# Hash Generator

> What the Hash Generator does: MD5, SHA-1, SHA-2, SHA-3, and RIPEMD-160 hashes (incl. HMAC) for text and files — right in your browser, no upload.

Source: https://www.jpkc.com/db/en/tools/hash/

## Hashes for text and files — all in the browser

The [Hash Generator](https://www.jpkc.com/tools/hash/) computes cryptographic hashes (checksums) for arbitrary text and for whole files. You type a message or drop a file into the tool, pick an algorithm — and get the hash back as a hexadecimal string you can copy straight away.

A hash is a digital fingerprint: the same input always produces the same hash, and changing a single character produces a completely different value. That's exactly why hashes are ideal for verifying the **integrity** of downloads, backups, or documents, comparing values, or producing an **HMAC** for keyed message authentication.

The tool is built for everyone who works with data integrity and checksums: **developers** who need to double-check a file checksum quickly; **admins** matching a downloaded build against its published SHA-256 value; and anyone who needs an HMAC for an API signature or a webhook. No account, no installation, no server upload.

## Client-side — your data never leaves the browser

This is the key point: all hashes are computed **locally in your browser**. Text hashing runs through the JavaScript library **CryptoJS**; file hashing additionally uses the browser's native **Web Crypto API**. Neither your message nor your file is ever sent to a server — even a 100 MB file is processed entirely on your own machine.

The **only** server feature is the optional passphrase generator behind the key icon: it calls a small endpoint that produces a random string via a cryptographically secure generator (`random_int`), which you can use as an HMAC key. The content you hash is never involved.

## Which algorithms are available

For **text**, these algorithms are available as buttons, each with hex output:

- **MD5** — fast but cryptographically broken (use as a checksum only).
- **SHA-1** — also broken, kept only for compatibility/checksums.
- **SHA-2 family**: **SHA-224**, **SHA-256**, **SHA-384**, **SHA-512** — today's standard for integrity.
- **SHA-3 family**: **SHA-3 (224)**, **SHA-3 (256)**, **SHA-3 (384)**, **SHA-3 (512)** — the modern standard built on a different construction (Keccak).
- **RIPEMD-160** — a 160-bit alternative, known from the crypto space among others.

Almost every algorithm also has an **HMAC** variant (Keyed-Hash Message Authentication Code), which combines the hash with a secret key: HMAC-MD5, HMAC-SHA-1, HMAC-SHA-224/256/384/512, HMAC-SHA-3, and HMAC-RIPEMD-160. The **file hashing** computes eight checksums at once (MD5, SHA-1, SHA-256, SHA-384, SHA-512, SHA-3 (256), SHA-3 (512), RIPEMD-160). Exactly which button does what is covered in the [manual](https://www.jpkc.com/db/en/tools/hash/manual/).

## Try it now

**[→ Open the Hash Generator](https://www.jpkc.com/tools/hash/)** — type text or drop a file, pick an algorithm, copy the hash. Free, no account, entirely in the browser.

## Related JPKCom tools

Hashing is just one part of the crypto toolbox — these tools complement it:

- **[Generator](https://www.jpkc.com/db/en/tools/generator/)** — for **password hashing** with BCrypt/Argon2, TOTP codes, and passwords. Important: to store passwords you need exactly that, **not** MD5/SHA from this tool.
- **[Cryptor](https://www.jpkc.com/db/en/tools/cryptor/)** — for actual **encryption and decryption** (hashing is not encryption; see [tips](https://www.jpkc.com/db/en/tools/hash/tips/)).
- **[PKI](https://www.jpkc.com/db/en/tools/pki/)** — for certificates, key pairs, and signatures.

---

There's more on the subpages: the **[manual](https://www.jpkc.com/db/en/tools/hash/manual/)** with every algorithm and every input/output option, hands-on **[examples](https://www.jpkc.com/db/en/tools/hash/examples/)**, and **[tips & tricks](https://www.jpkc.com/db/en/tools/hash/tips/)** with the all-important security context.