Bcrypt Hash Generator & Verifier
Generate and verify bcrypt hashes online. Configurable salt rounds.
Higher salt rounds = more secure but slower. 10–12 is typical for web apps.
About Bcrypt Hash Generator & Verifier
Generate a bcrypt hash from any string with configurable salt rounds (4–14), or verify a plain-text password against an existing bcrypt hash. Shows the hash generation time to help you choose the right cost factor. Runs in your browser using a pure-JavaScript bcrypt implementation — your passwords never leave your device.
All processing happens entirely in your browser using modern web APIs. Nothing is uploaded to our servers — your data stays local and private. Free to use forever.
Common use cases
- Testing bcrypt hash generation with different salt rounds for performance tuning
- Verifying that a password matches a bcrypt hash in development
- Generating test hashes for seeding a user database with known passwords
- Understanding the relationship between salt rounds and compute time
- Checking bcrypt hashes from application logs during debugging
How it works
Uses the bcryptjs library compiled to run in the browser. bcrypt works by: (1) generating a cryptographically random 16-byte salt, (2) hashing the password with the salt using the Eksblowfish key setup algorithm, repeated 2^rounds times. The result is a 60-character string encoding the algorithm version, cost factor, salt, and hash together.