Signing flow
HMAC combines message + shared secret using hash algorithm to create tamper-detection signatures.
HMAC generator
Security toolsGenerate HMAC signatures (SHA-1, SHA-256, SHA-512) for API and webhook testing.
Updated
HMAC input
Hex signature
Quick start
How to generate HMAC
Set message, secret and algorithm to create signature.
- Step 1Enter message
Paste payload and secret key.
- Step 2Select algorithm
Choose SHA-1, SHA-256 or SHA-512.
- Step 3Generate signature
Copy resulting hex digest.
In-depth guide
HMAC generator
Generate HMAC signatures for webhook testing, signed URLs, and API request authentication flows.
Operational guidance
Store shared secrets securely and rotate periodically for production systems.
When to use it vs alternatives
Use this tool for quick browser-based work when you need an answer or output immediately. Use a dedicated application or automated workflow when you need bulk processing, approvals, or repeatable production rules.
Step-by-step usage
- Enter message — Paste payload and secret key.
- Select algorithm — Choose SHA-1, SHA-256 or SHA-512.
- Generate signature — Copy resulting hex digest.
Common pitfalls
- Check the result before replacing the original input.
- Watch for unit, format, encoding, and browser memory limits on large inputs.
- Keep a copy of important source material until the output is verified.
Privacy and security
Browser-first by design. The tool page explains any exception before you use it.
Your input is handled in the browser wherever the tool can process it locally. EpitomeTool does not add an upload step unless a tool page explicitly says so.
Frequently asked questions
Which HMAC algorithms are supported?
SHA-1, SHA-256, and SHA-512.
Is result deterministic?
Yes, same message + same secret + same algorithm yields same digest.
Is processing local?
Yes, done via browser WebCrypto.
Keep exploring
More tools you'll like
Hand-picked utilities that pair well with the one you're on — all free, client-side, and zero-signup.
More security tools
See all →- AES text encrypt/decrypt Popular New
Encrypt and decrypt text locally with AES-256-GCM and passphrase-derived keys.
- JWT generator (HS256) Popular New
Generate signed HS256 JWTs from custom header and payload JSON locally.
- TOTP tool New
Generate 6-digit rolling TOTP codes and otpauth URIs from Base32 secrets.
Popular across EpitomeTool
Browse all →- PDF toolsPDF compressor Popular
Shrink PDF file size without uploading to a server.
Open tool - Fitness & healthBMI calculator Popular
Body Mass Index with metric / imperial inputs and WHO category bands.
Open tool - PDF toolsPDF merger Popular
Combine multiple PDFs into one in your browser.
Open tool - PDF toolsPDF splitter Popular
Split a PDF by pages or page ranges, download as zip.
Open tool