Password hashing · Client-side

bcrypt Text Hash Generator

Produce bcrypt password hashes with full control over the cost factor and salt handling. Run everything in the browser to keep sensitive values local. Need file support? Switch to thebcrypt file tool →

Text bcrypt hash

Generate bcrypt password hashes with custom cost factors and salts. Remember that bcrypt only processes the first 72 bytes of the input.

Password or phrase

Current length: 0 characters

bcrypt hash

Enter a password and click Generate to produce a bcrypt hash.

Salt in base64

Keep the salt together with the hash so you can validate passwords in the future.

Hash validation

Enter a target hash to validate.

Cost factor (log rounds)

Higher costs slow down hashing but improve resistance to brute force attacks. Typical values range from 10 to 14.

Salt (optional)

Leave blank to auto-generate a random 16-byte salt. Provide a salt to reproduce hashes deterministically.

bcrypt overview

bcrypt is deliberately slow to hamper brute-force attacks. The cost factor controls how many rounds are run (specifically 2^cost iterations). Bumping the cost by 1 roughly doubles the runtime, so scale it to match the responsiveness you need on your deployment hardware.

Salts are fixed-size 16-byte values that must be random and unique per hash to defend against rainbow tables. This tool generates salts automatically, but you can also paste a known base64 or hex salt to reproduce an existing hash deterministically. Always store the salt alongside the hash.

Need file-based hashing? Switch to the file-oriented bcrypt tool to process uploaded content with the same controls. Remember that bcrypt only uses the first 72 bytes of input—longer passwords should be prefixed with a hash if you require full-entropy coverage.