Bcrypt Generator

Generate bcrypt hashes and verify passwords against bcrypt hashes locally in your browser.

Generate bcrypt hash

Use sample or test values. Avoid real production passwords.

Password or sample value

Cost factor

Input size

15 bytes

Ready to generate a bcrypt hash.

Generated hash will appear here.

Verify bcrypt hash

Compare a password with an existing bcrypt hash.

Password to testBcrypt hash

Paste a bcrypt hash and password to compare.

Password: 15 bytes
Rounds: 10
Result: Not checked

Salt

$2b$10$cCG0H5lX9aeZ7/CQF5qt3e

More security tools

Continue with nearby tools in the same workflow category.

Open category

Hash Generator

Generate SHA digests for short text snippets in the browser.

JWT Decoder

Decode JWT headers and payloads without verifying signatures.

Password Generator

Generate random passwords in the browser with adjustable rules.

HMAC Generator

Create HMAC signatures for text using SHA algorithms.

About bcrypt

Bcrypt is a slow password hashing algorithm that stores its salt and cost factor inside the hash string. This tool is for test values, examples, and local debugging.

Common uses

Generate bcrypt hashes for sample passwords
Verify whether a password matches a bcrypt hash
Inspect the cost factor and salt embedded in a hash
Create test fixtures for local authentication flows

Notes

Hashing and verification run in the browser. Avoid pasting real production passwords into any online tool, even browser-local ones.

Examples

Generate a test password hash

Enter a sample password and choose a cost factor to create a bcrypt hash for fixtures, docs, or local authentication tests.

Verify an existing hash

Paste a bcrypt hash and a candidate password to check whether they match without sending either value to the server.

FAQ

Does this bcrypt tool upload my password?Show

No. Hash generation and verification run in your browser. Still avoid pasting real production passwords into any online tool.

What cost factor should I use?Show

Cost 10 is a common testing baseline. Higher values are slower and may be more suitable for production systems after measuring your server performance.

Why does the tool warn about 72 bytes?Show

Bcrypt only uses the first 72 bytes of a password input. Longer values are truncated before hashing or comparison.

Related next tools

Use these nearby utilities when the current task is part of a larger debugging, writing, security, or site maintenance workflow.

Security