Hash Generator

Generate SHA-256, SHA-384, and SHA-512 hashes for text and files — securely in your browser.

100% Browser-Based

Files Never Leave Your Device

No Server Uploads

Zero Data Collection

Use Hash Generator to create SHA-256, SHA-384, or SHA-512 digests for text and files. Hashes are one-way comparison values for integrity checks, cache keys, release verification, and change detection. They are not encryption, they cannot hide sensitive low-entropy values, and raw SHA hashes should not be used alone for password storage.

When to use this tool

Compare a downloaded file with a publisher-supplied SHA-256 checksum.
Generate a digest for a release artifact or static file during QA.
Confirm that copied text or a local file has not changed unexpectedly.
Create non-secret identifiers where a one-way comparison value is useful.

Common issues and fixes

The hash does not match the expected value

Check that the exact same bytes were hashed, including line endings, encoding, and any trailing spaces.

A text hash changes after copy paste

Look for smart quotes, hidden whitespace, different Unicode normalization, or newline differences.

A hash is mistaken for encryption

Hashes cannot be decrypted, but weak or guessable inputs can still be brute-forced. Use encryption or secret storage when confidentiality matters.

Password storage is planned with raw SHA

Use Argon2id, bcrypt, or scrypt with salts instead of raw SHA hashes for passwords.

Privacy note

Hashing runs in the browser for normal text and file inputs. Avoid dropping confidential files on shared devices, and remember that hashing sensitive low-entropy values does not make them safe to publish.

Related workflow

Choose text or file input
Use the exact content you want to verify and avoid editing it after generating the digest.
Select the hash algorithm
Use SHA-256 for common checksum comparisons unless a project specifically publishes SHA-384 or SHA-512.
Compare carefully
Match the full digest character by character and recheck line endings or file versions if it differs.

Examples

Download verification

Hash an installer or archive and compare the SHA-256 digest with the value published by the maintainer.

Text integrity check

Hash a configuration snippet before and after transfer to confirm it did not change.

Frequently Asked Questions

Is MD5 still safe to use?

MD5 is cryptographically broken — collisions can be generated in seconds. However, it's still fine for non-security uses like checksums, cache keys, and deduplication where collision resistance against adversaries isn't required.

What's the difference between hashing and encryption?

Hashing is a one-way function: you cannot recover the input from the output. Encryption is two-way: data can be decrypted with the correct key. Use hashing for verification (passwords, integrity checks), encryption for confidentiality.

Which hash algorithm should I use for password storage?

Never use raw SHA-256 or MD5 for passwords. Use purpose-built algorithms: Argon2id (recommended), bcrypt, or scrypt. These are deliberately slow and include salt to resist brute-force and rainbow table attacks.

What does 'salting' a hash mean?

A salt is random data added to the input before hashing. It ensures that identical inputs produce different hashes, preventing rainbow table attacks and making brute-force attacks much harder.

How do I verify file integrity with a hash?

Generate a hash (SHA-256 recommended) of the downloaded file and compare it to the hash published by the source. If they match, the file hasn't been tampered with or corrupted during transfer.

Can I reverse a hash back to the original text?

No. Cryptographic hashes are one-way digests. You can compare a new digest with a known digest, but the tool is not designed to recover the original input from the hash value.

Is a hash enough for password storage?

No. Password storage should use a slow password hashing algorithm with a unique salt, such as Argon2, bcrypt, or scrypt. General digests like SHA-256 are useful for checksums, not complete password storage.

Why does a tiny input change create a different digest?

Cryptographic hash functions are designed so small input changes produce very different output. This avalanche behavior helps detect accidental edits, copy errors, and tampering when comparing known digests.

What should I avoid pasting into the hash tool?

Avoid real passwords, recovery codes, private keys, customer identifiers, and confidential documents. Even if hashing runs in the browser, sensitive source text can still be exposed through screen sharing, clipboard history, or local device logs.

Common issues and fixes

The hash does not match the expected value

Check that the exact same bytes were hashed, including line endings, encoding, and any trailing spaces.

A text hash changes after copy paste

Look for smart quotes, hidden whitespace, different Unicode normalization, or newline differences.

A hash is mistaken for encryption

Hashes cannot be decrypted, but weak or guessable inputs can still be brute-forced. Use encryption or secret storage when confidentiality matters.

Password storage is planned with raw SHA

Use Argon2id, bcrypt, or scrypt with salts instead of raw SHA hashes for passwords.

Related workflow

Choose text or file input

Use the exact content you want to verify and avoid editing it after generating the digest.

Select the hash algorithm

Use SHA-256 for common checksum comparisons unless a project specifically publishes SHA-384 or SHA-512.

Compare carefully

Match the full digest character by character and recheck line endings or file versions if it differs.

Frequently Asked Questions

Is MD5 still safe to use?

What's the difference between hashing and encryption?

Which hash algorithm should I use for password storage?

What does 'salting' a hash mean?

A salt is random data added to the input before hashing. It ensures that identical inputs produce different hashes, preventing rainbow table attacks and making brute-force attacks much harder.

How do I verify file integrity with a hash?

Generate a hash (SHA-256 recommended) of the downloaded file and compare it to the hash published by the source. If they match, the file hasn't been tampered with or corrupted during transfer.

Can I reverse a hash back to the original text?

No. Cryptographic hashes are one-way digests. You can compare a new digest with a known digest, but the tool is not designed to recover the original input from the hash value.

Is a hash enough for password storage?

Why does a tiny input change create a different digest?

What should I avoid pasting into the hash tool?

Hash Generator

When to use this tool

Common issues and fixes

The hash does not match the expected value

A text hash changes after copy paste

A hash is mistaken for encryption

Password storage is planned with raw SHA

Privacy note

Related workflow

Choose text or file input

Select the hash algorithm

Compare carefully

Examples

Download verification

Text integrity check

Frequently Asked Questions

Related Tools

Hash Generator

When to use this tool

Common issues and fixes

The hash does not match the expected value

A text hash changes after copy paste

A hash is mistaken for encryption

Password storage is planned with raw SHA

Privacy note

Related workflow

Choose text or file input

Select the hash algorithm

Compare carefully

Examples

Download verification

Text integrity check

Frequently Asked Questions

Related Tools