أداة: Bcrypt generator
ما الذي يقدمه هذا القسم
Bcrypt is a password-hashing function: slow by design, embeds a salt, and stores cost (work factor) metadata so you can raise difficulty as hardware improves. Output strings look like $2y$... families depending on library—never confuse them with a single-round SHA digest. You hash passwords, not general file checksums; for checksums use SHA-2. Never paste live production passwords into third-party pages—use offline tooling or your framework CLI for real secrets.
متى تستخدمها
Use this page to learn formatting, compare cost settings in tutorials, or generate test vectors in staging. Wire verification through your application's bcrypt compare API with constant-time checks. Cross-train with أداة: Password strength checker for policy and أداة: Password generator for random inputs—hashing weak passwords still yields weak defense.
مثال عملي
You bump cost from 10 to 12 after a risk review: new registrations write stronger hashes; scheduled jobs rehash users at next successful login.
أسئلة شائعة
bcrypt versus Argon2?
Modern guidance often prefers Argon2id for new systems; bcrypt remains widely deployed and acceptable when tuned well.
Why does output change each time?
A new random salt per hash is intentional—it defeats rainbow tables.
Can I verify here?
Production verification belongs in your backend using trusted libraries, not casual browsers.