Overview The Hash Generator creates cryptographic hashes from text input using industry-standard algorithms. Supports MD5, SHA-1, SHA-256, SHA-512, and HMAC-SHA256. Outputs in hex, Base64, and Base64URL formats.
Use Cases
Data Integrity : Verify file and data integrity with checksumsPassword Storage : Generate password hashes (use with salt and KDF)Cache Keys : Create unique cache keys from contentDigital Signatures : Generate message digests for signingAPI Authentication : Create HMAC signatures for API requestsContent Addressing : Generate content-based identifiers
Enter any text to hash:
For file verification, paste file contents:
Provides hex (default), Base64, and Base64URL encodings:
6cd3556deb0da54bca060b4c39479839 Algorithm: SHA256 Base64: bNNVbescOlS8oGC0w5R5gz Base64URL: bNNVbescOlS8oGC0w5R5gz
Hash Algorithms MD5 128-bit hash (32 hex characters)
6cd3556deb0da54bca060b4c39479839
MD5 is cryptographically broken. Use only for non-security purposes (checksums, ETags). Never use for passwords or digital signatures.
SHA-1 160-bit hash (40 hex characters)
0a0a9f2a6772942557ab5355d76af442f8f65e01
SHA-1 is deprecated for cryptographic use. Collision attacks are practical. Use SHA-256 or SHA-512 instead.
SHA-256 (Recommended) 256-bit hash (64 hex characters)
dffd6021bb2bd5b0af676290809ec3a53191dd81c7f70a4b28688a362182986f
SHA-512 512-bit hash (128 hex characters)
374d794a95cdcfd8b35993185fef9ba368f160d8daf432d08ba9f1ed1e5abe6cc69291e0fa2fe0006a52570ef18c19def4e617c33ce52ef0a6e5fbe318cb0387
HMAC-SHA256 Hashed Message Authentication Code with SHA-256
Requires a secret key (provided in second input):
c9c87167e3ebd7c2a6b8f647d5e66e0b2c8d2f5e90c8f647d5e66e0b2c8d2f5e Algorithm: HMAC-SHA256 (key: provided) Base64: ycgxZ+Pr18Kmu49kfV5m4LLI0vXpDI9kfV5m4LLI0vXo= Base64URL: ycgxZ-Pr18Kmu49kfV5m4LLI0vXpDI9kfV5m4LLI0vXo
Examples Input: Simple Text (SHA-256)
Output
The quick brown fox jumps over the lazy dog
Input: API Request (HMAC-SHA256)
Key
Output
GET /api/users?page=1&limit=10
Input: Password (SHA-512)
Output
Output Encodings Hexadecimal (default) Lowercase hex string, widely compatible:
dffd6021bb2bd5b0af676290809ec3a53191dd81c7f70a4b28688a362182986f
Base64 Compact encoding for binary transmission:
3/1gIbsr1bCvZ2KQgJ7DpTGR3YHH9wpLKGiKNiGCmG8=
Base64URL URL-safe Base64 (no padding, - instead of +, _ instead of /):
3_1gIbsr1bCvZ2KQgJ7DpTGR3YHH9wpLKGiKNiGCmG8
Implementation Details From lib/tools/engine.ts:619-650:
case 'hash-generator' : { const key = options . secondInput || '' ; const algo = action || 'sha256' ; let digest; switch ( algo ) { case 'md5' : digest = ( await import ( "crypto-js" )). MD5 ( input ); break ; case 'sha1' : digest = ( await import ( "crypto-js" )). SHA1 ( input ); break ; case 'sha256' : digest = ( await import ( "crypto-js" )). SHA256 ( input ); break ; case 'sha512' : digest = ( await import ( "crypto-js" )). SHA512 ( input ); break ; case 'hmac-sha256' : digest = ( await import ( "crypto-js" )). HmacSHA256 ( input , key ); break ; default : digest = ( await import ( "crypto-js" )). SHA256 ( input ); } return { output : digest . toString (( await import ( "crypto-js" )). enc . Hex ), meta : [ `Algorithm: ${ algo . toUpperCase () }${ algo === 'hmac-sha256' ? ` (key: ${ key ? 'provided' : 'none' } )` : '' } ` , `Base64: ${ digest . toString (( await import ( "crypto-js" )). enc . Base64 ) } ` , `Base64URL: ${ digest . toString (( await import ( "crypto-js" )). enc . Base64 ). replaceAll ( '+' , '-' ). replaceAll ( '/' , '_' ). replaceAll ( /= + $ / g , '' ) } ` , ]. join ( ' \n ' ), }; }
Uses the crypto-js library for cross-platform hash generation. All operations run client-side in the browser.
For password storage, never use plain hashes. Use dedicated password hashing functions like bcrypt, scrypt, or Argon2 with proper salting and key derivation.
For API HMAC signatures, use the same encoding (hex, Base64, Base64URL) that your API expects. Most APIs use Base64 or hex.
