SHA-1 Generator

Generate a 160-bit SHA-1 hash. Still common in legacy systems, not collision-resistant since 2017.

Advertisement
What is SHA-1?

160-bit hash. Wider than MD5, but also broken.

SHA-1 (Secure Hash Algorithm 1) was designed by the NSA and published as a U.S. federal standard. It produces a 160-bit hash (40 hex characters). Still used in git commit IDs and some legacy TLS handshakes, but Google demonstrated practical collisions in 2017 — meaning it should not be used for new cryptographic applications.

For new code, use SHA-256 (or SHA-3) for integrity, and bcrypt/argon2 for password storage.

Read more on Wikipedia
FAQ

Frequently asked

Is SHA-1 still safe to use?
No. A practical collision (the SHATTERED attack) was demonstrated in 2017, and browsers and certificate authorities dropped SHA-1 years ago. Treat it as legacy-only.
Why does SHA-1 still appear everywhere?
Git object IDs, older TLS certificates and many legacy protocols use it. Interoperating with those systems is fine; minting new security-critical SHA-1 hashes is not.
What should I use instead?
Use SHA-256 for integrity and signatures, or bcrypt/argon2 for passwords.
Copied to clipboard