Text Encrypt / Decrypt
Encrypt or decrypt any text with a password using AES-256-GCM. Runs entirely in your browser — nothing is ever sent to a server.
AES-256-GCM · PBKDF2 100k iterations · runs entirely in your browser
Browser-native AES-256-GCM encryption
This tool lets you encrypt any text with a password and decrypt it again — entirely
inside your browser using the Web Crypto API (crypto.subtle). No data is ever uploaded
to a server, no account is required, and the page works offline once loaded.
How it works under the hood
When you encrypt, the tool generates a cryptographically random 16-byte salt and a 12-byte IV. Your password is fed into PBKDF2 (100,000 iterations, SHA-256) together with the salt to derive a 256-bit AES key — a process that intentionally takes a fraction of a second to slow down brute-force attacks. The plaintext is then encrypted with AES-GCM, which also appends a 128-bit authentication tag so any tampering or wrong password is detected instantly on decryption.
The output is a single base64 string containing: salt | IV | ciphertext. Paste it into the Decrypt tab along with the correct password to recover the original text.
When to use this tool
- Sharing sensitive snippets — send an encrypted note over email or chat without worrying about interception.
- Storing secrets in plain-text files — encrypt API keys or credentials before committing them to a notes file.
- Quick personal vaults — protect journal entries, licence keys, or recovery codes behind a password.
Privacy guarantee
Everything runs in your browser. The plaintext, password, and ciphertext never leave your device. You can verify this by checking the Network tab in your browser's developer tools — no outbound requests are made when you click Encrypt or Decrypt.
Frequently Asked Questions
What encryption algorithm does this tool use?↓
It uses AES-256-GCM — an authenticated symmetric cipher trusted by governments and security professionals worldwide. Your password is stretched into a 256-bit key using PBKDF2 with 100,000 SHA-256 iterations and a random 16-byte salt, so brute-forcing a strong password is computationally infeasible. A random 12-byte IV is generated for every encryption, meaning the same plaintext + password pair will produce a different ciphertext each time.
Can I decrypt on another device or share the output?↓
Yes. The encrypted output is a self-contained base64 string that embeds the salt and IV alongside the ciphertext. Paste it into the Decrypt tab on any device running this tool, enter the same password, and the original text is recovered. No state is stored anywhere — the tool is entirely stateless.
What happens if I enter the wrong password?↓
AES-GCM includes an authentication tag that verifies both the key and the data integrity. If you supply the wrong password, decryption will fail immediately with a clear error — no partial or garbled output will be shown. This also protects against tampered ciphertext.