How is the Vigenère cipher different from a Caesar cipher?

A Caesar cipher shifts every letter by one fixed number, so A always maps to the same letter and frequency analysis cracks it fast. The Vigenère cipher uses a keyword to apply a different Caesar shift to each position: the same plaintext letter encrypts to different letters depending on where it falls. With keyword KEY, the first letter shifts by K (10), the second by E (4), the third by Y (24), then it repeats. That moving target is why it is called polyalphabetic and why it held up far longer than Caesar.

How do I use the keyword?

Type any word or phrase into the keyword box, for example LEMON or SECRET. The tool keeps only its letters and ignores case, then repeats it across your message, lining up one keyword letter per plaintext letter. Each plaintext letter is shifted forward (encrypt) or backward (decrypt) by the alphabet position of its keyword letter, where A=0, B=1 and so on. A longer, less predictable keyword is harder to break than a short common word.

What does ATTACK encrypted with key LEMON produce?

Take the classic ATTACKATDAWN with keyword LEMON. The keyword repeats as LEMONLEMONLE, and each pair shifts: A+L=L, T+E=X, T+M=F, A+O=O, C+N=P, K+L=V, A+E=E, T+M=F, D+O=R, A+N=N, W+L=H, N+E=R. The result is LXFOPVEFRNHR. Switch to Decrypt with the same keyword and LXFOPVEFRNHR turns back into ATTACKATDAWN. Try it in the box above to watch the running key line up.

How are spaces, numbers and Chinese characters handled?

Only Latin letters are shifted; everything else is copied through unchanged, and it does not consume a keyword position. So 'Hi, Bob! 你好' encrypted with KEY shifts H, i, B, o, b using K, E, Y, K, E in order, while the comma, space, exclamation mark and 你好 stay put without using up keyword letters. This is the standard behaviour and it matters: if non-letters advanced the key, decryption would drift out of alignment and produce garbage.

Is the Vigenère cipher secure? Can it be broken?

No, do not use it for anything that needs real protection. It resisted attack for about 300 years and earned the nickname 'le chiffre indéchiffrable', but the Kasiski examination (1863) and Friedman test break it by finding the keyword length from repeated patterns, then cracking each position as a simple Caesar. For genuine confidentiality use modern encryption such as AES. Vigenère is a teaching tool, a puzzle and CTF staple, and a fun way to understand how polyalphabetic ciphers work.

Solve a Vigenère CTF or puzzle challenge

A CTF gives you a blob of ciphertext and a hint that the key is a band name. Paste the ciphertext, set mode to Decrypt, and try keywords until the plaintext reads as English and the flag pops out. The running-key view shows you exactly how each guess lines up, so you can spot when a partial key is close before committing to the whole word.

Teach polyalphabetic ciphers in a classroom

Explaining why Vigenère beat Caesar is far easier when students can type ATTACKATDAWN with LEMON and watch it become LXFOPVEFRNHR, then decrypt it back. The per-letter running key makes the "different shift per position" idea concrete instead of abstract, and the shareable URL lets you hand the whole worked example to the class in one link.

Pass a low-stakes note your friends can decode

For a scavenger hunt, escape room clue, or an inside joke, encrypt a short message with a keyword you both know. Anyone without the keyword sees noise; your friend types the same word and reads it back. It is not real security, but for a fun, reversible obfuscation that needs no app install, a shared keyword is perfect.

Verify your own Vigenère implementation

Writing a cipher in Python, Rust or JavaScript? Use this tool as a reference oracle. Feed the classic ATTACKATDAWN + LEMON vector and confirm you get LXFOPVEFRNHR, then test how your code treats spaces and punctuation against this tool's "skip non-letters without consuming the key" behaviour, which is the standard most test vectors assume.

Vigenère Cipher: Keyword Encrypt and Decrypt

Encrypt and decrypt with a keyword, polyalphabetic shift, case kept, non-letters passed through, browser-only

Runs locally
Category Encoding & Crypto
Best for Checking small payloads, tokens, hashes, and encoded values quickly.

Vigenère cipher. Each letter is shifted by the next letter of a repeating keyword (A=0, B=1 …). Case is kept; digits, spaces, punctuation and non-Latin text pass through and do not consume the keyword. Decrypt reverses the direction. Classic: ATTACKATDAWN + LEMON → LXFOPVEFRNHR.

Keyword

Enter a keyword to start — letters only, case ignored.

Input0 chars

Output0 chars

Encrypted / decrypted text appears here.

What this tool does

Free Vigenère cipher tool that encrypts and decrypts text with a keyword, right in your browser. The Vigenère cipher is a polyalphabetic substitution cipher: instead of one fixed Caesar shift, each letter of your message is shifted by the next letter of a repeating keyword. With keyword LEMON, ATTACKATDAWN becomes LXFOPVEFRNHR, the textbook example that stumped cryptanalysts for three centuries before Kasiski broke it. Paste any text, type a keyword, and flip between Encrypt and Decrypt. Only A–Z and a–z are shifted and their case is preserved; digits, spaces, punctuation, emoji and Chinese characters pass straight through and, importantly, do not advance the keyword pointer, so the running key stays aligned with the actual letters. A live running-key view shows exactly which keyword letter shifted each character. One-click copy and a shareable URL that reopens your exact text, keyword and mode. 100% client-side, nothing is uploaded.

Tool details

Input: Text; The page exposes text boxes, numeric controls, file pickers, or structured inputs depending on the tool.
Output: Live result + Copy; The result area focuses on usable output, with copy, download, or preview actions when supported.
Privacy: Browser-side processing; The main tool logic does not call an external API, so inputs normally stay in the current tab.
Save / share: Shareable URL state; Key settings are encoded in the URL so another person can reopen the same setup.
Performance budget: Initial JS <= 9 KB; No WASM budget is declared, keeping the tool quick to open on mobile.
Best fit: Encoding & Crypto · Student; Category and role tags drive related tools, internal links, and quick fit checks.

How to use

1. Input

Paste or drop your content into the tool panel.
2. Process

Click the button. All processing is local in your browser.
3. Copy / Download

Copy the result or download to disk in one click.

How Vigenère Cipher Encoder / Decoder fits into your work

Use it for quick browser-side encoding, decoding, hashing, token checks, and share-safe transformations.

Encoding jobs

Checking small payloads, tokens, hashes, and encoded values quickly.
Preparing values for APIs, URLs, docs, or support tickets.
Avoiding account-based tools when the input might be sensitive.

Encoding checks

Do not paste live secrets unless you are comfortable with local browser handling.
Confirm whether the operation is reversible before sharing the result.
For hashes, compare the exact algorithm and casing expected by the receiver.

Good next steps

These links move the current task into a more complete workflow.

Real-world use cases

Solve a Vigenère CTF or puzzle challenge
A CTF gives you a blob of ciphertext and a hint that the key is a band name. Paste the ciphertext, set mode to Decrypt, and try keywords until the plaintext reads as English and the flag pops out. The running-key view shows you exactly how each guess lines up, so you can spot when a partial key is close before committing to the whole word.
Teach polyalphabetic ciphers in a classroom
Explaining why Vigenère beat Caesar is far easier when students can type ATTACKATDAWN with LEMON and watch it become LXFOPVEFRNHR, then decrypt it back. The per-letter running key makes the "different shift per position" idea concrete instead of abstract, and the shareable URL lets you hand the whole worked example to the class in one link.
Pass a low-stakes note your friends can decode
For a scavenger hunt, escape room clue, or an inside joke, encrypt a short message with a keyword you both know. Anyone without the keyword sees noise; your friend types the same word and reads it back. It is not real security, but for a fun, reversible obfuscation that needs no app install, a shared keyword is perfect.
Verify your own Vigenère implementation
Writing a cipher in Python, Rust or JavaScript? Use this tool as a reference oracle. Feed the classic ATTACKATDAWN + LEMON vector and confirm you get LXFOPVEFRNHR, then test how your code treats spaces and punctuation against this tool's "skip non-letters without consuming the key" behaviour, which is the standard most test vectors assume.

Common pitfalls

Letting non-letters consume the keyword. If a space or comma advances the key pointer, the running key drifts and decryption fails. The standard behaviour, which this tool follows, is to copy non-letters through untouched and only step the key on actual letters.
Mixing up encrypt and decrypt direction. Encrypting shifts forward by the key letter; decrypting shifts backward by the same amount. Using Encrypt mode on ciphertext just scrambles it further. Make sure the mode matches the operation you want.
Using a too-short or too-obvious keyword. A one-letter keyword is just a Caesar cipher, and a short common word like CAT is quick to brute force. The longer and less predictable the keyword, the harder the message is to break, though Vigenère is never truly secure.

Privacy

The entire cipher runs as plain JavaScript inside your browser tab. Your text, your keyword and the result never leave the page and nothing is logged. The one caveat: the shareable URL encodes your text, keyword and mode in the query string, so a "share link" pasted into chat will record them in the recipient server's access log. For anything you would rather not expose, use the copy button and paste the text instead of sharing the URL, and remember that Vigenère is not real encryption either way.

FAQ

Tool combos

Folks in your role tend to reach for these alongside this tool.

Browse all tools for this role

Vigenère Cipher: Keyword Encrypt and Decrypt

What this tool does

Tool details

How to use

1. Input

2. Process

3. Copy / Download

How Vigenère Cipher Encoder / Decoder fits into your work

Encoding jobs

Encoding checks

Good next steps

Real-world use cases

Solve a Vigenère CTF or puzzle challenge

Teach polyalphabetic ciphers in a classroom

Pass a low-stakes note your friends can decode

Verify your own Vigenère implementation

Common pitfalls

Privacy

FAQ

Caesar Cipher Encoder & Decoder

ROT13 Encoder & Decoder

Morse Code Translator

AES Text Encryptor

Affine Cipher Encoder & Decoder

Atbash Cipher

Bacon Cipher Encoder & Decoder

Base32 / Base58 Encoder & Decoder

Base62 Encoder & Decoder

Base64 Block Deduplicator

Base64 Block Extractor

Base64 Block List Converter