Hash anything to SHA-256. Without uploading the file.
Paste text or drop a file to get its MD5,
SHA-1/256/384/512
and CRC32 at once — then paste an expected checksum to
verify a download's integrity. Every byte is hashed in your browser; the
file never leaves your machine.
Drop a file to hash it
any file — it is read and hashed on your device, never uploaded — or
FAQ
Is my data sent anywhere?+
No. Your text and any file you drop are read and hashed entirely in your browser — nothing is uploaded, and the expected checksum you paste to verify stays local too. We count anonymous, aggregate usage on our own server (a page view, that a hash was computed) — never your input, your file, or the digests.
Which algorithm should I use?+
For verifying a download's integrity, use whatever the publisher listed — most projects publish a SHA-256. MD5 and SHA-1 are still common for checksums but are broken for security; treat a match as "the file wasn't corrupted," not "the file is trustworthy." CRC32 is a fast non-cryptographic checksum (think zip/gzip), good only for catching accidental corruption. We compute all of them at once so you can match against any published value.
How do I verify a downloaded file?+
Drop the file here, copy the checksum the publisher posted, and paste it into the verify box. If it equals any of the computed digests you'll see a ✓ and the matching row lights up; otherwise a ✗. Because we generate MD5, SHA-1/256/384/512 and CRC32 together, you don't have to know which one they used. MD5 and CRC32 are hand-rolled here (WebCrypto omits them); the SHA family uses your browser's built-in WebCrypto. No login, no payment — this one is free.