Same answer — deprecated for security since the SHAttered attack (2017) demonstrated practical collisions. Git still uses SHA-1 for legacy compatibility but is migrating to SHA-256.

Which hash should I use today?

SHA-256 for general use. SHA-512 if you need a longer output (e.g., HMAC-SHA-512 for 256-bit security margin). Never raw SHA-256/-512 for passwords — use bcrypt/argon2/scrypt with salting.

Are my files uploaded?

No. All hashing happens in your browser. SHA family uses the built-in Web Crypto API (which is implemented natively in your browser); MD5 uses the crypto-js library (loaded as part of this page). Your file contents never leave your device.

Why does the hash output look the same length regardless of input?

That's the defining property of a cryptographic hash — fixed-size output (128 bits for MD5, 256 for SHA-256, etc.) for ANY input size. A 1-byte file and a 1-GB file both produce a 64-character SHA-256 hex string.

Hash Calculator (MD5 / SHA-1 / SHA-256 / SHA-384 / SHA-512)

Utility

Compute cryptographic hashes of text or files in your browser. All five major algorithms, no upload.

Utility

Hash Calculator (MD5 / SHA-1 / SHA-256 / SHA-384 / SHA-512)

Generated on April 25, 2026

Input

Hash file

MD5128 bits · 32 hex chars

(empty)

Legacy file checksums, ETags. Insecure for cryptography.

SHA-1160 bits · 40 hex chars

(empty)

Git commit IDs, legacy systems. Deprecated for security.

SHA-256256 bits · 64 hex chars

(empty)

Bitcoin, TLS certificates, modern integrity checks.

SHA-384384 bits · 96 hex chars

(empty)

TLS 1.3, NSA Suite B. Stronger SHA-2 variant.

SHA-512512 bits · 128 hex chars

(empty)

Server-side password hashing (with salt + bcrypt/argon2 better).

Security note: MD5 and SHA-1 are broken for cryptography (collisions can be deliberately constructed). They're still fine for non-adversarial integrity checks (file checksums, ETags). For passwords, use bcrypt / argon2 / scrypt with salting — never plain hashes.

?What is the Hash Calculator (MD5 / SHA-1 / SHA-256 / SHA-384 / SHA-512)?

The Hash Calculator computes the cryptographic digest of any text or file using the five most common algorithms: MD5 (128-bit, legacy/integrity-only), SHA-1 (160-bit, deprecated for security), SHA-256 (256-bit, the modern default), SHA-384 and SHA-512 (longer SHA-2 variants used in TLS 1.3, NSA Suite B, and high-assurance contexts). All hashing happens in your browser via the Web Crypto SubtleCrypto API (SHA family) and crypto-js (MD5) — your text and files are never uploaded anywhere. Useful for verifying file downloads against published checksums, generating ETags, debugging signed APIs, and learning how cryptographic primitives produce avalanche-effect outputs from any input.

The Formula

Hash function H(message) → fixed-size output. Cryptographic hashes are deterministic, fast, one-way, and exhibit the avalanche effect (1-bit input change flips ~50% of output bits).

Hash Algorithm Reference — Output Sizes & Use Cases

Side-by-side comparison of supported hash functions.

Algorithm	Output bits	Hex chars	Security status	Common uses
MD5	128	32	BROKEN (collisions known since 2004)	Legacy file checksums, ETags
SHA-1	160	40	DEPRECATED (collisions since 2017)	Git commit IDs, legacy systems
SHA-256	256	64	Secure (recommended default)	Bitcoin, TLS, HMAC, modern integrity
SHA-384	384	96	Secure	TLS 1.3, NSA Suite B
SHA-512	512	128	Secure	Long-output HMAC, high-assurance contexts

Practical Examples

Verify an ISO download against its published SHA-256 checksum to detect tampering or corruption.

Generate ETags for HTTP caching: hash the response body, send as `ETag: "<hash>"`.

Debug HMAC signatures in API integrations — compute the expected SHA-256 of a known payload + secret to compare.

Git uses SHA-1 for commit IDs (40-character hex strings) — paste a commit's contents to see its hash.

Bitcoin block hashing uses SHA-256 twice (SHA-256(SHA-256(block_header))).

Frequently Asked Questions

Only for non-security purposes (file integrity checks, ETags, deduplication). MD5 is broken — collisions can be deliberately constructed. Use SHA-256 for anything security-related.

Popular Conversions

Jump to a ready-made conversion — useful for quick reference and sharing:

Base Converter

Convert between binary, decimal, hexadecimal, and octal number systems.

Unix Timestamp Converter

Convert between Unix epoch timestamps and human-readable dates.

Color Converter

Convert between HEX, RGB, and HSL color formats with live preview.

Hash Calculator (MD5 / SHA-1 / SHA-256 / SHA-384 / SHA-512)

Hash Calculator (MD5 / SHA-1 / SHA-256 / SHA-384 / SHA-512)

?What is the Hash Calculator (MD5 / SHA-1 / SHA-256 / SHA-384 / SHA-512)?

The Formula

Hash Algorithm Reference — Output Sizes & Use Cases

Practical Examples

Frequently Asked Questions

Should I use MD5?

Should I use SHA-1?

Which hash should I use today?

Are my files uploaded?

Why does the hash output look the same length regardless of input?

Popular Conversions

Explore More Tools