Security / Crypto Tools

Generate cryptographic hashes with streaming

Generate HMAC with multiple algorithms

Encode a JWT token from header, payload, and secret

Generate bcrypt hashes and verify passwords against hashes

Generate HMAC signatures using SHA-256, SHA-512, and more

Analyze password strength with entropy and crack-time estimates

Generate time-based one-time passwords from a secret key

Decode Base64-encoded SAML responses into readable XML

Generate PKCE parameters with S256/plain support, state, and nonce. Includes OAuth flow examples

Calculate the fingerprint of an SSH public key

Decode PEM-encoded Certificate Signing Requests

Scan text/code for leaked API keys, tokens, and credentials

Generate RSA public/private keypairs in PEM format

Decode JWT + show iat / nbf / exp as ISO + delta from now

AES-256-GCM encryption with authenticated ciphertext (iv:tag:body)

Classic Caesar-13 substitution — encrypt and decrypt are the same op

Shift letters by any N positions (±26) — enc/dec with custom shift

Polyalphabetic cipher using a keyword — stronger than Caesar

Hebrew alphabet substitution — A↔Z, B↔Y — self-inverse

Transposition cipher in a zig-zag pattern across N rails — enc/dec

Analyze password strength with recommendations

Calculate file hashes (MD5, SHA256, SHA512, etc)

Parse and validate OAuth tokens with claims extraction and expiration analysis

Interactive JWT debugger with encoding, decoding, and verification

Parse X.509 SSL certificates with full metadata and validity checking

Analyze TLS cipher suites and security strength recommendations

Parse and validate PGP/GPG keys with fingerprint and user ID extraction

Convert between SSH key formats (OpenSSH, PEM, PuTTY) with validation

Calculate password/string entropy and strength metrics with detailed analysis

Simulate bcrypt hashing with configurable rounds and cost analysis

Simulate Argon2 password hashing with time/memory cost configuration

Generate self-signed TLS certificates with custom CN, validity, and key size configuration

Generate Certificate Signing Requests (CSR) for CAs with subject information

Generate RSA or EC key pairs with configurable key size and curve

Verify RSA/EC cryptographic signatures with public key validation

Verify HMAC-SHA256 signatures with constant-time comparison analysis

Verify file/content hash integrity with algorithm detection and mismatch reporting

Validate certificate chains for completeness, signatures, dates, and trust paths

Check Certificate Revocation Lists (CRL) for certificate revocation status

Simulate Online Certificate Status Protocol (OCSP) responses for real-time revocation checking

Validate certificate pinning configurations and verify public key hash pins

Detect potential SQL injection vulnerabilities in query strings