Explore ciphers, digests, HMAC, JWT helpers, and identifier generators for development and learning. These tools are not audited for production security decisions.
Paste a JWT and view its header and payload decoded directly in the browser.
Recover plaintext from AES ciphertext when you supply the matching passphrase and mode
Decode legacy DES ciphertext for compatibility testing—56-bit DES is not secure today
Decrypt Rabbit stream-cipher output when you know the original secret key bytes
Decode RC4 ciphertext for legacy compatibility checks and capture-the-flag puzzles
Decrypt RC4-drop ciphertext that skips the first 256 keystream bytes before encoding
Decrypt Triple-DES (3DES) ciphertext when the same passphrase and settings were used to encrypt
Protect messages with AES symmetric encryption—the modern standard for confidential data
Encrypt with single DES for education and legacy interoperability, not production secrets
Encrypt with the Rabbit stream cipher—a fast eSTREAM portfolio algorithm for short payloads
Encrypt with RC4 stream cipher—deprecated in TLS but still found in older applications
Encrypt using RC4-drop, discarding initial keystream bytes to reduce bias attacks
Apply Triple-DES encryption by running DES three times for stronger legacy block protection
Estimate password strength with entropy-based scoring in your browser
Build a signed JWT from a JSON payload and shared secret using HMAC-SHA256 in the browser.
Validate a JWT signed with HS256 by recomputing the HMAC signature with your shared secret.
Generate cryptographically random secrets encoded as Base64 strings.
Compute an MD5 cryptographic hash digest from any text message in your browser.
Select whether the password should be easy to pronounce or complex, then click Generate to start the process
Compute a RIPEMD-160 hash digest from text for checksums and crypto use.
Create RSA self-signed X.509 TLS certificates with PEM keys in the browser.
Produce a SHA-1 hash digest from text using the SHA-1 algorithm in the browser.
Generate SHA-2 family hashes (SHA-256, SHA-384, SHA-512) from text input.
Hash messages with SHA-3 (Keccak) at selectable output bit lengths.
Generate an HMAC-MD5 hex digest from a message and secret key for older checksum schemes.
Generate an HMAC-SHA1 hex digest from a message and secret key for legacy integrations.
Generate an HMAC-SHA256 hex digest from a message and secret key—common for API signatures and webhooks.
Verify UUID string format and validity for versions 1 through 5.