$2

Bcrypt Generator

Hash passwords with bcrypt and verify them server-side. Uses PHP's password_hash().

Bcrypt truncates at 72 bytes.

10
4 (fastest)15 (slowest)

Bcrypt hashing done server-side via PHP. ⚠ Do not hash real passwords here

How Bcrypt Works

→ Automatically salted — each hash is unique even for the same password.

→ The cost factor (4–15) controls how many iterations: cost N = 2N rounds.

→ Higher cost = slower hashing = harder brute-force. Default: 10 (≈100ms on modern hardware).

→ Maximum input: 72 bytes. Longer passwords are silently truncated by bcrypt.