HKDF & PBKDF2 Playground

Experiment with PBKDF2 password stretching and RFC 5869 HKDF extract-and-expand. Choose UTF-8 or hex inputs, set iterations (PBKDF2), salt, and info (HKDF), then copy derived bytes as hex or Base64. All derivation runs locally via the Web Crypto API.

Frequently asked questions

No. Passphrases and salts never leave the browser. Nothing is sent to LocalTools servers for processing.

It remains for legacy comparisons; prefer SHA-256+ for new designs.

Related tools

See the complete tool directory