What algorithm is used?

AES-256-GCM with PBKDF2 key derivation (SHA-256, 100 000 iterations, random 16-byte salt). The IV is 12 bytes, randomly generated per encryption.

Is my data sent to a server?

No. All encryption and decryption happens in your browser using the Web Crypto API.

What is the output format?

The output is a Base64 string encoding: 16-byte salt + 12-byte IV + ciphertext. The decrypt tab unpacks these automatically.

AES Encrypt / Decrypt

Encrypt and decrypt text with AES-GCM using a password. Runs entirely in your browser.

Plaintext

Password

Related Tools

#Hash Generator

Generate SHA-1, SHA-256, SHA-384, and SHA-512 cryptographic hashes from any text.

#HMAC Generator

Generate HMAC-SHA-256/384/512 message authentication codes using a secret key.

#PBKDF2 Hash Generator

Derive a key from a password using PBKDF2 (SHA-256). Configure salt and iterations.

FAQ

What algorithm is used?: AES-256-GCM with PBKDF2 key derivation (SHA-256, 100 000 iterations, random 16-byte salt). The IV is 12 bytes, randomly generated per encryption.
Is my data sent to a server?: No. All encryption and decryption happens in your browser using the Web Crypto API.
What is the output format?: The output is a Base64 string encoding: 16-byte salt + 12-byte IV + ciphertext. The decrypt tab unpacks these automatically.

Encrypt plaintext using AES-256-GCM with a password-derived key (PBKDF2). The output is a Base64 string containing the salt, IV, and ciphertext packed together. Decrypt by pasting that Base64 string with the same password. All cryptographic operations use the browser Web Crypto API — nothing is sent to a server.