AES Encrypt / Decrypt - AES-256-CBC, CTR, GCM

Encrypt and decrypt text using AES-256 with CBC, CTR, or GCM modes. Supports PBKDF2 key derivation, OpenSSL/CryptoJS-compatible password mode (EVP_BytesToKey), and raw key/IV input. All operations run entirely in your browser.

Mode

Key Input

Output

Passphrase

PBKDF2 Iterations

Plaintext

Ciphertext

About AES-256: AES (Advanced Encryption Standard) with a 256-bit key is a symmetric-key algorithm widely used for secure data encryption. CBC (Cipher Block Chaining) is the most common mode. CTR (Counter) mode turns AES into a stream cipher. GCM (Galois/Counter Mode) provides both encryption and authentication, ensuring data integrity. PBKDF2 mode derives keys using PBKDF2 with SHA-256 and a configurable iteration count. OpenSSL/CryptoJS mode uses EVP_BytesToKey (MD5-based) key derivation, producing ciphertext in the standard OpenSSL "Salted__" format. This mode is compatible with openssl enc and CryptoJS.