Bcrypt Hash Generator - Online Password Hashing Tool
Generate a bcrypt hash from a password with configurable salt rounds. Verify a password against a hash. Entirely client‑side.
UD5 Toolkit
Industry-standard password hashing — generate and verify bcrypt hashes securely in your browser. No data is ever sent to any server.
$2a$12$L9B5Q8xGp3ZkR7mN2vW1uOjH6cY4eA0tF9sD3xK1compare() or check() function — never compare hashes with == directly.
Generate a bcrypt hash from a password with configurable salt rounds. Verify a password against a hash. Entirely client‑side.
Paste the content of a JavaScript or CSS file and get its SHA‑256, SHA‑384, or SHA‑512 integrity hash. Build the full <script> tag with crossorigin.
Enter a username and password to generate an .htpasswd entry using bcrypt. Runs entirely in browser.
Calculate the entropy (in bits) of a password based on character pool size and length. Visual strength meter with crack time estimation. Local only.
Enter a CDN URL for a script or style and generate the integrity attribute with sha384 or sha512. Protect your site.
Enter a router's MAC address or serial and generate the common default WPA passphrase for major ISP brands. Educational purpose only.
Enter a password and see the estimated time it would take to crack using brute force at different speeds. Educational.
Paste a hash and the tool guesses which algorithm created it based on length and format. Useful for forensic analysis.
Generate a BLAKE3 hash of any text or file. Extremely fast. Perfect for checksums and content addressing. Local.
Generate SHA‑3 and SHAKE hashes of any text with configurable output length. All local using js library.
Sign a message with a private key and verify the signature with the public key. Learn digital signature flow.
Check if a password appears in the Have I Been Pwned database using k‑Anonymity. Only the first 5 characters of the hash are sent.
Generate SHA‑1, SHA‑256, SHA‑512, and SHA‑3 digests of any text or file. Verify integrity. All in your browser.
Paste a JWT and a public key or secret to verify the signature. Supports HS256, RS256, ES256. All operations local.
Derive a strong cryptographic key from a password using PBKDF2 with SHA‑256. Adjust iterations and salt. Educational and test tool.
Generate Argon2id hashes in the browser using a WASM compilation. Choose memory, iterations, and parallelism. Secure local hashing.
Generate the MD5 hash of any text string. For quick integrity checks. All local computation.
Hash any text using simple, fast algorithms: DJB2, SDBM, or CRC32. Get integer or hex. For quick lookups. Local.
Create a random long password that alternates consonants and vowels to mimic a pronounceable word. XKCD meets CVCV. Local.
Evaluate password strength through a short interactive story where each character set adds lines to a narrative. Educational fun.
Type a password and see a bar that fills based on estimated bits of entropy. Color‑coded feedback. No storage.
Create secure passwords that look like gibberish words but are easy to pronounce and remember. Mix of syllables. Local generation.
Paste a JSON Web Token and decode its header and payload. Verify signature if you provide the secret. Fully local.
Store passwords and notes encrypted with a master passphrase. Data lives only in your browser's localStorage. No cloud.
Create a strong, memorable password using 4 random common words. The famous xkcd method. Local wordlist.
Compare your password against a built‑in list of the 10,000 most common passwords. Instant warning if it appears.
Tell if your password has appeared in data breaches without sending the full password. Uses hash prefix locally.
Generate encrypted passwords for .htaccess basic authentication. Create .htpasswd entries using bcrypt, MD5, or SHA. Server admin utility, local compute.
Generate cryptographic and checksum hashes for any text string. Supports MD5, SHA-1, SHA-256, and CRC32. All hashing runs locally for maximum privacy.
Generate ultra-secure, random passwords with configurable length and character sets. Created entirely on your device; never transmitted or stored.