AES Encrypt / Decrypt Tool

📘 How to Use AES Encryption / Decryption Tool

1. Enter a password – this will be used to derive a secure AES-256 key using PBKDF2 (100,000 iterations).
2. To encrypt: type your plaintext in the left box, then click Encrypt. The encrypted result (base64-encoded, containing salt+IV+ciphertext+auth tag) appears on the right.
3. To decrypt: paste the base64 ciphertext (generated by this tool) into the left box, then click Decrypt with the same password. The original text will be restored.
4. Use Copy Result to copy the output, and Clear All to reset fields.

🔐 What is AES?

AES (Advanced Encryption Standard) is a symmetric encryption algorithm used worldwide to secure sensitive data. It operates on 128-bit blocks and supports key sizes of 128, 192, and 256 bits. This tool uses AES-256-GCM (Galois/Counter Mode), which provides both confidentiality and authentication, ensuring the encrypted data has not been tampered with.

⚙️ How It Works (Client-Side)

All encryption and decryption happen locally in your browser using the Web Crypto API. Your password is never sent to any server. The tool generates a random salt and IV for each encryption, then derives a 256-bit key using PBKDF2 with 100,000 iterations. The resulting ciphertext includes the salt, IV, and authentication tag in a single base64 string — making it portable and secure.

🔁 Why Use AES-256-GCM?

Military-grade security – AES-256 is approved for top-secret data.
Authenticated encryption – GCM mode detects any corruption or modification.
Fast and efficient – suitable for both small and large texts.
No external libraries – uses native browser cryptography.

📌 Common Use Cases

Securely share passwords or sensitive notes with trusted parties.
Protect personal data before storing it in cloud services.
Encrypt configuration files or API keys.
Learn about modern cryptography in a practical way.

💡 Example

Plaintext: Hello, this is a secret message!
Password: MyStrongPass123
Encrypted (base64, varies each time): U2FsdGVkX1+... (format includes salt+iv+tag+ciphertext)
Decryption: Using the same password returns the original message.

⚠️ Important Security Notes

Always use a strong, unique password (at least 12 characters, mix of cases, numbers, symbols).
This tool does not store your password or any data — everything stays in your browser.
The output is a self-contained encrypted string; you must keep the password safe. Without it, decryption is impossible.
For maximum security, use this tool offline or in a private/incognito window.