AES Encryption Tool

Encrypt or decrypt text and files with AES-256-GCM and export IV-based bundles

Encrypt or decrypt text and files with AES-256-GCM. Text mode returns a bundle with salt, IV, auth tag, and ciphertext; file mode writes a downloadable encrypted package.

Example Results

1 examples

Decrypt a known AES-256-GCM text bundle

Restore plaintext from a deterministic AES bundle using the same passphrase that encrypted it

{
  "result": {
    "mode": "text",
    "operation": "decrypt",
    "algorithm": "aes-256-gcm",
    "plaintext": "hello"
  }
}
View input parameters
{ "inputType": "text", "operation": "decrypt", "textInput": "{\"algorithm\":\"aes-256-gcm\",\"encoding\":\"base64\",\"salt\":\"c2FsdC1mb3ItYWVzLXRvb2w=\",\"iv\":\"AQIDBAUGBwgJCgsM\",\"authTag\":\"1VBqj1TTlms/dNQoH4WMGA==\",\"ciphertext\":\"h4VrXvk=\"}", "secretKey": "test-key-123", "outputEncoding": "base64" }

Click to upload file or drag and drop file here

Maximum file size: 20MB Supported formats: */*

Key Facts

Category
Security & Validation
Input Types
select, textarea, file, text
Output Type
json
Sample Coverage
4
API Ready
Yes

Overview

The AES Encryption Tool provides secure encryption and decryption for text and files using the industry-standard AES-256-GCM algorithm. By generating authenticated cryptographic bundles containing the salt, initialization vector (IV), authentication tag, and ciphertext, it ensures data confidentiality and integrity without relying on external storage.

When to Use

  • When you need to securely encrypt sensitive text snippets, passwords, or API keys before sharing them over insecure communication channels.
  • When you want to protect local files with authenticated AES-256-GCM encryption before uploading them to cloud storage providers.
  • When you need to decrypt an AES bundle JSON or encrypted file package using a pre-shared secret key.

How It Works

  • Select the input type (text or file) and choose whether to encrypt or decrypt.
  • Enter your plaintext or upload your file, then provide a strong secret key passphrase of at least 8 characters.
  • Choose your output encoding (Base64 or Hex) and run the tool to generate a secure JSON bundle or download the encrypted package.

Use Cases

Encrypting database credentials or configuration files before committing them to public version control repositories.
Sharing confidential text messages or notes securely via email or chat applications using a pre-shared passphrase.
Securing personal documents, PDFs, or images locally before storing them on public cloud drives.

Examples

1. Encrypting API Credentials for Secure Sharing

DevOps Engineer
Background
A DevOps engineer needs to send a database connection string containing sensitive passwords to a remote developer over Slack.
Problem
Sending raw credentials over chat platforms risks exposure if the channel is compromised.
How to Use
Set the input type to 'Text' and operation to 'Encrypt'. Paste the connection string into the text input, enter a strong passphrase, select 'Base64' encoding, and click encrypt.
Example Config
Input Type: Text
Operation: Encrypt
Secret Key: SuperSecretPass123!
Output Encoding: Base64
Outcome
The tool generates a secure JSON bundle containing the ciphertext, IV, and auth tag, which can be safely shared and decrypted by the developer.

2. Decrypting a Received Text Bundle

Software Developer
Background
A developer received a JSON bundle containing encrypted configuration parameters from a teammate.
Problem
The developer needs to recover the original plaintext configuration parameters using the pre-shared key.
How to Use
Set the input type to 'Text' and operation to 'Decrypt'. Paste the JSON bundle into the text input, enter the pre-shared secret key, and run the decryption.
Example Config
Input Type: Text
Operation: Decrypt
Text Input: {"algorithm":"aes-256-gcm","encoding":"base64","salt":"c2FsdC1mb3ItYWVzLXRvb2w=","iv":"AQIDBAUGBwgJCgsM","authTag":"1VBqj1TTlms/dNQoH4WMGA==","ciphertext":"h4VrXvk="}
Secret Key: test-key-123
Outcome
The tool successfully decrypts the bundle and outputs the original plaintext message: 'hello'.

Try with Samples

text, file
Cryptography and Encryption Samples
Comprehensive cryptography examples including symmetric encryption, asymmetric encryption, hash functions, digital signatures, and key exchange protocols
title token encryption
sample
Duplicate Line Samples
Sample files with various types of duplicate lines for testing duplicate removal tools
matched family text
text
Chinese-English Mixed Text Samples
Sample text files with mixed Chinese and English content for testing automatic spacing tools
matched family text
text
Whitespace Normalization Samples
Sample text files with various whitespace issues for testing normalization tools
matched family text
text

Related Hubs

Text Case, Encoding, and Normalization Conversion Tools
Compare text case conversion, character-width conversion, encoding conversion, quoted-printable handling, and inline text normalization tools in one hub.
Text Tools
Explore 33 text tools for utility workflows and compare closely related utilities quickly.
Text Analysis, Readability, and Content Inspection Tools
Compare text statistics, language detection, readability scoring, sentiment analysis, moderation review, and pattern analysis tools in one hub.
Text Redaction, Highlighting, and Presentation Formatting Tools
Compare tools for masking sensitive text, finding PII, normalizing phone numbers, highlighting phrases, centering text, and formatting diffs in one hub.

FAQ

What encryption algorithm does this tool use?

It uses AES-256-GCM, which provides both data confidentiality and authenticated integrity checks.

What is included in the output text bundle?

The output JSON bundle contains the algorithm name, output encoding, salt, initialization vector (IV), authentication tag, and ciphertext.

Can I decrypt files that were encrypted using this tool?

Yes, you can decrypt them by selecting the decrypt operation, uploading the encrypted package, and entering the correct secret key.

What is the maximum file size supported?

The tool supports file uploads up to 20 MB for encryption and decryption.

Is my secret key stored on your servers?

No, all encryption and decryption operations are performed locally in your browser, and your secret key is never stored or transmitted.

API Documentation

Request Endpoint

POST /en/api/tools/aes-encryption-tool

Request Parameters

Parameter Name Type Required Description
inputType select Yes -
operation select Yes -
textInput textarea No -
fileInput file (Upload required) No -
secretKey text Yes -
outputEncoding select Yes -

File type parameters need to be uploaded first via POST /upload/aes-encryption-tool to get filePath, then pass filePath to the corresponding file field.

Response Format

{
  "key": {...},
  "metadata": {
    "key": "value"
  },
  "error": "Error message (optional)",
  "message": "Notification message (optional)"
}
JSON Data: JSON Data

AI MCP Documentation

Add this tool to your MCP server configuration: 

{
  "mcpServers": {
    "elysiatools-aes-encryption-tool": {
      "name": "aes-encryption-tool",
      "description": "Encrypt or decrypt text and files with AES-256-GCM and export IV-based bundles",
      "baseUrl": "https://elysiatools.com/mcp/sse?toolId=aes-encryption-tool",
      "command": "",
      "args": [],
      "env": {},
      "isActive": true,
      "type": "sse"
    }
  }
}

You can chain multiple tools, e.g.: `https://elysiatools.com/mcp/sse?toolId=png-to-webp,jpg-to-webp,gif-to-webp`, max 20 tools.

Supports URL file links or Base64 encoding for file parameters.

If you encounter any issues, please contact us at [email protected]