Security Tools Online - Password Generator & SSL Decoder
Ai Image ScannerAI
Scan images for hidden text, steganography, and prompt injection attacks. Detect adversarial content before it reaches your AI systems.
Apache Htpasswd
Generate Apache htpasswd entries with MD5, SHA1, bcrypt, or crypt algorithms. Create secure .htpasswd files for HTTP authentication. Browser-based tool.
Api Key Generator
Generate secure API keys and tokens for your applications. Multiple formats available. Cryptographically random. Free, private, works offline.
Caddy Htpasswd
Generate bcrypt password hashes for Caddy basicauth. Copy-paste ready Caddyfile credentials. Same output as 'caddy hash-password' command.
Credit Card Validator
Validate credit card numbers using the Luhn algorithm. Detect card type (Visa, Mastercard, Amex). For testing only - never enter real card numbers online.
Csr Decoder
Decode CSR files to view subject, public key, and signature details. Verify CSR content before submitting to certificate authority. Browser-based.
Email Validator
Validate email addresses for correct format and syntax. Check for common typos, disposable domains, and RFC compliance. Fast, private, browser-only.
Haproxy Htpasswd
Generate password hashes for HAProxy userlist authentication. Create SHA-256, SHA-512, or MD5 credentials for http-request auth. Browser-based tool.
Iban Validator
Validate and decode IBAN numbers instantly. Verify mod-97 checksum, extract country, bank code, and account details. Supports 100+ countries. Free online tool.
IMEI Validator
Validate any IMEI number instantly with Luhn checksum verification. Decode manufacturer TAC code, spot counterfeit devices. Works for iPhone, Samsung, and more.
Jwt Decoder
Decode JWT tokens to see header, payload, and signature. Verify token validity and expiration. Free, private, works offline.
Jwt Generator
Generate JWT tokens with custom claims and expiration. Sign with HS256/HS384/HS512 algorithms. Test authentication flows. Free and private.
Lighttpd Htpasswd
Generate password hashes for Lighttpd mod_auth. Create htdigest MD5 or htpasswd plain/crypt credentials. Browser-based, no server upload.
Nginx Htpasswd
Generate password hashes for Nginx auth_basic. Create .htpasswd files with APR1-MD5, bcrypt, or SHA-512 crypt. Secure browser-based tool.
Oauth Scope Analyzer
Analyze OAuth scopes and permissions from tokens or scope strings. Understand what access levels each scope grants. Private, browser-based tool.
Oauth Token Decoder
Decode and inspect OAuth 2.0 tokens. Analyze JWT access tokens, check expiration, view claims and scopes. Browser-based, private, no server.
Oidc Token Decoder
Decode OpenID Connect ID tokens to view claims, verify expiration, check issuer and audience. Supports Auth0, Okta, Azure AD. Browser-based, private tool.
Password Generator
Generate secure random passwords with customizable length and character sets. Uses cryptographic randomness. Fast, private, works entirely in your browser.
Password Strength
Check password strength with detailed analysis. See crack time estimates, identify weaknesses, get improvement tips. 100% private, browser-only.
Phone Validator
Validate phone numbers for any country with format checking. Detects country, carrier type, shows E.164 format. Browser-only, completely private.
Saml Decoder
Decode and analyze SAML tokens, assertions, and responses. View XML structure, attributes, and signature info. Perfect for SSO debugging and integration.
Ssh Config Generator
Generate SSH config entries for servers and jump hosts. Create Host blocks with aliases, keys, and ProxyJump settings. Simplify SSH connections.
Ssh Key Decoder
Decode SSH public keys to view key type, size, fingerprint, and comment. Parse authorized_keys format. Supports RSA, ECDSA, Ed25519. Browser-based decoder.
Ssl Certificate Decoder
Decode and inspect SSL/TLS certificates. View subject, issuer, validity, SANs, and key details. Paste PEM or fetch from any domain. Browser-based tool.
Traefik Htpasswd
Generate password hashes for Traefik basicauth middleware. Create MD5, bcrypt, or SHA1 credentials for Docker labels and file providers. Browser-based tool.
Url Validator
Validate URLs for correct format, protocol, and potential security issues. Detect suspicious patterns and phishing indicators. Browser-only, private.
Secure Random Generation
True randomness is essential for security. Predictable passwords and keys can be guessed by attackers. Our generators use the Web Crypto API — the same cryptographic foundation used by browsers for HTTPS — to ensure unpredictable output.
Password Generation
Strong passwords resist brute-force attacks through length and complexity. A 12-character password with mixed case, numbers, and symbols has roughly 10^22 possible combinations. Our generator creates passwords of any length using upper, lower, numbers, and symbols. Passwords never leave your browser.
SSL/TLS Certificate Decoding
SSL certificates contain the domain, issuer, validity period, public key, and signature algorithm. Our decoder presents all certificate fields in readable format — useful for verifying certificate chains, checking expiration dates, and auditing security configurations.
SSH Key Analysis
SSH public keys identify users and servers. Our decoder extracts the algorithm (RSA, Ed25519, ECDSA), key strength in bits, fingerprint, and optional comment from any SSH public key format.
Why Browser-Based?
Server-side password generators require trusting that the server doesn't log or store generated passwords. Browser-based generation eliminates this risk — your passwords exist only in your browser memory and are never transmitted.