Security Toolkit
We have added three professional-grade security utilities to DevTools. All run entirely in your browser — your passwords and sensitive text never leave your device.
Password Strength Checker
The Password Strength Checker goes beyond a simple weak/strong indicator. It calculates Shannon entropy based on character pool size and password length, detects keyboard patterns (qwerty, 1234), common passwords in a dictionary of the most-breached passwords, repeated sequences and word-plus-number patterns (like "dragon123").
The result includes estimated crack time against a GPU running 10 billion guesses per second, so you know exactly how much time your password buys you.
Bcrypt Hash Generator
The Bcrypt Hash Generator lets you hash passwords using the industry-standard bcrypt algorithm with a configurable cost factor (rounds 4-14). The higher the cost factor, the longer it takes to hash — which is the point: bcrypt is intentionally slow to thwart brute-force attacks.
The verify tab lets you check whether a plaintext password matches an existing bcrypt hash without writing any code. Useful for debugging authentication flows in local development.
Text Encryptor
The Text Encryptor uses AES-256-GCM with PBKDF2 key derivation (200,000 iterations) to encrypt any text with a password. The output is a Base64-encoded string you can safely copy and share. Only someone with the original password can decrypt it.
Technical details: 16-byte random salt + 12-byte random IV are prepended to the ciphertext. Each encryption produces a different output even for the same input and password.