Products & Pricing

From free browser tools to enterprise key management APIs and security audits.

API Plans

Free

$0forever

For individual developers and side projects.

  • All free browser tools
  • JWT Secret Generator
  • Hash & Password tools
  • UUID & API Key generators
  • 1,000 API calls/month
  • HS256 algorithm
  • Community support
Get Started

Starter

$9/month

For small teams needing automated key management.

  • Everything in Free
  • Key Rotation API
  • 10,000 API calls/month
  • Basic dashboard
  • HS256 + HS384 algorithms
  • Email support
Start Free Trial
Most Popular

Pro

$29/month

For teams with advanced security requirements.

  • Everything in Starter
  • 100,000 API calls/month
  • Advanced algorithms (RS256, ES256)
  • Full analytics dashboard
  • Webhook notifications
  • Priority email support
  • API documentation access
Start Free Trial

Enterprise

$99+/month

Custom solutions for regulated industries.

  • Everything in Pro
  • Unlimited API calls
  • Custom key rotation policies
  • Dedicated support & SLA
  • SSO & SAML integration
  • SOC2 / HIPAA compliance
  • On-premise option
Request Quote

Products

Key Rotation API

A RESTful API for automated JWT key lifecycle management. Schedule rotation, maintain multiple active keys using the kid header, and achieve zero-downtime deployments.

Features

  • Scheduled rotation with configurable TTLs
  • Multiple concurrent keys with kid header support
  • Zero-downtime key transitions
  • Webhooks for rotation events
  • REST + SDK support (Node.js, Python)

Example

// Rotate your JWT secret automatically
const { secret, keyId } = await jwtSecrets.rotate({
  algorithm: 'HS256',
  bits: 256,
  ttl: '30d'
});

// Sign with the new key
const token = jwt.sign(payload, secret, {
  algorithm: 'HS256',
  keyid: keyId
});
Get started

Scripts & Tutorials

Ready-to-use code examples and step-by-step guides for integrating JWT security in Node.js, Python FastAPI, and CI/CD pipelines.

Features

  • Node.js + Express authentication setup
  • Python FastAPI JWT middleware
  • Docker + Kubernetes secret injection
  • GitHub Actions secret rotation workflow
  • Terraform KMS integration

Example

// Node.js JWT middleware example
import jwt from 'jsonwebtoken';

export function authMiddleware(req, res, next) {
  const token = req.headers.authorization?.split(' ')[1];
  if (!token) return res.status(401).json({ error: 'Unauthorized' });

  try {
    req.user = jwt.verify(token, process.env.JWT_SECRET, {
      algorithms: ['HS256'],
      audience: 'https://api.yourapp.com'
    });
    next();
  } catch {
    res.status(401).json({ error: 'Invalid token' });
  }
}
Get started

JWT Security Audit

Automated AI-powered analysis of your JWT implementation combined with expert manual review. Identifies vulnerabilities before they reach production.

Features

  • Algorithm confusion attack detection
  • Weak secret identification
  • Token storage vulnerability scan
  • kid header injection testing
  • Expiration and claim validation review
  • Detailed remediation report
Get started

Security Audit Service

Professional security review by our team of JWT and cryptography specialists. Available for one-time or ongoing engagement.

Features

  • Small project: $99
  • Medium application: $199
  • Enterprise system: $499+
  • Penetration testing available
  • Compliance-ready report (SOC2, HIPAA, PCI-DSS)
Get started