AES Encrypt / Decrypt

Encrypt and decrypt text with AES-256-GCM directly in your browser via Web Crypto API. Password-based key derivation with PBKDF2. Nothing leaves your device.

100% Client-Side Your data never leaves your browser Free · No Sign-Up
Plaintext
Ciphertext (Base64)
AES-256-GCM · PBKDF2 key derivation · random salt + IV per encryption · runs entirely in your browser

Related Tools

Hash Generator Generate MD5, SHA-1, SHA-256, SHA-384, and SHA-512 hashes from any text. JWT Decoder Decode and inspect JWT header, payload, and signature. Highlights expiry status and timestamp claims. Password Generator Generate cryptographically secure passwords. Customize length and character sets with entropy meter. HMAC Generator Generate HMAC signatures using SHA-256, SHA-384, or SHA-512. Hex and Base64 output. Runs entirely in your browser. RSA Key Pair Generator Generate RSA key pairs (2048/4096-bit) in PEM or JWK format. 100% client-side — keys never leave your browser. TOTP Generator Generate RFC 6238 TOTP codes with live countdown. Configurable algorithm, digits, and period. Includes QR code.

How to Use

  1. Enter your Password in the key field.
  2. To Encrypt: paste your plaintext in the left panel and click Encrypt. The base64-encoded ciphertext appears on the right.
  3. To Decrypt: paste the base64 ciphertext in the left panel and click Decrypt. The plaintext appears on the right.
  4. Click Copy to copy the result.

Security Notes

AES-256-GCM is computationally secure against brute-force attacks. However, the encryption is only as strong as your password. Use a long, random passphrase for sensitive data. The authentication tag in GCM means decryption will fail loudly if the ciphertext is tampered with.

What Is AES?

AES (Advanced Encryption Standard) is the symmetric encryption algorithm standardized by NIST in 2001. It secures HTTPS traffic, encrypted filesystems, and password managers worldwide. AES-256 uses a 256-bit key and 14 rounds of transformation per block.

FAQ

What encryption mode does this tool use?

AES-256-GCM (Galois/Counter Mode). GCM is an authenticated encryption mode that provides both confidentiality and integrity — any tampering with the ciphertext causes decryption to fail.

How is the key derived from my password?

The tool uses PBKDF2 with SHA-256 and 200,000 iterations to derive a 256-bit AES key from your password. A random 16-byte salt is generated per encryption and stored alongside the ciphertext.

Is the same password guaranteed to produce the same ciphertext?

No. A fresh random salt and nonce are generated each time, so encrypting the same plaintext with the same password produces different ciphertext. This is by design — it prevents pattern analysis.

Can I decrypt with a different tool?

Yes, if you know the format. The output encodes: 16-byte salt + 12-byte nonce + AES-GCM ciphertext (including the 16-byte authentication tag), base64-encoded. Any AES-256-GCM implementation that uses PBKDF2-SHA256 with 200,000 iterations can decrypt it.

Is my data sent to a server?

No. All encryption and decryption runs entirely in your browser via the Web Crypto API. Your plaintext and password never leave your device.