Compute MD5 / SHA-1 / SHA-256 / SHA-384 / SHA-512 hashes, all five at once, browser-only
- Runs locally
- Category Encoding & Crypto
- Best for Checking file type, size, metadata, and obvious mismatch signals before sharing.
—————What this tool does
Free online hash generator. Paste any text and instantly see its MD5, SHA-1, SHA-256, SHA-384, and SHA-512 hex digests. Uses the browser's native WebCrypto for SHA family (FIPS-grade) and a built-in MD5 implementation. 100% client-side — your input never touches a server.
Tool details
- Input
- Text
- The page exposes text boxes, numeric controls, file pickers, or structured inputs depending on the tool.
- Output
- Live result + Copy
- The result area focuses on usable output, with copy, download, or preview actions when supported.
- Privacy
- Browser-side processing
- The main tool logic does not call an external API, so inputs normally stay in the current tab.
- Save / share
- No account required
- Open the page and use it; whether results survive refresh depends on the tool.
- Performance budget
- Initial JS <= 12 KB
- No WASM budget is declared, keeping the tool quick to open on mobile.
- Best fit
- Encoding & Crypto · Developer
- Category and role tags drive related tools, internal links, and quick fit checks.
How to use
-
1. Input
Paste or drop your content into the tool panel.
-
2. Process
Click the button. All processing is local in your browser.
-
3. Copy / Download
Copy the result or download to disk in one click.
How MD5 / SHA Hash Generator fits into your work
Use it before upload, handoff, archive, support review, or any moment where a file needs one local check before it leaves your machine.
File jobs
- Checking file type, size, metadata, and obvious mismatch signals before sharing.
- Preparing mixed folders for upload, archive, intake, or review.
- Keeping sensitive files in the browser instead of sending them to an account-based service.
File checks
- Do not treat the extension alone as proof of the real file type.
- Review metadata before a file goes to customers, vendors, or a public page.
- Keep the original file until the copied, converted, or exported result is verified.
Good next steps
These links move the current task into a more complete workflow.
- 1 Base64 Encoder & Decoder Encode or decode Base64 — text, files, and Data URLs. Runs entirely in your browser. Open
- 2 JWT Decoder Decode JWT header / payload / signature — verify structure, check exp, copy claims — browser-only Open
- 3 HMAC Generator HMAC-SHA1/256/384/512 — message + secret key, output in hex and base64, key read as UTF-8/hex/base64 — 100% in-browser Open
Real-world use cases
Verify a 4 GB ISO download matches the publisher's checksum
You grabbed an Ubuntu ISO from a mirror and want to confirm it isn't corrupted or tampered with. The release page lists a SHA-256. Run `shasum -a 256 ubuntu.iso` locally, then paste both the filename's text and compare, or paste a small manifest string here to sanity-check the format. The 64-hex SHA-256 here must match the published one character-for-character; one mismatch means re-download.
Generate a stable cache key from a config string
Your build pipeline keys a cache on the contents of a 2 KB config blob. Paste the exact config text and take the SHA-256 as the key. Because the same input always yields the same 64-char digest, two identical configs share a cache hit; one changed flag flips the whole hash, busting the cache cleanly with no manual versioning.
Fingerprint a TLS certificate to pin it
To pin a server cert in a mobile app, you need its SHA-256 fingerprint. Export the cert as text, paste it, and read the SHA-256 digest. Compare against what `openssl x509 -fingerprint -sha256` prints. Matching the 32-byte fingerprint lets you hardcode a pin so a swapped or MITM cert is rejected at handshake time.
Deduplicate 500 user-submitted snippets without storing them
You collect short text submissions and want to drop exact duplicates but never store the raw content. Hash each snippet with MD5 (fine for non-security dedup) and key a set on the 32-hex digest. Two identical snippets collide on the same MD5; you keep one copy and discard the rest, all while only retaining 16-byte fingerprints.
Common pitfalls
Using MD5 to store passwords. MD5 is collision-broken and unsalted MD5 is cracked in seconds by rainbow tables — use bcrypt or Argon2 for passwords, not any raw hash here.
Comparing only the first few hex characters. `a1b2...` matching `a1b3...` looks close but is a total mismatch; always compare the full 64-char SHA-256 or use a constant-time equals.
Forgetting the trailing newline. `echo "x"` hashes `x\n`, so your digest won't match a tool that hashes raw `x` — use `printf '%s'` or `echo -n` to be byte-exact.
Privacy
All hashing runs in your browser. SHA-1/256/384/512 use the native WebCrypto `crypto.subtle.digest`; MD5 uses a built-in JavaScript implementation. Your input text and every resulting digest stay in the tab and are never sent to a server. The input is not written to the URL, so pasting a private API key or secret to fingerprint it leaves no trace in your history or in a shareable link.
FAQ
Tool combos
Folks in your role tend to reach for these alongside this tool.
- 555 Timer Calculator Astable f = 1.44/((R1+2R2)C) + monostable t = 1.1RC — pick R1, R2, C in Ω/kΩ and µF/nF, read frequency, duty cycle and pulse width — browser-only
- Add Line Numbers Number every line of pasted text — set start, step and separator, zero-pad to align, skip blanks, or strip numbers back off — browser-only
- Age Difference Calculator The exact gap between two birthdays — years/months/days, percentage, and the date one person is twice the other's age — browser-only
- AI Eval Planner Generate eval cases, pass criteria, and edge cases from an AI feature, risks, and user path.