Security

Security utilities for JWT inspection, strong password generation, Hash digests, and HMAC signatures across authentication debugging, integrity checks, and API signing.

9 tools

Security

About this category

Authentication and integrity checks live on the surface of almost every backend integration. When a request 401s, when a webhook signature fails to verify, when a download checksum doesn't match — the answer is usually one of the same handful of primitives: a JWT, a hash digest, an HMAC signature, or a generated secret.

These tools give you a quick way to inspect those primitives without writing a script or pasting into a third-party site. Decode a token in seconds, generate a fresh password, hash a value with the algorithm the docs asked for, or recompute an HMAC to compare against the one in the header.

What you can do here

  1. JWT inspection with claim breakdown

    Decode header and payload, surface the algorithm, check expiry, and verify signatures with a copied secret or public key.

  2. Cryptographically strong passwords

    Generate passwords with explicit character classes, length, and entropy estimates for product accounts and service credentials.

  3. Hash digests across algorithms

    Compute SHA-256, SHA-1, MD5, and other digests for files and text — useful for fingerprinting, deduplication, or download verification.

  4. HMAC for API signatures

    Build HMAC-SHA256/512 signatures with text or hex keys to debug webhook verification, request signing, and OAuth flows.