Hash Generator

Every algorithm in this tool produces a fixed-size digest, but the sizes differ significantly: MD5 outputs 128 bits (32 hex chars), SHA-1 outputs 160 bits (40 hex chars), SHA-256 outputs 256 bits (64 hex chars), and SHA-512 outputs 512 bits (128 hex chars). This tool computes all four simultaneously so you can compare results without running separate commands. HMAC signatures built on these algorithms are also used in JSON Web Tokens — decode and verify them with our JWT tool.

SHA-1, SHA-256, and SHA-512 are computed using the browser's built-in Web Crypto API, which provides hardware-accelerated, constant-time implementations. MD5 is computed using the spark-md5 library, since the Web Crypto API does not support MD5. On a typical machine, SHA-256 hashes text at several hundred MB/s through Web Crypto, while spark-md5 processes MD5 at roughly 200-400 MB/s in JavaScript. SHA-1 is included for compatibility but should not be used for security-critical purposes, as it is considered broken.

The File tab accepts drag-and-drop or file browsing and hashes file contents directly — useful for verifying downloads. The Compare tab checks whether two hash strings match (case-insensitive). The HMAC tab generates keyed-hash message authentication codes using SHA-1, SHA-256, or SHA-512.

All processing runs client-side. Your text, files, and secrets never leave your browser. For encoding binary hash output as text, use the Base64 encoder. Need a secure random string instead? Try the Password Generator.

1. In Text mode, type or paste text. All four hash digests appear instantly.
2. In File mode, drag and drop a file or click browse. The file is hashed entirely in your browser.
3. In Compare mode, paste two hashes to check whether they match (case-insensitive comparison).
4. In HMAC mode, enter a message, secret key, and select an algorithm. The HMAC updates as you type.
5. Click the copy icon next to any hash to copy it to your clipboard.