AES Decryptor
Decrypt AES-256-GCM encrypted text with password, IV, and salt.
What is AES-256-GCM Decryption?
AES (Advanced Encryption Standard) is the symmetric cipher published by NIST in 2001 and used everywhere from HTTPS connections to disk encryption. The 256-bit variant uses a 14-round substitution-permutation network that has resisted every published cryptanalytic attack for two decades. GCM (Galois/Counter Mode) wraps AES with an authentication tag, so decryption either returns the original plaintext or fails — there is no in-between. That makes GCM the right mode for storing secrets you must trust on retrieval. To decrypt, you need the ciphertext, the password, the salt used to derive the key via PBKDF2, and the IV that seeded the counter. This tool runs the full decrypt path in your browser using the Web Crypto API. Encrypting fresh data? Use the AES Encryptor, or hash a payload with the Hash Generator.
Client-Side Decryption
All decryption happens in your browser. No data is sent to any server.
AES Decryptor
Password
Ciphertext
IV
Salt
How to use this tool
- 1Paste your ciphertextDrop the encrypted output into the ciphertext field. Hex, Base64, and concatenated formats from the AES Encryptor are all accepted.
- 2Enter the password, IV, and saltUse the exact password, initialization vector, and salt that were used during encryption. Any mismatch will cause the GCM auth tag to fail.
- 3Click DecryptPBKDF2 derives the key from the password and salt, then AES-256-GCM verifies the auth tag and returns the plaintext — all locally.