🔎 Hash Identifier
Identify hash type from a string — MD5, SHA-1, SHA-256, SHA-512, bcrypt, NTLM and more
About this tool
Paste a hash digest and the tool narrows down which algorithm most likely produced it. It uses length and character set heuristics — the same approach most hash-identification tools rely on, because length is the single strongest signal (e.g. 32 hex chars almost always means MD5 or NTLM; 64 hex chars is the SHA-256 family).
Example: 5d41402abc4b2a76b9719d911017c592 → 32 hex characters →
MD5, NTLM, MD4, LM (all produce 128-bit digests). 098f6bcd4621d373cade4e832627b4f6
also resolves to MD5-length candidates. A 60-character string starting with
$2 is identified as bcrypt.
Each candidate shows its bit length, byte length, and a confidence rating. Multiple candidates are normal — hashes of the same length cannot be told apart from the digest alone, only by computing the hash from the original input. When a single algorithm matches a non-standard length (such as bcrypt or NTLM in its native hex form), it is flagged as higher confidence.
FAQ
Can the tool tell me the original input? ›
No. Hashing is one-way. This tool only identifies the probable algorithm from the digest shape. To recover an input you would need a lookup table or brute force, which is a separate problem.
Why are multiple algorithms listed for one hash? ›
MD5, MD4, NTLM, LM and double-MD5 all produce 128-bit (32 hex character) digests. They cannot be distinguished from each other by length or charset alone — only by recomputing the hash from a known input.
What does the confidence rating mean? ›
High means the hash matches a unique length (e.g. SHA-512 at 128 hex chars) or a distinctive format like bcrypt's $2b$ prefix. Medium means the length matches several common algorithms. Low means the hash is non-standard or could be a truncated digest.
Does it identify salted or custom hashes? ›
It detects format-based schemes like bcrypt, argon2 and PHPass which carry their salt and cost in the digest. For other salted schemes (e.g. sha256(salt.password)) there is no way to know from the digest alone.