AES File Encryption / Decryption Online
AES file encryption tool supporting AES-GCM / AES-CBC modes and password (PBKDF2) / hex key inputs. The output .aes file is self-contained — including the magic header, algorithm flags, salt, IV and the original filename (encrypted) — so decryption recovers the original name automatically. All operations run locally via Web Crypto API.
All encryption/decryption happens locally (Web Crypto API). Files are never uploaded. The output is self-contained — including magic header, IV/salt, and the original filename (encrypted) — so decryption restores the original name automatically.
Usage
AES-encrypt/decrypt any file locally — files are never uploaded. Supports AES-GCM / AES-CBC with password (PBKDF2) or hex-key inputs.
The output .aes file is self-contained: magic header + algorithm flags + salt + IV + the original filename (encrypted) + ciphertext. Decryption automatically restores the original filename.
Hard limit 500 MB per file; files > 50 MB raise a warning.
Use cases
FAQ
Are files uploaded?
No. Encryption / decryption happen locally in the browser using Web Crypto API. Files never leave your device.
Can I recover a forgotten password?
No — AES has no backdoor. This is by design. Use a password manager to store the password.
What's the file size limit?
500 MB per file. Files over 50 MB trigger a warning (browser memory constraints).
Can the .aes file be decrypted with other tools?
It's a PTBox self-contained format (magic header + algorithm + salt + IV + encrypted filename + ciphertext). Other tools need to implement this format.