Are passwords sent to a server?

No. Hashing and verification run entirely in your browser with bcryptjs.

What cost factor should I use?

Cost 12 is widely recommended for production; adjust upward if you need stronger resistance and can afford the latency.

New

Bcrypt Generator

Runs in browser

Generate bcrypt password hashes and verify passwords in your browser with bcryptjs. Pick a cost factor and copy hashes — your secrets never leave your device.

Password

Cost factor

Cost 12 is recommended for production.

Chain to another tool

Send this output to another tool instantly — no copy-paste needed.

Produce output above to enable chaining.

How to use

Hash a password
Open the Hash tab, enter a password, choose a cost factor, then click Generate Hash and copy the result.
Verify a password
Switch to Verify, paste the password and the stored bcrypt hash, then click Verify to see if they match.
Cost factor
Higher values take longer to compute. Start with 12 unless you have specific performance requirements.

Examples

Sample hash
Output format starts with $2a$, $2b$, or $2y$ depending on the library.
Output
```
$2a$12$…
```

Frequently asked questions

Are passwords sent to a server?: No. Hashing and verification run entirely in your browser with bcryptjs.
What cost factor should I use?: Cost 12 is widely recommended for production; adjust upward if you need stronger resistance and can afford the latency.

You might find these useful too.