Text Encrypter & Decrypter (AES-256)
Encrypt and decrypt text with a password using AES-256 (Web Crypto). Share secrets safely — it runs in your browser and your key never leaves.
Uses AES-256-GCM with a key derived from your password via PBKDF2 (SHA-256, 600,000 iterations). Encryption and decryption happen entirely in your browser — the text and password never leave your device. There is no password recovery: if you lose the password, the text cannot be decrypted.
Encrypt a message with a password so only someone with that password can read it. This tool uses AES-256 in your browser — the text and key never leave your device — and produces a compact block you can paste into any chat or email. Switch to Decrypt to read one you received.
How to use it
No account, no upload — it all happens on your device.
How it works
Standard, well-understood cryptography.
- AES-256-GCM. A modern authenticated cipher — it both hides the message and detects any tampering, so a modified ciphertext fails to decrypt rather than returning garbage.
- PBKDF2 key derivation. Your password is stretched with 600,000 SHA-256 iterations and a random salt, which slows down brute-force guessing dramatically.
- Fresh randomness each time. A new salt and IV are generated per message, so encrypting the same text twice yields different output.
Using it safely
- Pick a strong password. The encryption is only as strong as the password — a short or common one can be guessed. Test one with the Password Strength Checker.
- Share the password separately. Never send the password in the same message as the ciphertext.
- There is no backdoor. Lost passwords mean lost messages — keep the password safe.