HSH.lol

Enter your hashes below:

Check Hashes

Supported Hash Algorithms

• MD5
• SHA1
• NTLM
• SHA256
• bcrypt

Available Wordlists

Wordlist	Description	Size
rockyou.txt	Leaked passwords from the 2009 RockYou breach (classic)	14 MB
rockyou2021.txt	Composite list of 8.4 billion passwords from various leaks	100+ GB (uncompressed)
top100k.txt	Top 100,000 most common passwords	1.2 MB
SecLists / Passwords	Collection of curated password lists for testing and pentesting	Varies (5–15 MB per file)
crackstation.txt	1.5 billion commonly used passwords with rules applied	15 GB (compressed)
darkweb_combined.txt	Aggregated from multiple dark web breaches	30–60 GB
custom_corp.txt	Tailored list for enterprise & corporate environments	22 MB

Cracking Server Info

GPU	NVIDIA RTX 3060 12 GB
Speed (MD5)	45 million H/s
Speed (SHA1)	17 million H/s
OS	Ubuntu 22.04
Tools	Hashcat, Hashtopolis

About HSH.lol

HSH.lol is online tool to check how strong your hash really is. It's built for security folks, pentesters, and sysadmins.

We don't brute-force hashes. Instead, we match them against huge public wordlists and leaks.

How it works:

• You paste a hash — MD5, NTLM, , etc.
• We detect the hash type automatically.
• Then we search it against billions of known passwords (RockYou, Hob0Rules, leaks, and more).
• If we find a match — we show the original password.
• If not — we tell you it wasn't found. That means it’s less risky, but not bulletproof.

Who it's for:

• Pentesters — quick hash check without firing up heavy tools.
• Developers — make sure user passwords aren't too weak.
• Sysadmins — audit password dumps or DB exports.
• Security teams — use it in audit workflows or reports.

Goal: Show how easily your password can break. Not to break it — to warn you.