Hash Generator
Generate SHA-1, SHA-256, SHA-384 and SHA-512 cryptographic hashes from any text.
What is a cryptographic hash?
A cryptographic hash function takes an input of any size and produces a fixed-length output (the hash or digest) that appears random. The same input always produces the same hash, but any change to the input β even a single character β produces a completely different hash. Hash functions are one-way: you cannot reverse a hash to recover the original input. This makes them fundamental to password storage, data integrity verification, and digital signatures.
SHA-256("hello") = 2cf24dba5fb0a30e26e83b2ac5b9e29e1b161e5c1fa7425e73043362938b9824
SHA-256("Hello") = 185f8db32921bd46d35cc2e70c1f05f1e92969fbd74e7f4c7f1e8ac3afa3da4b
β One capital letter = completely different hashComparing the SHA family
| Algorithm | Output size | Status | Use for |
|---|---|---|---|
| MD5 | 128 bits / 32 hex | β Deprecated | Checksums only β NOT for security |
| SHA-1 | 160 bits / 40 hex | β Deprecated | Legacy systems β NOT for new applications |
| SHA-256 | 256 bits / 64 hex | β Current | Default choice for most security applications |
| SHA-384 | 384 bits / 96 hex | β Current | Higher security margin when needed |
| SHA-512 | 512 bits / 128 hex | β Current | Maximum security; slower on 32-bit systems |
| SHA-3 (Keccak) | 224β512 bits | β Modern | Post-quantum consideration; different algorithm family |
| bcrypt/Argon2 | Variable | β Passwords only | Purpose-built for password hashing with work factor |
Do NOT use raw SHA for password storage
SHA-256 is extremely fast β which is a feature for data integrity but a vulnerability for passwords. A modern GPU can compute billions of SHA-256 hashes per second, making brute-force attacks against raw SHA password hashes trivially fast. For passwords, always use a purpose-built slow hash function: bcrypt, scrypt, or Argon2 (winner of the Password Hashing Competition). These are intentionally slow and include a built-in work factor that grows with hardware improvements.
Frequently asked questions
What is a hash function?
A hash function turns any input into a fixed-length string of characters. The same input always produces the same hash, but the process cannot be reversed to recover the original input.
Is MD5 safe to use?
Not for security. MD5 and SHA-1 are broken for cryptographic purposes and should only be used for non-security checksums. Use SHA-256 or stronger for passwords and signatures.
Can a hash be decrypted?
No. Hashing is one-way by design. Attackers can only guess inputs and compare hashes, which is why slow, salted hashing is used for passwords.
What is hashing used for?
Verifying file integrity, storing passwords securely (with salting), digital signatures, and quickly comparing or indexing data.
Generates cryptographic hash digests of any text using SHA-1, SHA-256, SHA-384 and SHA-512. Hashes are one-way: the same input always produces the same hash, but the hash cannot be reversed.
SHA family: deterministic, one-way, collision-resistant. SHA-256 most widely used.