Encrypt and Decrypt Text With a Password
Lock a message behind a password, or unlock one you received. The text is encrypted with AES-GCM using a key derived from your password, all inside your browser, so the plaintext and password never leave your device.
How to encrypt text with a password
- Choose Encrypt, paste your text, and type a strong password.
- Click Run and copy the encrypted output to share or store.
- To read it back, choose Decrypt, paste the output, and enter the same password.
Examples
Encrypt a short note
Encrypt mode, text: 'meet at 7', password: 'hunter2'
Base64 blob such as 9pX2...== that only 'hunter2' can decrypt
Decrypt it back
Decrypt mode, paste the base64 blob, password: 'hunter2'
meet at 7
Frequently asked questions
What encryption does this use?
It uses AES-GCM with a 256-bit key. The key is derived from your password with PBKDF2 (SHA-256, 100,000 iterations) and a random salt, and each message uses a fresh random IV. The output packs the salt, IV and ciphertext together as base64.
Is this secure?
AES-GCM and PBKDF2 are standard, well-reviewed building blocks, and GCM also detects tampering. The real weak link is your password: short or common passwords can be guessed. Use a long, unique passphrase for anything sensitive.
What happens if I lose the password?
There is no recovery and no backdoor. The password is the only way to derive the key, so if you forget it the text cannot be decrypted by you or anyone else. Store the password somewhere safe before you rely on it.
Does my text or password get uploaded?
No. Encryption and decryption run locally with the browser Web Crypto API, so the plaintext, the password and the result stay on your device. Nothing is sent to a server or saved.
Why does encrypting the same text twice look different?
A new random salt and IV are generated every time, so the output changes on each run even with the same text and password. This is expected and is what keeps the encryption safe; both outputs still decrypt to the same text.
Can someone decrypt it without the right password?
Decryption fails for the wrong password or if the data was altered, and the tool reports a corrupted or wrong-password error. Only the exact password used to encrypt will recover the original text.
Related tools
Hash Generator
Generate SHA-1, SHA-256, SHA-384 and SHA-512 hashes from any text. Live, lowercase hex output that runs entirely in your browser.
Password Generator
Generate strong, random passwords online. Choose length, letters, digits, symbols and skip look-alike characters. Created in your browser, never stored.
Add Line Numbers
Add line numbers to any text online. Set the start value, step, and separator, pad numbers to align, and copy or download the result. Free and private.
Bullet List Maker
Turn lines of text into a bullet or numbered list online. Pick dash, asterisk, dot, arrow or numbers, add indent, then copy. Free and private.
Caesar Cipher
Encode and decode text with the Caesar shift cipher. Pick any shift, see the result live, and brute force all 25 shifts. Runs entirely in your browser.
Case Converter
Convert text between UPPERCASE, lowercase, Title Case, Sentence case, camelCase, PascalCase, snake_case, kebab-case and CONSTANT_CASE. Free and private.