bcrypt
Securebcrypt is a password hashing function based on the Blowfish cipher. It includes a built-in salt and configurable cost factor, making it intentionally slow to resist brute-force attacks. It has been the industry standard for password hashing since 1999.
What is bcrypt?
bcrypt is a secure cryptographic hash algorithm that produces a 184 bits (60 character encoded string) output. bcrypt is a password hashing function based on the Blowfish cipher. It includes a built-in salt and configurable cost factor, making it intentionally slow to resist brute-force attacks. It has been the industry standard for password hashing since 1999. It is classified as slow (intentional) in performance and commonly used for password hashing and storage and user authentication systems.
Output Length
184 bits (60 character encoded string)
Speed
Slow (Intentional)
Security
Secure
Performance
Intentionally slow — designed to take ~100ms per hash with a typical cost factor. Speed is adjustable via the cost parameter.
Use Cases
- → Password hashing and storage
- → User authentication systems
- → Legacy systems that need a proven, well-understood password hash
Example Hash
Input:
MyPassword123
bcrypt Output:
$2b$12$LJ3m4ys3Lg2VYlWIGbGOs.0RwlRmySTAupJhEVkNfZgvXExWTBHaS
Try bcrypt Password Hasher
Hash and verify passwords with bcrypt directly in your browser via WebAssembly. Free, instant, and 100% private.
Try bcrypt Now →