OnSubmit Free and fast tools
EN
English English EN Français Français FR Español Spanish ES Deutsch German DE Italiano Italian IT
Search
6 related tools

Security tools for passwords, hashes, JWT, SHA256 and secrets

Generate passwords, calculate SHA hashes, inspect JWTs and prepare .env.example files without exposing production secrets.

View workflow tools Read the FAQ
SecretsHashTokens

Tool workflow

Tools for security and hash

Find tools to generate a password, calculate SHA256, compare MD5, decode JWT or sanitize a .env file.

Development Password Password Generator Create random test secrets or password-manager values. Open tool Development Modern hash SHA256 / SHA512 Generator Calculate SHA-256, SHA-384 or SHA-512 digests. Open tool Development Legacy hash MD5 Hash Generator Calculate MD5 for compatibility or historical checksums. Open tool Development Token JWT Decoder Decode JWT header, payload and claims. Open tool Text Encoding Base64 Encoder / Decoder Read encoded values inside tokens or payloads. Open tool Development .env secrets .env Example Generator Create safe .env.example files without real values. Open tool

Quick guide

Understand the workflow security and hash

Definition

What this workflow covers

OnSubmit security tools help generate, inspect, hash or document sensitive values in development and test contexts.

Why it matters

A useful workflow for choosing the right tool

This page connects tools and questions around the same need. It helps users choose the right tool, understand format limits and continue toward detailed pages.

Useful terms

Formats, keywords and related concepts

passwordSHA-256SHA-512MD5JWTsecret.envchecksumHMACentropysha256 generatorsecure password generatorjwt decoder freeenv example generatorhash md5 sha256

Comparison

Which tool should you use?

Need Recommended tool Why
Create a secret Password Generator Generates random values with controlled length and character sets.
Calculate modern checksum SHA256 / SHA512 SHA is more suitable than MD5 for modern integrity checks.
Inspect API session JWT Decoder Displays claims such as exp, iat, aud or sub.
Share project config .env Example Generator Masks secrets while keeping variable names documented.

Best practices

What to remember before using these tools

  • Never paste production secrets into public tools.
  • Use SHA-256 or SHA-512 for modern checksums, not MD5 for security.
  • Do not confuse JWT decoding with signature verification.
  • Document environment variables without committing real values.
  • Rotate any token or secret exposed by mistake.

Related workflows

7 tool(s) Data converters Convert, format and compare structured data for APIs, exports, configuration files, documentation and developer integrations. 7 tool(s) Test data Generate identifiers, fake profiles, addresses, banking details and company data to test interfaces without using real personal data. 6 tool(s) Banking test data Prepare fictitious banking values to test SEPA forms, IBAN/BIC fields, French RIB details, payment methods and billing workflows.

FAQ

Frequently asked questions about security and hash

What is the difference between MD5 and SHA256?

MD5 is a legacy algorithm vulnerable to collisions. SHA256 is more suitable for modern checksums.

Can I store passwords with SHA256 alone?

No. Password storage should use Argon2, bcrypt or scrypt with a salt.

Does decoding a JWT verify its signature?

No. Decoding reads content. Signature verification requires the correct key or secret.

Why generate a .env.example?

It documents required variables without exposing sensitive values.