IAM Tools
Essential utilities for IAM professionals. Debug tokens, convert timestamps, generate hashes - all in your browser, no data leaves your device.
100% Client-Side Processing
All tools run entirely in your browser. Your tokens, keys, and sensitive data never leave your device.
JWT Decoder
Decode and inspect JSON Web Tokens. View header, payload, and verify signatures.
Use cases: Debug OAuth 2.0/OIDC tokens, analyze access_token and id_token claims, verify token expiry (exp/iat/nbf), inspect API Gateway tokens
JWT Generator
Create and sign JWTs with custom claims. Generate tokens for testing and development.
Use cases: Mock OAuth tokens for API testing, create test id_tokens for OIDC flows, generate service-to-service auth tokens, prototype custom claims
Timestamp Converter
Convert between Unix timestamps and human-readable dates. Essential for token expiry analysis.
Use cases: Analyze JWT exp/iat/nbf claims, debug OAuth token lifetimes, investigate session timeout issues, verify SAML assertion validity periods
Base64 Encoder/Decoder
Encode and decode Base64, URL-safe Base64. Essential for SAML and OIDC debugging.
Use cases: Decode SAML assertions, debug OAuth state parameters, analyze Basic Auth headers, inspect URL-encoded JWT segments
UUID Generator
Generate and decode UUIDs (v4, v7). Create unique identifiers for users and sessions.
Use cases: Generate user IDs for identity stores, create session identifiers, produce client_id for OAuth apps, assign unique tenant IDs
HMAC Generator
Generate and verify HMAC signatures. Validate webhook signatures and API authentication.
Use cases: Verify GitHub/Stripe/Slack webhook signatures, validate API request authenticity, debug OAuth 1.0 signatures, test SCIM provisioning webhooks
SAML Decoder
Decode SAML assertions and responses. Debug enterprise SSO integrations.
Use cases: Troubleshoot SAML SSO failures, inspect IdP assertions, verify attribute mappings, debug SP-initiated vs IdP-initiated flows
SAML Generator
Generate SAML responses and assertions for testing SP integrations.
Use cases: Test SP SAML integration without IdP, mock SAML responses for development, prototype attribute statements, simulate SSO login flows
Password Hash Generator
Generate Argon2, bcrypt, PBKDF2 password hashes. Secure password storage and verification.
Use cases: Generate hashes for user provisioning, verify password migration data, test authentication systems, create test user credentials
PKCE Generator
Generate PKCE code verifier and code challenge for OAuth 2.0 public clients.
Use cases: Secure mobile/SPA OAuth flows, generate code_verifier and code_challenge, test PKCE implementations, OAuth 2.1 compliance
JWK Generator & Viewer
Generate RSA/EC key pairs in JWK format. Analyze existing JSON Web Keys.
Use cases: Create JWT signing keys, set up JWKS endpoints, analyze IdP public keys, configure OIDC providers
URL Encoder/Decoder
Encode and decode URL strings. Handle query parameters and special characters.
Use cases: Encode OAuth redirect_uri, decode SAML RelayState, debug query string issues, fix URL encoding problems
X.509 Certificate Decoder
Parse and analyze X.509 certificates. Check expiration and certificate details.
Use cases: Debug SAML signing certificates, verify mTLS client certs, check certificate expiry, analyze PKI chains
X.509 Certificate Generator
Generate self-signed certificates for testing. Create RSA or ECDSA key pairs.
Use cases: SAML signing/encryption testing, mTLS development, local HTTPS setup, JWT RS256/ES256 key generation
OAuth URL Builder
Build OAuth 2.0 and OIDC authorization URLs with all parameters.
Use cases: Test OAuth flows, configure authorization requests, debug OIDC integration, prototype OAuth implementations
JSON Formatter
Format, validate, and minify JSON. Analyze JSON structure and statistics.
Use cases: Format API responses, validate SCIM payloads, debug JWT claims, pretty-print OIDC discovery documents
Random String Generator
Generate cryptographically secure random strings for secrets and tokens.
Use cases: Create API keys, generate client secrets, produce session IDs, create PKCE verifiers, generate state/nonce values
SCIM Filter Builder
Build and test SCIM 2.0 filter expressions for user provisioning queries.
Use cases: Query users by attribute, filter provisioning sync, test SCIM search expressions, debug user lookup issues
Regex Tester
Test and validate regular expressions with real-time matching and highlighting.
Use cases: Validate username patterns, test email regex, debug password policies, create input validation rules
LDAP Filter Builder
Build and test LDAP/Active Directory filter expressions for directory queries.
Use cases: Query AD users/groups, build memberOf filters, test LDAP search expressions, debug directory sync
OTP Generator
Generate and verify TOTP/HOTP one-time passwords for MFA testing.
Use cases: Test MFA enrollment, verify OTP implementation, debug authenticator app issues, validate 2FA flows
QR Code Generator
Generate QR codes for MFA setup and otpauth:// URIs.
Use cases: Create TOTP enrollment QR codes, test authenticator app scanning, MFA setup testing, device registration
OIDC Discovery Viewer
Fetch and analyze OpenID Connect discovery documents (.well-known/openid-configuration).
Use cases: Explore IdP capabilities, find OAuth endpoints, verify OIDC configuration, compare provider features
DPoP Proof Generator
Generate RFC 9449 DPoP proofs for sender-constrained access tokens.
Use cases: Test DPoP-protected APIs, debug sender-constrained tokens, implement OAuth 2.0 DPoP, secure token binding
Logout URL Builder
Build OIDC RP-Initiated Logout URLs with all standard parameters.
Use cases: Configure SSO logout, test end_session_endpoint, debug logout redirect issues, implement federated logout
WebAuthn/Passkey Debugger
Parse and analyze WebAuthn registration and authentication responses.
Use cases: Debug passkey implementations, analyze authenticatorData, parse CBOR public keys, troubleshoot FIDO2 flows
Token Signature Verifier
Verify JWT signatures using public keys or JWKS endpoints.
Use cases: Validate token signatures, test RS256/ES256 verification, debug signature failures, security audits
OAuth Introspection Tester
Generate RFC 7662 Token Introspection requests for opaque tokens.
Use cases: Test introspection endpoints, debug opaque tokens, generate cURL/Python/Node code, validate token status
Claims Mapper
Simulate IdP to SP claims/attribute mapping with various transformations.
Use cases: Test attribute mappings, debug SAML assertions, prototype OIDC claims, configure provisioning rules
Policy Evaluator (RBAC/ABAC)
Simulate RBAC and ABAC access control policy evaluation.
Use cases: Test authorization policies, debug access decisions, prototype zero trust rules, validate role assignments
OAuth State/Nonce Debugger
Generate, parse, and validate OAuth state and nonce parameters.
Use cases: Debug state mismatch errors, generate CSRF tokens, validate OAuth callback params, test replay protection
Session Cookie Analyzer
Analyze session cookie security attributes and identify vulnerabilities.
Use cases: Audit cookie security, check Secure/HttpOnly/SameSite flags, validate cookie prefixes, security reviews
Password Policy Tester
Test passwords against configurable security policies with strength estimation.
Use cases: Validate password compliance, test NIST 800-63B policies, estimate crack time, configure password rules
API Key Analyzer
Identify API key types, assess security risks, and get best practices.
Use cases: Detect leaked keys, identify key providers, assess key entropy, security incident response