bcrypt Hash & Verify
Generate bcrypt hashes or verify a password against a hash, fully in-browser.
Two modes: hash a password with chosen cost rounds (4-12) to produce a $2a$… bcrypt hash, or verify a password against an existing hash. Powered by bcryptjs entirely in your browser — your password never leaves the page.
Common use cases
- Generate seed bcrypt hashes for development databases
- Verify your application's auth flow with a hand-crafted hash
- Demo bcrypt cost-vs-time trade-offs by varying the rounds
- Sanity-check that a stored hash matches an expected password
Frequently asked questions
Is it safe to test real passwords here?▾
Hashing happens locally via JavaScript and bcryptjs — no network request is made. That said, treat any password you've typed into a webpage with caution.
What cost rounds should I use?▾
10-12 is currently a reasonable default. Higher slows down both legitimate verification and brute-force attacks; lower speeds both up.
Why are bcrypt hashes ~60 chars long?▾
They include the algorithm version, cost, salt and 23-byte hash, all base64-encoded. The leading $2a$ tells verifiers it's bcrypt.
Related tools
{}
JSON Formatter & Validator
Beautify, validate and minify JSON instantly in your browser.
↔
JSON ↔ CSV Converter
Convert JSON arrays to CSV and CSV back to JSON.
B64
Base64 Encoder & Decoder
Encode and decode Base64 strings, including UTF-8 and binary.
%
URL Encoder & Decoder
Percent-encode and decode URL components safely.