Generate bcrypt-style password hashes with configurable rounds for testing workflows.
Updated
Compatibility note: browser-safe pseudo-bcrypt format for testing and demos.
Quick start
Provide password, set cost rounds, and generate output.
Input password and round factor.
Create hash string for testing.
Copy hash into fixtures or local auth DB.
In-depth guide
Bcrypt is a password-hashing function built on the Blowfish cipher and designed to be deliberately slow. That slowness is the point: it makes large-scale password cracking expensive while staying fast enough for a single legitimate login. This tool generates bcrypt hashes in your browser so you can build test fixtures and understand how the cost factor and salt fit together.
A bcrypt hash looks like $2b$12$R9h/... and packs four things into one string: the algorithm version (2b), the cost factor (12), a 22-character salt and the hash itself. Because the salt is stored inside the hash, every password gets a unique salt automatically and you never store it separately.
The cost factor is a power of two: cost 12 means 212 = 4,096 key-expansion rounds. Each step up doubles the work. Pick a value that keeps a single hash around 100–250 ms on your production hardware — commonly 10 to 12 today. Use the slider here to feel how higher rounds increase the time to compute each hash.
To verify a password later, your server-side bcrypt library compares the candidate against the stored hash — you never decrypt a bcrypt hash, because it is one-way.
Use this tool for quick browser-based work when you need an answer or output immediately. Use a dedicated application or automated workflow when you need bulk processing, approvals, or repeatable production rules.
A bcrypt hash string of the form $2b$cost$salthash, suitable for test fixtures and learning how bcrypt stores its salt and cost factor inside one value.
Pick the highest value that keeps a single hash around 100–250 ms on your production hardware, commonly 10 to 12. Each step doubles the work, so cost 12 is twice as slow as cost 11.
No. Bcrypt is one-way. Verification works by hashing the candidate password with the stored salt and cost, then comparing — you never decrypt it.
Each hash embeds a unique random salt, so the same password produces different output every time. That is what stops attackers from using precomputed rainbow tables.
Yes. Bcrypt only uses the first 72 bytes of input. For longer passphrases, pre-hash with SHA-256 first, or use Argon2id which has no such limit.
No. The hash is computed locally in your browser and the password is never uploaded.
Keep exploring
Hand-picked utilities that pair well with the one you're on — all free, client-side, and zero-signup.
Encrypt and decrypt text locally with AES-256-GCM and passphrase-derived keys.
Generate signed HS256 JWTs from custom header and payload JSON locally.
Generate 6-digit rolling TOTP codes and otpauth URIs from Base32 secrets.
Shrink PDF file size without uploading to a server.
Body Mass Index with metric / imperial inputs and WHO category bands.
Combine multiple PDFs into one in your browser.
Split a PDF by pages or page ranges, download as zip.