modules/patcher.js
+++ b/client/src/modules/patcher.js
@@ -18,9 +18,9 @@ import { ClientLogger as Logger } from 'common';
 
 /**
  * A callback that modifies method logic. This callback is called on each call of the original method and is provided all data about original call. Any of the data can be modified if necessary, but do so wisely.
- * 
+ *
  * The third argument for the callback will be `undefined` for `before` patches. `originalFunction` for `instead` patches and `returnValue` for `after` patches.
- * 
+ *
  * @callback Patcher~patchCallback
  * @param {object} thisObject - `this` in the context of the original function.
  * @param {arguments} arguments - The original arguments of the original function.
@@ -42,8 +42,8 @@ export class Patcher {
         const patches = [];
         for (const patch of this.patches) {
             for (const childPatch of patch.children) {
-				if (childPatch.caller === id) patches.push(childPatch);
-			}
+                if (childPatch.caller === id) patches.push(childPatch);
+            }
         }
         return patches;
     }
@@ -135,7 +135,7 @@ export class Patcher {
     /**
      * This method patches onto another function, allowing your code to run beforehand.
      * Using this, you are also able to modify the incoming arguments before the original method is run.
-     * 
+     *
      * @param {string} caller - Name of the caller of the patch function. Using this you can undo all patches with the same name using {@link Patcher#unpatchAll}.
      * @param {object} unresolvedModule - Object with the function to be patched. Can also patch an object's prototype.
      * @param {string} functionName - Name of the method to be patched
@@ -148,7 +148,7 @@ export class Patcher {
     /**
      * This method patches onto another function, allowing your code to run afterwards.
      * Using this, you are also able to modify the return value, using the return of your code instead.
-     * 
+     *
      * @param {string} caller - Name of the caller of the patch function. Using this you can undo all patches with the same name using {@link Patcher#unpatchAll}.
      * @param {object} unresolvedModule - Object with the function to be patched. Can also patch an object's prototype.
      * @param {string} functionName - Name of the method to be patched
@@ -161,7 +161,7 @@ export class Patcher {
     /**
      * This method patches onto another function, allowing your code to run instead, preventing the running of the original code.
      * Using this, you are also able to modify the return value, using the return of your code instead.
-     * 
+     *
      * @param {string} caller - Name of the caller of the patch function. Using this you can undo all patches with the same name using {@link Patcher#unpatchAll}.
      * @param {object} unresolvedModule - Object with the function to be patched. Can also patch an object's prototype.
      * @param {string} functionName - Name of the method to be patched
@@ -175,7 +175,7 @@ export class Patcher {
      * This method patches onto another function, allowing your code to run before, instead or after the original function.
      * Using this you are able to modify the incoming arguments before the original function is run as well as the return
      * value before the original function actually returns.
-     * 
+     *
      * @param {string} caller - Name of the caller of the patch function. Using this you can undo all patches with the same name using {@link Patcher#unpatchAll}.
      * @param {object} unresolvedModule - Object with the function to be patched. Can also patch an object's prototype.
      * @param {string} functionName - Name of the method to be patched
@@ -201,10 +201,10 @@ export class Patcher {
             unpatch: () => {
                 patch.children.splice(patch.children.findIndex(cpatch => cpatch.id === child.id && cpatch.type === type), 1);
                 if (patch.children.length <= 0) {
-					const patchNum = this.patches.findIndex(p => p.module == module && p.functionName == functionName);
-					this.patches[patchNum].revert();
-					this.patches.splice(patchNum, 1);
-				}
+                    const patchNum = this.patches.findIndex(p => p.module == module && p.functionName == functionName);
+                    this.patches[patchNum].revert();
+                    this.patches.splice(patchNum, 1);
+                }
             }
         };
         patch.children.push(child);
diff --git a/client/src/modules/pluginapi.js b/client/src/modules/pluginapi.js
index 5f7cbfbb..e1b9bfc7 100644
--- a/client/src/modules/pluginapi.js
+++ b/client/src/modules/pluginapi.js
@@ -330,7 +330,8 @@ export default class PluginApi {
             success: this.showSuccessToast.bind(this),
             error: this.showErrorToast.bind(this),
             info: this.showInfoToast.bind(this),
-            warning: this.showWarningToast.bind(this)
+            warning: this.showWarningToast.bind(this),
+            get enabled() { return Toasts.enabled }
         };
     }
 
diff --git a/client/src/modules/security.js b/client/src/modules/security.js
index f0bf737c..ecddecc0 100644
--- a/client/src/modules/security.js
+++ b/client/src/modules/security.js
@@ -8,21 +8,25 @@
  * LICENSE file in the root directory of this source tree.
 */
 
+import nodecrypto from 'node-crypto';
 import aes256 from 'aes256';
 
 export default class Security {
 
     static encrypt(key, content, prefix = '') {
-        if (key instanceof Array) return this.deepEncrypt(key, content, prefix);
+        if (key instanceof Array || content instanceof Array) return this.deepEncrypt(key, content, prefix);
         return `${prefix}${aes256.encrypt(key, content)}`;
     }
 
     static decrypt(key, content, prefix = '') {
-        if (key instanceof Array) return this.deepDecrypt(key, content, prefix);
+        if (key instanceof Array || content instanceof Array) {
+            return this.deepDecrypt(key, content, prefix);
+        }
         return aes256.decrypt(key, content.replace(prefix, ''));
     }
 
     static deepEncrypt(keys, content, prefix = '') {
+        if (content && content instanceof Array) return this.deepEncryptContent(keys, content, prefix);
         let encrypt = null;
         for (const key of keys) {
             if (encrypt === null) encrypt = this.encrypt(key, content, prefix);
@@ -31,7 +35,17 @@ export default class Security {
         return encrypt;
     }
 
+    static deepEncryptContent(key, contents, prefix = '') {
+        let encrypt = null;
+        for (const content of contents) {
+            if (encrypt === null) encrypt = this.encrypt(key, content, prefix);
+            else encrypt = this.encrypt(encrypt, content, prefix);
+        }
+        return encrypt;
+    }
+
     static deepDecrypt(keys, content, prefix = '') {
+        if (content && content instanceof Array) return this.deepDecryptContent(keys, content, prefix);
         let decrypt = null;
         for (const key of keys.reverse()) {
             if (decrypt === null) decrypt = this.decrypt(key, content, prefix);
@@ -40,4 +54,30 @@ export default class Security {
         return decrypt;
     }
 
+    static deepDecryptContent(key, contents, prefix = '') {
+        let decrypt = null;
+        for (const content of contents) {
+            if (decrypt === null) decrypt = this.decrypt(key, content, prefix);
+            else decrypt = this.decrypt(decrypt, content, prefix);
+        }
+        return decrypt;
+    }
+
+    static randomBytes(length = 64, to = 'hex') {
+        return nodecrypto.randomBytes(length).toString(to);
+    }
+
+    static async createHmac(key, data, algorithm = 'sha256') {
+        const hmac = nodecrypto.createHmac(algorithm, key);
+        return new Promise((resolve, reject) => {
+            hmac.on('readable', () => {
+                const data = hmac.read();
+                if (data) return resolve(data.toString('hex'));
+                reject(null);
+            });
+            hmac.write(data);
+            hmac.end();
+        });
+    }
+
 }
diff --git a/client/src/structs/settings/types/securekvp.js b/client/src/structs/settings/types/securekvp.js
index d11a90d3..602eed3b 100644
--- a/client/src/structs/settings/types/securekvp.js
+++ b/client/src/structs/settings/types/securekvp.js
@@ -11,10 +11,11 @@
 import Kvp from './kvp';
 
 export default class SecureKvpSetting extends Kvp {
+
     /**
      * The value to use when the setting doesn't have a value.
      */
     get defaultValue() {
-        return { key: 'Key', value: '**********' };
+        return { key: 'PlaceholderKey', value: '' };
     }
 }
diff --git a/client/src/styles/partials/bdsettings/button.scss b/client/src/styles/partials/bdsettings/button.scss
index e2fc7fb3..3fb27957 100644
--- a/client/src/styles/partials/bdsettings/button.scss
+++ b/client/src/styles/partials/bdsettings/button.scss
@@ -44,11 +44,14 @@
     }
 
     &.bd-hide-button {
-        transition: opacity 0.4s ease-out;
-        opacity: 0;
+        animation: bd-fade-out 0.4s ease-out;
 
         &.bd-active {
-            transition-timing-function: ease-in;
+            animation: bd-fade-in 0.4s ease-in;
+        }
+
+        &:not(.bd-active):not(.bd-animating) {
+            display: none;
         }
     }
 
diff --git a/client/src/styles/partials/bdsettings/e2ee.scss b/client/src/styles/partials/bdsettings/e2ee.scss
index 8b933296..f49b93ed 100644
--- a/client/src/styles/partials/bdsettings/e2ee.scss
+++ b/client/src/styles/partials/bdsettings/e2ee.scss
@@ -16,7 +16,7 @@
 
         &.bd-e2eeLock {
             &.bd-error {
-                fill: #cc3e3e;
+                fill: $colerr;
             }
 
             &.bd-ok {
@@ -24,7 +24,7 @@
             }
 
             &.bd-warn {
-                fill: #ccab3e;
+                fill: $colwarn;
                 animation: bd-pulse 2s ease-in-out infinite;
             }
         }
@@ -75,7 +75,7 @@
 
         &.bd-e2eeLock {
             &.bd-error {
-                fill: #cc3e3e;
+                fill: $colerr;
             }
 
             &.bd-ok {
@@ -83,7 +83,7 @@
             }
 
             &.bd-warn {
-                fill: #ccab3e;
+                fill: $colwarn;
             }
 
             &.bd-loading {
@@ -106,3 +106,87 @@
         }
     }
 }
+
+.bd-e2eePopover {
+    background: #484b51;
+    margin: 0;
+    margin-top: 15px;
+
+    .bd-ok svg {
+        fill: $colbdgreen;
+    }
+
+    .bd-warn svg {
+        fill: $colwarn;
+    }
+
+    .bd-popover-wrapper,
+    .bd-popoverWrapper {
+        .bd-popover-inner,
+        .bd-popoverInner {
+            display: flex;
+
+            > div:first-child {
+                display: flex;
+
+                > div:not(:first-child) {
+                    margin-left: 10px;
+                }
+            }
+
+            .bd-material-design-icon,
+            .bd-materialDesignIcon {
+                display: flex;
+                fill: #7e8084;
+                cursor: pointer;
+
+                &:hover {
+                    fill: #FFF;
+                }
+            }
+        }
+    }
+
+    .bd-popover-arrow,
+    .bd-popoverArrow {
+        display: none;
+    }
+}
+
+.bd-encryptedImage::before {
+    content: "";
+    position: absolute;
+    background: $colbdgreen;
+    width: 100%;
+    height: 100%;
+    border-radius: 3px;
+    display: flex;
+    // justify-content: center;
+    // align-items: flex-start;
+    // font-size: 1.2em;
+    // font-weight: 700;
+    // color: #2c2c2c;
+    // line-height: 30px;
+    background-image: $lockIcon;
+    background-size: calc(100% / 2);
+    background-repeat: no-repeat;
+    background-position: center;
+}
+
+.bd-decryptedImage::before {
+    content: "";
+    background-image: $lockIcon;
+    width: 11px;
+    height: 11px;
+    position: absolute;
+    z-index: 1;
+    display: block;
+    background-size: cover;
+    background-color: $colbdgreen;
+    background-repeat: no-repeat;
+    border-radius: 100%;
+    border: 2px solid $colbdgreen;
+    top: 5px;
+    left: 5px;
+    opacity: .5;
+}
diff --git a/client/src/styles/partials/generic/forms/collections.scss b/client/src/styles/partials/generic/forms/collections.scss
new file mode 100644
index 00000000..1d84a8cb
--- /dev/null
+++ b/client/src/styles/partials/generic/forms/collections.scss
@@ -0,0 +1,65 @@
+.bd-formCollection {
+    display: flex;
+    flex-direction: column;
+
+    > :first-child {
+        flex: 1 1 auto;
+    }
+
+    .bd-collectionItem {
+        display: flex;
+        flex-grow: 1;
+        margin-top: 5px;
+
+        > :first-child {
+            flex: 1 0 auto;
+        }
+
+        .bd-removeCollectionItem {
+            width: 20px;
+            flex: 0 1 auto;
+            display: flex;
+            justify-content: center;
+            align-items: center;
+            cursor: pointer;
+
+            svg {
+                width: 16px;
+                height: 16px;
+                fill: #ccc;
+            }
+
+            &:not(.bd-disabled):hover {
+                svg {
+                    fill: #fff;
+                }
+            }
+
+            &.bd-disabled {
+                opacity: 0.5;
+            }
+        }
+    }
+
+    .bd-newCollectionItem {
+        display: flex;
+        cursor: pointer;
+        align-self: flex-end;
+        justify-content: center;
+        align-items: center;
+        margin-right: 2px;
+        margin-top: 10px;
+
+        svg {
+            width: 16px;
+            height: 16px;
+            fill: #ccc;
+        }
+
+        &:hover {
+            svg {
+                fill: #FFF;
+            }
+        }
+    }
+}
diff --git a/client/src/styles/partials/generic/forms/index.scss b/client/src/styles/partials/generic/forms/index.scss
index a8334930..6a4ab7dd 100644
--- a/client/src/styles/partials/generic/forms/index.scss
+++ b/client/src/styles/partials/generic/forms/index.scss
@@ -9,3 +9,4 @@
 @import './files.scss';
 @import './guilds.scss';
 @import './arrays.scss';
+@import './collections.scss';
diff --git a/client/src/styles/partials/variables/colours.scss b/client/src/styles/partials/variables/colours.scss
index d4bb26bc..fa44b523 100644
--- a/client/src/styles/partials/variables/colours.scss
+++ b/client/src/styles/partials/variables/colours.scss
@@ -3,5 +3,5 @@ $colbdgreen: #3ecc9c;
 $colbdblue: $colbdgreen;
 $colerr: #d84040;
 $colwarn: #faa61a;
-$colok: #43b581;
+$colok: $colbdgreen;
 $coldimwhite: #b9bbbe;
diff --git a/client/src/styles/partials/variables/images.scss b/client/src/styles/partials/variables/images.scss
index 679a4ed9..0af0e367 100644
--- a/client/src/styles/partials/variables/images.scss
+++ b/client/src/styles/partials/variables/images.scss
@@ -10,3 +10,5 @@ $logoSmallLight: $logoSmallGb;
 // $logoBigBw: url(data:image/svg+xml;base64,PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48IURPQ1RZUEUgc3ZnIFBVQkxJQyAiLS8vVzNDLy9EVEQgU1ZHIDEuMS8vRU4iICJodHRwOi8vd3d3LnczLm9yZy9HcmFwaGljcy9TVkcvMS4xL0RURC9zdmcxMS5kdGQiPjxzdmcgdmVyc2lvbj0iMS4xIiBpZD0iQ2FscXVlXzEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgeG1sbnM6eGxpbms9Imh0dHA6Ly93d3cudzMub3JnLzE5OTkveGxpbmsiIHg9IjBweCIgeT0iMHB4IiB2aWV3Qm94PSIwIDAgMTk0MCA2NDAiIGVuYWJsZS1iYWNrZ3JvdW5kPSJuZXcgMCAwIDE5NDAgNjQwIiB4bWw6c3BhY2U9InByZXNlcnZlIj48Zz48cGF0aCBmaWxsPSIjRkZGRkZGIiBkPSJNMTU2LjEsMjczLjlIMjl2MTQyLjdsODQuNiw3Ni4yVjM1NC4yaDQ1LjJjMjguNywwLDQyLjksMTMuOCw0Mi45LDM2djEwNmMwLDIyLjItMTMuNCwzNy4xLTQyLjksMzcuMUgyOC42djgwLjdoMTI3YzY4LjEsMC40LDEzMi0zMy43LDEzMi0xMTEuN3YtMTE0QzI4OC4xLDMwOC43LDIyNC4yLDI3My45LDE1Ni4xLDI3My45TDE1Ni4xLDI3My45eiIvPjxwYXRoIGZpbGw9IiNGRkZGRkYiIGQ9Ik04MjEuOSw1MDIuM1YzODUuMmMwLTQyLjEsNzUuOC01MS43LDk4LjctOS42bDcwLTI4LjNjLTI3LjYtNjAuNS03Ny43LTc4LjEtMTE5LjQtNzguMWMtNjguMSwwLTEzNS41LDM5LjQtMTM1LjUsMTE1Ljl2MTE3LjFjMCw3Ny4zLDY3LjMsMTE1LjksMTMzLjksMTE1LjljNDIuOSwwLDk0LjEtMjEsMTIyLjUtNzYuMmwtNzUtMzQuNEM4OTguOCw1NTQuOCw4MjEuOSw1NDMuMyw4MjEuOSw1MDIuM0w4MjEuOSw1MDIuM3oiLz48cGF0aCBmaWxsPSIjRkZGRkZGIiBkPSJNNTkwLjQsNDAxLjNjLTI2LjQtNS43LTQ0LTE1LjMtNDUuMi0zMS44YzEuNS0zOS40LDYyLjQtNDAuOSw5OC0zLjFsNTYuMy00My4yYy0zNS4yLTQyLjktNzUtNTQuMy0xMTUuOS01NC4zYy02Mi40LDAtMTIyLjgsMzUuMi0xMjIuOCwxMDEuOGMwLDY0LjcsNDkuNyw5OS41LDEwNC41LDEwNy45YzI3LjksMy44LDU4LjksMTQuOSw1OC4yLDM0LjFjLTIuMywzNi40LTc3LjMsMzQuNC0xMTEuNC02LjlsLTU0LjMsNTAuOWMzMS44LDQwLjksNzUsNjEuNiwxMTUuNiw2MS42YzYyLjQsMCwxMzEuNi0zNiwxMzQuMy0xMDEuOEM3MTEuMyw0MzMuNSw2NTAuOSw0MTIuNCw1OTAuNCw0MDEuM0w1OTAuNCw0MDEuM3oiLz48cmVjdCB4PSIzMzQiIHk9IjI3My45IiBmaWxsPSIjRkZGRkZGIiB3aWR0aD0iODUuNyIgaGVpZ2h0PSIzMzkuOCIvPjxwYXRoIGZpbGw9IiNGRkZGRkYiIGQ9Ik0xNzc5LjMsMjczLjloLTEyN3YxNDIuN2w4NC42LDc2LjJWMzU0LjJoNDUuMmMyOC43LDAsNDIuOSwxMy44LDQyLjksMzZ2MTA2YzAsMjIuMi0xMy40LDM3LjEtNDIuOSwzNy4xaC0xMzAuMXY4MC43aDEyNy40YzY4LjEsMC40LDEzMi0zMy43LDEzMi0xMTEuN3YtMTE0QzE5MTEuNCwzMDguNywxODQ3LjUsMjczLjksMTc3OS4zLDI3My45TDE3NzkuMywyNzMuOXoiLz48cGF0aCBmaWxsPSIjRkZGRkZGIiBkPSJNMTE1NiwyNjkuM2MtNzAuNCwwLTE0MC40LDM4LjMtMTQwLjQsMTE2LjdWNTAyYzAsNzcuNyw3MC40LDExNi43LDE0MS4yLDExNi43YzcwLjQsMCwxNDAuNC0zOSwxNDAuNC0xMTYuN1YzODZDMTI5Ny4yLDMwNy45LDEyMjYuNCwyNjkuMywxMTU2LDI2OS4zeiBNMTIxMS4xLDUwMmMwLDI0LjUtMjcuNiwzNy4xLTU0LjcsMzcuMWMtMjcuNiwwLTU1LjEtMTEuOS01NS4xLTM3LjFWMzg2YzAtMjQuOSwyNi44LTM4LjMsNTMuNi0zOC4zYzI3LjksMCw1Ni4zLDExLjksNTYuMywzOC4zVjUwMnoiLz48cGF0aCBmaWxsPSIjRkZGRkZGIiBkPSJNMTUzOC4zLDQ5Ny40YzQwLjktMTMsNjYuNi00OC42LDY2LjYtMTExLjRjLTEuOS03OS42LTU2LjMtMTExLjctMTI2LjMtMTExLjdoLTEzNS44djMzOS44aDg2LjlWNTA2LjJoMTUuM2w3OC44LDEwNy45aDEwNy4xTDE1MzguMyw0OTcuNHogTTE0ODAuMSw0MzEuOWgtNTAuNXYtNzcuN2g1MC41QzE1MzQuMSwzNTQuMiwxNTM0LjEsNDMxLjksMTQ4MC4xLDQzMS45eiIvPjwvZz48Zz48cGF0aCBmaWxsPSIjM0U4MkU1IiBkPSJNMTAzLjMsNDMuM0gyOC42djc3LjFsNDcuNyw0M1Y4MS43aDI3LjhjMjkuNiwwLDI5LjYsMzcuMiwwLDM3LjJIODUuOHYzNS42aDE4LjNjMjkuNiwwLDI5LjYsMzcuMiwwLDM3LjJIMjguNlYyMzBoNzQuNmMzOC41LDAsNjguMy0xNS40LDY5LjQtNTMuNmMwLTE3LjYtNC44LTMwLjctMTMuMy0zOS44YzguNS05LjEsMTMuMy0yMi4yLDEzLjMtMzkuOEMxNzEuNiw1OC43LDE0MS44LDQzLjMsMTAzLjMsNDMuM3oiLz48cG9seWdvbiBmaWxsPSIjM0U4MkU1IiBwb2ludHM9IjM1OC43LDQzLjMgMzU4LjcsODEuNyA0MDYuOCw4MS43IDQwNi44LDIzMCA0NTQuNSwyMzAgNDU0LjUsODEuNyA1MjkuOCw4MS43IDUyOS44LDIzMCA1NzcuNiwyMzAgNTc3LjYsODEuNyA2MjUuNyw4MS43IDYyNS43LDQzLjMgIi8+PHBvbHlnb24gZmlsbD0iIzNFODJFNSIgcG9pbnRzPSIxOTcuNiw0My4zIDE5Ny42LDIzMCAzNDEuNywyMzAgMzQxLjcsMTkxLjcgMjQ1LjQsMTkxLjcgMjQ1LjQsMTYwLjUgMjk2LjUsMTYwLjUgMjk2LjUsMTEyLjggMjQ1LjQsMTEyLjggMjQ1LjQsODEuNyAzNDEuNyw4MS43IDM0MS43LDQzLjMgIi8+PHBvbHlnb24gZmlsbD0iIzNFODJFNSIgcG9pbnRzPSI2NDIuNCw0My4zIDY0Mi40LDIzMCA3ODYuNCwyMzAgNzg2LjQsMTkxLjcgNjkwLjEsMTkxLjcgNjkwLjEsMTYwLjUgNzQxLjMsMTYwLjUgNzQxLjMsMTEyLjggNjkwLjEsMTEyLjggNjkwLjEsODEuNyA3ODYuNCw4MS43IDc4Ni40LDQzLjMgIi8+PHBhdGggZmlsbD0iIzNFODJFNSIgZD0iTTkxOC42LDE2NmMyMi41LTcuMSwzNi41LTI2LjYsMzYuNS02MS4xYy0xLTQzLjYtMzAuOC02MS43LTY5LjItNjEuN2gtNzQuNVYyMzBIODU5di01OS4yaDguNGw0My4yLDU5LjJoNTguN0w5MTguNiwxNjZ6IE04ODYuNywxMzAuMkg4NTlWODEuN2gyNy43QzkxNi4zLDgxLjcsOTE2LjMsMTMwLjIsODg2LjcsMTMwLjJ6Ii8+PC9nPjwvc3ZnPg==);
 $logoBigGw: url(data:image/svg+xml;base64,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);
 $logoBigBw: $logoBigGw;
+
+$lockIcon: url(data:image/svg+xml;base64,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);
diff --git a/client/src/ui/classnormaliser.js b/client/src/ui/classnormaliser.js
index 52cf0bf7..c2979ab0 100644
--- a/client/src/ui/classnormaliser.js
+++ b/client/src/ui/classnormaliser.js
@@ -65,8 +65,7 @@ export default class ClassNormaliser extends Module {
 
     normalizeElement(element) {
         if (!(element instanceof Element)) return;
-        if (element.children && element.children.length) this.normalizeElement(element.children[0]);
-        if (element.nextElementSibling) this.normalizeElement(element.nextElementSibling);
+
         const classes = element.classList;
         for (let c = 0, clen = classes.length; c < clen; c++) {
             if (!randClass.test(classes[c])) continue;
@@ -74,6 +73,10 @@ export default class ClassNormaliser extends Module {
             const newClass = match.split('-').map((s, i) => i ? s[0].toUpperCase() + s.slice(1) : s).join('');
             element.classList.add(`${normalizedPrefix}-${newClass}`);
         }
+
+        for (let child of element.children) {
+            this.normalizeElement(child);
+        }
     }
 
 }
diff --git a/client/src/ui/components/BdSettingsWrapper.vue b/client/src/ui/components/BdSettingsWrapper.vue
index 96c34a7b..180519e6 100644
--- a/client/src/ui/components/BdSettingsWrapper.vue
+++ b/client/src/ui/components/BdSettingsWrapper.vue
@@ -47,7 +47,7 @@
         methods: {
             keyupListener(e) {
                 if (Modals.stack.length || !this.active || e.which !== 27) return;
-                if (this.$refs.settings.activeIndex !== -1) this.$refs.settings.closeContent();
+                if (this.$refs.settings.item) this.$refs.settings.closeContent();
                 else this.active = false;
                 e.stopImmediatePropagation();
             },
diff --git a/client/src/ui/components/bd/setting/Collection.vue b/client/src/ui/components/bd/setting/Collection.vue
index 5fa5ebf7..9f727eb9 100644
--- a/client/src/ui/components/bd/setting/Collection.vue
+++ b/client/src/ui/components/bd/setting/Collection.vue
@@ -11,10 +11,10 @@
 <template>
     <div class="bd-formCollection">
         <div v-for="s in setting.items" class="bd-collectionItem">
-            <Setting :setting="s" :key="s.id" />
-            <div class="bd-removeCollectionItem" @click="removeItem(s)"><MiMinus/></div>
+            <Setting :setting="s" :hide-divider="true" :key="s.id" />
+            <div class="bd-removeCollectionItem" :class="{'bd-disabled': setting.disabled || setting.min && setting.items.length <= setting.min}" @click="removeItem(s)"><MiMinus/></div>
         </div>
-        <div class="bd-newCollectionItem" @click="addItem"><MiPlus/></div>
+        <div v-if="!setting.disabled && !setting.max || setting.items.length < setting.max" class="bd-newCollectionItem" @click="addItem"><MiPlus/></div>
     </div>
 </template>
 
@@ -29,9 +29,11 @@
         },
         methods: {
             removeItem(item) {
+                if (this.setting.disabled || this.setting.min && this.setting.items.length <= this.setting.min) return;
                 this.setting.removeItem(item);
             },
             addItem() {
+                if (this.setting.disabled || this.setting.max && this.setting.items.length >= this.setting.max) return;
                 this.setting.addItem();
             }
         },
diff --git a/client/src/ui/components/bd/setting/SecureKeyValuePair.vue b/client/src/ui/components/bd/setting/SecureKeyValuePair.vue
index 40d145d6..7315fa20 100644
--- a/client/src/ui/components/bd/setting/SecureKeyValuePair.vue
+++ b/client/src/ui/components/bd/setting/SecureKeyValuePair.vue
@@ -22,11 +22,12 @@
 </template>
 
 <script>
-    import aes256 from 'aes256';
+    import { DiscordApi } from 'modules';
+    import { E2EE } from 'builtin';
+
     export default {
         data() {
             return {
-                masterKey: 'temporarymasterkey',
                 valueChanged: false
             }
         },
@@ -40,7 +41,7 @@
             },
             valueBlur(e) {
                 if (!this.valueChanged) return;
-                const value = aes256.encrypt(this.masterKey, e.target.value);
+                const value = E2EE.encrypt(null, e.target.value);
                 this.setting.value = { key: this.setting.value.key, value }
                 this.valueChanged = false;
             },
@@ -52,6 +53,10 @@
                 if (e.key !== 'Enter') return;
                 e.target.blur();
             }
+        },
+        beforeMount() {
+            if (this.setting.value.key !== 'PlaceholderKey') return;
+            this.setting.value.key = DiscordApi.currentChannel.id || 'Key';
         }
     }
 </script>
diff --git a/client/src/ui/components/bd/setting/Setting.vue b/client/src/ui/components/bd/setting/Setting.vue
index 107e6ee6..855ae6df 100644
--- a/client/src/ui/components/bd/setting/Setting.vue
+++ b/client/src/ui/components/bd/setting/Setting.vue
@@ -26,7 +26,8 @@
         <KeyValuePair v-else-if="setting.type === 'kvp'" :setting="setting" />
         <SecureKeyValuePair v-else-if="setting.type === 'securekvp'" :setting="setting" />
         <CustomSetting v-else-if="setting.type === 'custom'" :setting="setting" />
-        <div class="bd-form-divider"></div>
+
+        <div v-if="!hideDivider" class="bd-form-divider"></div>
     </div>
 </template>
 
@@ -51,7 +52,8 @@
 
     export default {
         props: [
-            'setting'
+            'setting',
+            'hide-divider'
         ],
         components: {
             BoolSetting,
diff --git a/client/src/ui/components/common/MaterialIcon.js b/client/src/ui/components/common/MaterialIcon.js
index 9840b262..f5d4b6b3 100644
--- a/client/src/ui/components/common/MaterialIcon.js
+++ b/client/src/ui/components/common/MaterialIcon.js
@@ -19,3 +19,4 @@ export { default as MiWarning } from './materialicons/Warning.vue';
 export { default as MiSuccess } from './materialicons/Success.vue';
 export { default as AccountCircle } from './materialicons/AccountCircle.vue';
 export { default as MiLock } from './materialicons/Lock.vue';
+export { default as MiImagePlus } from './materialicons/ImagePlus.vue';
diff --git a/client/src/ui/components/common/materialicons/ImagePlus.vue b/client/src/ui/components/common/materialicons/ImagePlus.vue
new file mode 100644
index 00000000..05f7640b
--- /dev/null
+++ b/client/src/ui/components/common/materialicons/ImagePlus.vue
@@ -0,0 +1,27 @@
+/**
+ * BetterDiscord Image Plus Icon
+ * Copyright (c) 2015-present Jiiks/JsSucks - https://github.com/Jiiks / https://github.com/JsSucks
+ * All rights reserved.
+ * https://betterdiscord.net
+ *
+ * This source code is licensed under the MIT license found in the
+ * LICENSE file in the root directory of this source tree.
+ *
+ * Material Design Icons
+ * Copyright (c) 2014 Google
+ * Apache 2.0 LICENSE
+ * https://www.apache.org/licenses/LICENSE-2.0.txt
+*/
+
+<template>
+    <span class="bd-material-design-icon">
+        <svg :width="size || 24" :height="size || 24" viewBox="0 0 24 24">
+            <path d="M 5,3C 3.89543,3 3,3.8954 3,5L 3,19C 3,20.1046 3.89543,21 5,21L 14.0859,21C 14.0294,20.6696 14.0007,20.3351 14,20C 14.0027,19.3182 14.1216,18.6418 14.3516,18L 5,18L 8.5,13.5L 11,16.5L 14.5,12L 16.7285,14.9727C 17.7019,14.3386 18.8383,14.0007 20,14C 20.3353,14.002 20.6698,14.032 21,14.0898L 21,5C 21,3.89 20.1,3 19,3L 5,3 Z M 19,16L 19,19L 16,19L 16,21L 19,21L 19,24L 21,24L 21,21L 24,21L 24,19L 21,19L 21,16L 19,16 Z " />
+        </svg>
+    </span>
+</template>
+<script>
+    export default {
+        props: ['size']
+    }
+</script>
diff --git a/client/src/ui/toasts.js b/client/src/ui/toasts.js
index 1b572a54..75e3709c 100644
--- a/client/src/ui/toasts.js
+++ b/client/src/ui/toasts.js
@@ -8,6 +8,8 @@
  * LICENSE file in the root directory of this source tree.
 */
 
+import { Settings } from 'modules';
+
 let toasts = 0;
 
 export default class Toasts {
@@ -24,6 +26,8 @@ export default class Toasts {
      * @returns {Promise} This promise resolves when the toast is removed from the DOM.
      */
     static async push(message, options = {}) {
+        if (!this.enabled) return;
+
         const {type = 'basic', icon, additionalClasses, timeout = 3000} = options;
         const toast = {id: toasts++, message, type, icon, additionalClasses, closing: false};
         this.stack.push(toast);
@@ -72,4 +76,16 @@ export default class Toasts {
         return this._stack || (this._stack = []);
     }
 
+    static get setting() {
+        return Settings.getSetting('ui', 'default', 'enable-toasts');
+    }
+
+    static get enabled() {
+        return this.setting.value;
+    }
+
+    static set enabled(enabled) {
+        this.setting.value = enabled;
+    }
+
 }
diff --git a/client/webpack.config.js b/client/webpack.config.js
index 9278ddfc..efaea41d 100644
--- a/client/webpack.config.js
+++ b/client/webpack.config.js
@@ -40,7 +40,7 @@ module.exports = {
         crypto: 'require("crypto")',
         request: 'require(require("path").join(require("electron").remote.app.getAppPath(), "node_modules", "request"))',
         sparkplug: 'require("../../core/dist/sparkplug")',
-        crypto: 'require("crypto")'
+        'node-crypto': 'require("crypto")'
     },
     resolve: {
         alias: {
diff --git a/common/modules/utils.js b/common/modules/utils.js
index c00ddc1a..198e233a 100644
--- a/common/modules/utils.js
+++ b/common/modules/utils.js
@@ -176,6 +176,69 @@ export class Utils {
         } while (!value);
         return value;
     }
+
+    /**
+     * Finds the index of array of bytes in another array
+     * @param {Array} haystack The array to find aob in
+     * @param {Array} needle The aob to find
+     * @return {Number} aob index, -1 if not found
+     */
+    static aobscan(haystack, needle) {
+        for (let h = 0; h < haystack.length - needle.length + 1; ++h) {
+            let found = true;
+            for (let n = 0; n < needle.length; ++n) {
+                if (needle[n] === null ||
+                    needle[n] === '??' ||
+                    haystack[h + n] === needle[n]) continue;
+                found = false;
+                break;
+            }
+            if (found) return h;
+        }
+        return -1;
+    }
+
+    /**
+     * Convert buffer to base64 encoded string
+     * @param {any} buffer buffer to convert
+     * @returns {String} base64 encoded string from buffer
+     */
+    static arrayBufferToBase64(buffer) {
+        let binary = '';
+        const bytes = buffer instanceof Uint8Array ? buffer : new Uint8Array(buffer);
+        for (let i = 0; i < bytes.byteLength; i++) {
+            binary += String.fromCharCode(bytes[i]);
+        }
+        return window.btoa(binary);
+    }
+
+    static async getImageFromBuffer(buffer) {
+        if (!(buffer instanceof Blob)) buffer = new Blob([buffer]);
+        const reader = new FileReader();
+        reader.readAsDataURL(buffer);
+        await new Promise(r => {
+            reader.onload = r
+        });
+        const img = new Image();
+        img.src = reader.result;
+        return await new Promise(resolve => {
+            img.onload = () => {
+                resolve(img);
+            }
+        });
+    }
+
+    static async canvasToArrayBuffer(canvas, mime = 'image/png') {
+        const reader = new FileReader();
+        return new Promise(resolve => {
+            canvas.toBlob(blob => {
+                reader.addEventListener('loadend', () => {
+                    resolve(reader.result);
+                });
+                reader.readAsArrayBuffer(blob);
+            }, mime);
+        });
+    }
 }
 
 export class FileUtils {
diff --git a/core/src/main.js b/core/src/main.js
index a7c712ee..d6694afc 100644
--- a/core/src/main.js
+++ b/core/src/main.js
@@ -257,9 +257,11 @@ export class BetterDiscord {
         session.defaultSession.webRequest.onHeadersReceived((details, callback) => {
             for (let [header, values] of Object.entries(details.responseHeaders)) {
                 if (!header.match(/^Content-Security-Policy(-Report-Only)?$/i)) continue;
+
                 details.responseHeaders[header] = values.map(value => {
                     const policy = new ContentSecurityPolicy(value);
                     for (const [key, value] of Object.entries(CSP)) {
+                        if (!policy.get(key)) continue;
                         policy.add(key, value.join(' '));
                     }
                     return policy.toString();
diff --git a/gulpfile.babel.js b/gulpfile.babel.js
index 14086f32..042c796f 100644
--- a/gulpfile.babel.js
+++ b/gulpfile.babel.js
@@ -81,6 +81,8 @@ gulp.task('node-sass-bindings', function () {
     ]);
 });
 
+gulp.task('build-release', gulp.parallel('release-package', 'client', 'core', 'sparkplug', 'core-modules', 'index', 'css-editor', gulp.series('dependencies', 'node-sass-bindings')));
+
 gulp.task('release', gulp.series(function () {
     return del(['release/**/*']);
-}, gulp.parallel('release-package', 'client', 'core', 'sparkplug', 'core-modules', 'index', 'css-editor', gulp.series('dependencies', 'node-sass-bindings'))));
+}, 'build-release'));
diff --git a/package.json b/package.json
index 5766ca76..457204b4 100644
--- a/package.json
+++ b/package.json
@@ -82,6 +82,7 @@
     "build_node-sass": "node scripts/build-node-sass.js",
     "build_release": "npm run release --prefix client && npm run build --prefix core && npm run release --prefix csseditor",
     "package_release": "node scripts/package-release.js",
-    "release": "npm run lint && npm run build_release && gulp release && npm run package_release"
+    "release": "npm run lint && npm run build_release && gulp release && npm run package_release",
+    "update_release": "npm run build_release && gulp build-release"
   }
 }