What is the difference between HMAC and a standard hash?

A standard hash (like SHA-256) takes only a message and checks its integrity. An HMAC takes both a message and a secret key, verifying both the data integrity and that the message was signed by someone who possesses the secret key.

Can I decrypt an HMAC signature?

No. HMAC is a one-way signature verification mechanism. You cannot extract the message payload or the secret key from the HMAC signature.

Why is HMAC immune to length extension attacks?

HMAC uses a nested double-hash construction (inner and outer steps with ipad/opad padding) that prevents attackers from appending data to a signed message and calculating a valid new signature.

How do webhooks use HMAC for validation?

Webhook providers sign the request payload with a shared secret key and send the signature in a header (e.g., X-Hub-Signature). The receiver computes the HMAC of the raw request body using the same key and checks if it matches the header.

What key size should I use for HMAC-SHA256?

The key should be at least 256 bits (32 bytes) of random data. Using keys smaller than the hash output size reduces the security strength of the authentication scheme.

Is it safe to compute HMAC signatures in this browser tool?

Yes, all calculations are executed locally in your browser memory. Your keys and payloads are never transmitted to external systems.

What is a timing attack on HMAC verification?

A timing attack exploits slight differences in execution time when comparing strings character-by-character. Using constant-time equality comparisons prevents attackers from guessing valid signatures byte-by-byte.

Does HMAC provide non-repudiation?

No. Because both the sender and the receiver share the same secret key, either party can generate a signature. For non-repudiation, you must use asymmetric digital signatures (like RSA or ECDSA).

Security Lab Tools

Password Generator Password Analyzer JWT Inspector Hash Generator HMAC Generator UUID Generator Encryption Studio Token Generator Bcrypt Hasher RSA Key Pair Generator OTP Code Generator Nano ID Generator ULID Generator BIP39 Passphrase Generator View all Security Lab tools →

HMAC Generator

Compute HMAC values with selectable algorithms.

HMAC Generator

What This Tool Does

An HMAC (Keyed-Hash Message Authentication Code) is a specific type of message authentication code that combines a cryptographic hash function with a secret cryptographic key. It is used to verify both the data integrity and the authenticity of a message. Unlike standard cryptographic hashes (like SHA-256), which only verify that data has not been modified, an HMAC guarantees that the sender possesses the secret key, preventing attackers from tampering with the payload and recalculating a valid hash.
HMAC is standardized under RFC 2104 and FIPS PUB 198-1. It is widely used in API authentication systems, webhook notifications, and secure network protocols (such as TLS, IPSec, and SSH). For instance, platforms like Slack, Stripe, and AWS require request signing using HMAC headers, allowing the receiving server to validate that incoming webhooks are authentic and originated from the trusted service provider.
The HMAC Generator on ScriptPulse.tools allows developers to compute these signatures locally. By selecting the hashing algorithm (such as MD5, SHA-1, SHA-256, or SHA-512), entering the secret key, and pasting the message payload, developers can verify signature generation and debug webhook headers securely. Because all processing is executed client-side in the browser, secret keys and payloads are kept secure and are never transmitted over the network.

How It Works

The HMAC engine processes the input message and key using the selected hashing algorithm (SHA-256, SHA-512, etc.) in the browser.
The secret key is prepared: if the key is longer than the block size of the hash function, it is hashed first; if it is shorter, it is padded with zeros to match the block size.
The engine performs an inner hash operation by XORing the padded key with an inner padding byte (ipad, 0x36) and appending the message payload.
It then performs an outer hash operation by XORing the padded key with an outer padding byte (opad, 0x5C) and appending the digest of the inner hash. The resulting binary array is encoded into a hexadecimal string.

Usage

Enter the message payload text in the source payload area.
Enter the shared secret key in the key config field.
Select the cryptographic hash function (SHA-256, SHA-512, MD5, or SHA-1) required by your authentication scheme.
Review the generated HMAC signature displayed in the results editor.
Copy the signature to verify API headers or populate local environment configuration mock values.

Examples

Standard SHA-256 signature — Signing message "request_data" with key "secret_key" using SHA-256 to verify API auth tokens.
Webhook verification — Generating an HMAC signature of a JSON webhook body to check headers during webhook testing.
AWS SigV4 debugging — Computing intermediate signing keys and validating signature calculations step-by-step.
Token signature check — Validating the signature part of a JWT by recreating the HMAC hash of the header and payload segments.
Legacy validation — Computing HMAC-MD5 or HMAC-SHA1 signatures for older API endpoints.

Real-World Use Cases

Debugging API authentication headers by generating local HMAC signatures and comparing them against server-computed signatures.
Verifying webhook authenticity during development by simulating payload signing (e.g., Stripe or GitHub webhook validation).
Implementing secure token verification mechanisms, such as JWT signature parsing or custom session token checks.
Testing messaging signatures in IoT devices or server-to-server microservices protocols.
Demonstrating keyed message authentication principles in security training and academic courses.

Best Practices

Use cryptographically secure keys with length equal to or greater than the output size of the chosen hash function (e.g., 256 bits for SHA-256).
Use constant-time comparison algorithms when verifying HMAC signatures on the server to prevent timing attacks.
Keep message structures normalized (e.g., stripping non-essential whitespace or sorting JSON keys) before signing to ensure consistent outputs.
Use SHA-256 or SHA-512 for all new systems; avoid MD5 or SHA-1 except when integrating with legacy protocols.
Rotate shared secrets regularly and use different keys for staging and production environments.

Common Mistakes

Exposing the secret key in client logs or repository commits: if the key is compromised, attackers can sign arbitrary messages and impersonate legitimate clients.
Mismatching key or message formats: mixing up text strings with hexadecimal representations can produce completely different HMAC outputs.
Ignoring message spacing: whitespace differences (like trailing carriage returns \n or spaces) will result in validation failures due to the avalanche effect.
Using weak keys: if the secret key lacks entropy, attackers can run offline dictionary attacks against the signature to crack the key.
Confusing HMAC with encryption: HMAC only signs data to prove authenticity; it does not hide the message payload.

Limitations

Signature generation depends on correct algorithm and key choice; mismatched settings produce invalid signatures.
Key lifecycle management and rotation are outside this tool.

Technical Reference Guide

RFC 2104: The official standard defining the HMAC algorithm, including block padding, inner/outer hashes, and cryptographic rationale.
Hash Block Sizes: MD5 and SHA-256 block size is 64 bytes, SHA-512 block size is 128 bytes. The key size should match these limits for optimal performance.
Security strength: HMAC-SHA256 remains highly secure and is immune to extension attacks that affect plain prefix-hashing approaches.

Specifications & Standards

RFC 2104: HMAC: Keyed-Hashing for Message Authentication FIPS PUB 198-1: The Keyed-Hash Message Authentication Code OWASP Webhook Security Cheat Sheet

FAQ

What is the difference between HMAC and a standard hash?
A standard hash (like SHA-256) takes only a message and checks its integrity. An HMAC takes both a message and a secret key, verifying both the data integrity and that the message was signed by someone who possesses the secret key.
Can I decrypt an HMAC signature?
No. HMAC is a one-way signature verification mechanism. You cannot extract the message payload or the secret key from the HMAC signature.
Why is HMAC immune to length extension attacks?
HMAC uses a nested double-hash construction (inner and outer steps with ipad/opad padding) that prevents attackers from appending data to a signed message and calculating a valid new signature.
How do webhooks use HMAC for validation?
Webhook providers sign the request payload with a shared secret key and send the signature in a header (e.g., X-Hub-Signature). The receiver computes the HMAC of the raw request body using the same key and checks if it matches the header.
What key size should I use for HMAC-SHA256?
The key should be at least 256 bits (32 bytes) of random data. Using keys smaller than the hash output size reduces the security strength of the authentication scheme.
Is it safe to compute HMAC signatures in this browser tool?
Yes, all calculations are executed locally in your browser memory. Your keys and payloads are never transmitted to external systems.
What is a timing attack on HMAC verification?
A timing attack exploits slight differences in execution time when comparing strings character-by-character. Using constant-time equality comparisons prevents attackers from guessing valid signatures byte-by-byte.
Does HMAC provide non-repudiation?
No. Because both the sender and the receiver share the same secret key, either party can generate a signature. For non-repudiation, you must use asymmetric digital signatures (like RSA or ECDSA).

Related Tools

Explore related utilities inside the Security Lab workshop for complementary engineering workflows.

Hash Generator JWT Inspector Encryption Studio Roman Numeral Converter

View all Security Lab tools