New

SSL Certificate & Key Pair Matcher - Online Verify Match

Paste an SSL certificate and private key to verify they belong together. Check if a CSR matches a private key. All local crypto.

Developer Tools certificate key match SSL

New

PGP Message Viewer - Online Decode & Inspect

Paste an ASCII‑armored PGP message and view its packet structure. See the encrypted/plaintext blocks without decrypting.

Decoder message packet PGP viewer

New

Image Metadata Remover - Online Clean Privacy Data

Remove all EXIF, IPTC, and XMP metadata from your photos. Strip GPS location. Protect your privacy before upload.

Image Tool EXIF metadata privacy remove

New

Bcrypt Hash Generator - Online Password Hashing Tool

Generate a bcrypt hash from a password with configurable salt rounds. Verify a password against a hash. Entirely client‑side.

Generator bcrypt generator hash password

New

SSL Cipher Suite Checker - Online Test TLS Security

Check which cipher suites a website supports and identify weak or outdated ones. Quick security audit from your browser.

Network checker cipher SSL TLS

New

PBKDF2 Key Derivation Demo - Online Password‑Based Key

Derive a strong cryptographic key from a password using PBKDF2 with SHA‑256. Adjust iterations and salt. Educational and test tool.

Educational crypto key derivation password PBKDF2

New

Platform Authenticator Demo - Online Fingerprint & Face ID

Test your device's built‑in biometric (Touch ID, Face ID, Windows Hello) using the Web Authentication API. Register and verify.

API demo Face ID fingerprint WebAuthn

New

Password Policy Visualizer - Online See Rules in Action

Define password rules and see a live checklist that updates as you type. Design better password UX for your app.

Security password policy rules UX visualizer

New

Zero‑Width Character Detector - Online Find Hidden Unicode

Paste text and instantly see if it contains hidden zero‑width characters often used in steganography. Reveal invisible payloads.

Security detector invisible Unicode zero width

New

Reporting API Demo - Online See CSP & Deprecation Reports

Send a test CSP violation report and see the ReportingObserver in action. Understand how monitoring works.

Developer Tools CSP demo monitor Reporting API

New

Multi‑Format Checksum Generator - Online MD5, SHA, CRC

Paste text or drop a file and get checksums in multiple formats simultaneously. Compare with original. All local.

Developer Tools checksum MD5 multi‑format SHA

New

Trusted Types API Demo - Online Prevent XSS

See how Trusted Types prevents unsafe HTML assignment. Test against injected scripts. Modern security practice.

Developer Tools demo security Trusted Types XSS

New

Random RSA/EC Key Pair Demo - Online Cryptographic Visualization

Generate a dummy RSA or EC public/private key pair for educational visualization. Shows key structure and ASN.1 dump. Not for production use.

Education cryptography EC key pair RSA

New

Frontend JS Library Vulnerability Scanner - Online Check Version

Paste a URL or HTML to detect known vulnerable JavaScript library versions. Quick security audit. Client‑side only.

Developer Tools JavaScript scanner security vulnerability

New

PDF Script Inspector - Online See Embedded JavaScript

Drop a PDF and extract any embedded JavaScript or form actions. Check for malicious code. Privacy‑friendly analysis.

Document Tool inspector JavaScript PDF security

New

Hash Type Identifier - Online Guess MD5, SHA, Bcrypt

Paste a hash and the tool guesses which algorithm created it based on length and format. Useful for forensic analysis.

Forensics detect forensics hash identifier

New

SHA‑1, SHA‑256, SHA‑512 Hash Generator - Online

Generate SHA‑1, SHA‑256, SHA‑512, and SHA‑3 digests of any text or file. Verify integrity. All in your browser.

Developer Tools checksum generator hash SHA‑256

New

WebAuthn Demo - Online Register & Authenticate

Create a passkey and authenticate using the Web Authentication API. Supports platform authenticators (TouchID, FaceID). No server.

API biometric passkey security WebAuthn

New

BLAKE3 Hash Generator - Online Fast Cryptographic Hash

Generate a BLAKE3 hash of any text or file. Extremely fast. Perfect for checksums and content addressing. Local.

Developer Tools BLAKE3 checksum generator hash

New

Digital Signature Sign & Verify - Online Web Crypto

Sign a message with a private key and verify the signature with the public key. Learn digital signature flow.

Educational digital signature sign verify Web Crypto

New

SSL Certificate Decoder - Online X.509 Viewer

Paste a PEM/DER certificate and decode all fields: issuer, subject, validity, SANs, and fingerprint. Pure JavaScript parser.

Developer Tools certificate decoder SSL X.509

New

Email Header Analyzer - Online SPF, DKIM, DMARC Check

Paste raw email headers and see authentication results (SPF, DKIM, DMARC) in a readable table. Find spoofing attempts.

Network authentication email headers SPF

New

Private State Token Demo - Online Anti‑Fraud Test

Issue and redeem Private State Tokens (formerly Trust Tokens). Understand how they help detect bots without cookies.

API anti‑fraud API privacy trust token

New

Self‑Signed TLS Certificate Generator - Online Testing

Generate a self‑signed X.509 certificate and private key for local development. All created in your browser. No server involved.

Developer Tools certificate generator self‑signed TLS

New

SQL Injection Simulator - Online Educational Sandbox

Test SQL injection inputs on a mock database and see the resulting query. Learn how to prevent SQLi. No real data.

Educational learn security simulator SQL injection

New

XSS Payload Sandbox - Online Test Escape Characters

Paste a potential XSS vector and see if it executes in a sandboxed iframe. For security researchers and education.

Educational payload sandbox security XSS

New

SHA‑3 / SHAKE Hash Generator - Online Extendable Output

Generate SHA‑3 and SHAKE hashes of any text with configurable output length. All local using js library.

Developer Tools generator hash SHA‑3 SHAKE

New

HTML Sanitizer API Demo - Online Safe Set HTML

Use the new Sanitizer API to safely insert raw HTML into the DOM. Blocks malicious tags. Experimental demo.

Developer Tools HTML safe Sanitizer API XSS

New

JPEG EXIF Remover - Online Strip Metadata for Privacy

Remove all EXIF data (GPS, camera info) from a JPEG before uploading. Processed locally. Protect your privacy.

Image Tool EXIF JPEG privacy remover

New

SSL Certificate Checker - Online Verify Expiry & Chain

Enter a domain and see its SSL certificate details: issuer, validity dates, and chain. Client‑side fetch.

Network certificate checker expiry SSL

New

AES Text Encrypt/Decrypt - Online Secure Message Tool

Encrypt and decrypt text using AES in the browser with a password. Uses Web Crypto API. No data sent to server.

Security AES decrypt encrypt secure

New

Content Security Policy Evaluator - Online Hash & Nonce Check

Test if a script or style will be allowed by a given CSP. Compute hash/nonce. Strengthen your site’s defense against XSS. Local.

Evaluator CSP evaluator security XSS

New

CAA Record Generator - Online DNS Certification Authority

Create a CAA DNS record to specify which certificate authorities can issue SSL certs for your domain. Prevent mis‑issuance.

Network CAA certificate DNS SSL

New

Argon2 Hash Generator - Online Modern Password KDF

Generate Argon2id hashes in the browser using a WASM compilation. Choose memory, iterations, and parallelism. Secure local hashing.

Generator Argon2 hash KDF password

New

Subresource Integrity (SRI) Hash Generator - Online

Enter a CDN URL for a script or style and generate the integrity attribute with sha384 or sha512. Protect your site.

Developer Tools generate hash integrity SRI

New

Encrypted Note Taker - Online Write & Encrypt in Browser

Write notes that are encrypted in your browser before saving to localStorage. Only accessible with your passphrase.

Productivity AES encrypted notes secure

New

Permissions‑Policy Header Parser - Online Decode & Check

Paste the Permissions‑Policy header and get a human‑readable table of allowed/blocked browser features. Understand how your site is restricted.

Parser header parser Permissions‑Policy security

New

WebAuthn Response Decoder - Online Unpack Attestation

Paste a raw WebAuthn attestation response (CBOR) and decode its fields: format, authenticator data, and extensions. Debug passkeys locally.

Debugging attestation decoder passkey WebAuthn

New

Bcrypt Hash Generator & Verifier - Online Password Hashing

Hash passwords using the bcrypt algorithm with configurable cost factor. Also verify a password against a stored hash. All local.

Generator bcrypt hash password verify

New

Text Encrypt/Decrypt (Web Crypto) - Online AES & RSA

Encrypt and decrypt text using the browser's Web Crypto API. Supports AES‑GCM and subtle key generation. No server required.

Security AES decrypt encrypt Web Crypto

New

Brute Force Time Estimator - Online Password Cracking Simulation

Enter a password and see the estimated time it would take to crack using brute force at different speeds. Educational.

Educational brute force crack password simulator

New

Permissions‑Policy Header Generator - Online Security Config

Configure browser feature permissions (camera, microphone, geolocation) and generate the Permissions‑Policy HTTP header.

Generator generator header Permissions‑Policy security

New

HMAC Generator - Online SHA‑256/512 Message Authentication

Create an HMAC (Hash‑based Message Authentication Code) using SHA‑256 or SHA‑512 with a secret key. Verify data integrity. Local.

Generator authentication generator HMAC SHA‑256

New

PGP Key Pair Generator - Online OpenPGP in Browser

Create a PGP key pair (RSA or ECC) directly in your browser with passphrase protection. Export public/private armored keys. No upload.

Generator generator key OpenPGP PGP

New

DMARC Record Generator - Online Email Policy Builder

Create a DMARC policy record with percentage, reporting addresses, and alignment mode. Validate and copy the final DNS TXT.

Network DMARC DNS email policy

New

JWT Viewer & Verifier - Online Decode & Check Signature

Paste a JSON Web Token and decode its header and payload. Verify signature if you provide the secret. Fully local.

Developer Tools decode JWT token verify

New

Text to HTML Safe Converter - Online Escape for Web

Convert plain text into HTML‑safe strings by escaping <, >, &, and quotes. Insert into code safely. Local copy.

Developer Tools HTML escape safe text XSS

New

Regex Injection / ReDoS Tester - Online Safe Pattern Test

Test a regular expression against malicious inputs to detect catastrophic backtracking and ReDoS vulnerabilities. Educational.

Developer Tools injection ReDoS regex security

New

Random Crypto Key Generator - Online Create API Tokens & Secrets

Generate strong random strings for API tokens, session secrets, or encryption keys. Uses crypto.getRandomValues().

Generator crypto generator key token

New

Security Headers Auditor - Online Check HSTS, CSP & More

Enter a website and check which security headers (HSTS, CSP, X‑Frame‑Options) are present. Get a security grade.

Network audit CSP HSTS security headers

New

JWT Signature Verifier - Online HMAC/RSA/EC Check

Paste a JWT and a public key or secret to verify the signature. Supports HS256, RS256, ES256. All operations local.

Security HS256 JWT signature verify

New

DNSSEC Chain Validator - Online Check RRSIG & DS

Validate a DNSSEC chain by entering DS and RRSIG records. Verify that signatures match. Educational. Local algorithm.

Network DNS DNSSEC security validator

New

HSTS Header Checker - Online Strict‑Transport‑Security

Fetch a site’s HSTS header and validate its syntax, max‑age, and subdomain flags. Ensure your site enforce HTTPS.

Network checker header HSTS security

New

CSP Analyzer - Online Test & Improve Policy

Paste a Content‑Security‑Policy header and get a human‑readable breakdown. See potential risks and suggestions.

Analyzer analyzer CSP header security

New

X‑Frame‑Options Tester - Online Clickjacking Defense

Check if a URL can be embedded in an iframe. Test your site’s defense against clickjacking. Browser‑based.

Security clickjacking security test X‑Frame‑Options

New

DKIM Record Generator - Online Public Key DNS Entry

Generate a DKIM DNS record from a public key and selector. Check syntax. Improve your domain’s email deliverability.

Network authentication DKIM DNS email

New

BIP39 Mnemonic Generator - Online 12/24 Words

Generate cryptographically secure BIP39 mnemonic phrases (12 or 24 words) for HD wallet seeds. All entropy generated locally.

Generator BIP39 mnemonic seed wallet

New

Local Password Breach Checker - Online k‑Anonymity

Tell if your password has appeared in data breaches without sending the full password. Uses hash prefix locally.

Security breach checker password safe

New

Memorable Passphrase Generator - Online XKCD Style

Create a strong yet easy‑to‑remember passphrase from random common words. Combines 4‑6 words. Fully offline. XKCD compliant.

Generator generator memorable passphrase words

Steganography Text Hider - Online Conceal Secret Message

Hide a secret message inside a normal text using zero-width characters or invisible ink. Copy the result. Decode with the same tool.

Security hide secret steganography zero-width