Is it safe to use the AES Encrypt online?

Yes — and ours is safer than most. Many free online tools quietly upload your files to their servers to do the work. We don't. Everything happens inside your browser on your own device, so your files never reach the internet. There's no upload step, no server copy, and no way for us (or anyone else) to see what you're working on.

Are my files uploaded to a server?

No. There's no server-side processing here. The whole tool is a tiny app that runs in your browser — we don't even have a server that could receive your files. You can confirm this by opening your browser's network tab while you use the tool: nothing leaves your device.

Do I need to sign up or pay?

No. There's no account, no email collection, no credit card. The tool is free to use as much as you want, on as many files as you want. We're supported by a few unobtrusive ads on the page — not by your data.

Can the ciphertext be cracked?

Not without the passphrase, given enough entropy. AES-GCM is computationally infeasible to break, and PBKDF2 makes brute-forcing the passphrase very slow. Use a long, random passphrase.

Is this compatible with openssl enc?

Not directly — our format is simpler (single base64 blob with salt/IV inline). You can decrypt anywhere with this tool.

What if I lose the passphrase?

The data is gone. There's no recovery — that's the whole point of strong encryption.

AES Encrypt & Decrypt

Encrypt or decrypt text with AES-GCM 256-bit. Your passphrase is stretched via PBKDF2-SHA256 (200,000 iterations) with a random salt per message. Output is a single base64 blob containing salt, IV, and ciphertext+tag.

Features

AES-GCM 256-bit (authenticated encryption)
PBKDF2-SHA256, 200,000 iterations — slows offline attacks
Random salt + IV per message
Self-describing single-blob output: base64(salt | iv | ciphertext)
All operations via Web Crypto — no third-party libraries

How to aes encrypt & decrypt

Pick mode — Encrypt (text → ciphertext) or Decrypt.
Enter a passphrase — Strong, random, NOT a real password you use anywhere else.
Run — Output is base64 ciphertext (encrypt) or plain text (decrypt).

Frequently asked questions

Is it safe to use the AES Encrypt online?: Yes — and ours is safer than most. Many free online tools quietly upload your files to their servers to do the work. We don't. Everything happens inside your browser on your own device, so your files never reach the internet. There's no upload step, no server copy, and no way for us (or anyone else) to see what you're working on.
Are my files uploaded to a server?: No. There's no server-side processing here. The whole tool is a tiny app that runs in your browser — we don't even have a server that could receive your files. You can confirm this by opening your browser's network tab while you use the tool: nothing leaves your device.
Do I need to sign up or pay?: No. There's no account, no email collection, no credit card. The tool is free to use as much as you want, on as many files as you want. We're supported by a few unobtrusive ads on the page — not by your data.
Can the ciphertext be cracked?: Not without the passphrase, given enough entropy. AES-GCM is computationally infeasible to break, and PBKDF2 makes brute-forcing the passphrase very slow. Use a long, random passphrase.
Is this compatible with openssl enc?: Not directly — our format is simpler (single base64 blob with salt/IV inline). You can decrypt anywhere with this tool.
What if I lose the passphrase?: The data is gone. There's no recovery — that's the whole point of strong encryption.