.NET Secure Password Hashing API

5.0 Stars (6)
4 Downloads (This Week)
Last Update:
Browse All Files



This API uses the PBKDF2 specification with HMACSHA512 as the underlying pseudo random function (PRF) to perform the salted hashing over a specified number of instances to eliminate the feasibility of rainbow table attacks & drive up the computing cost of generating said tables, this is known as key stretching.

This API also provides the capability to create BIG crypto random salt strings, because the BIGGER & more RANDOM your salt, the better! (anti-rainbow tables)

I was going to use Microsofts Rfc2898DeriveBytes(cb) implementation but after learning that it is using HMACSHA1 as the underlying PRF, I decided to modernise this & implement PBKDF2 with HMACSHA512 instead (Stronger against GPUs)

Get binaries here but for source code please use the PWDTK.NET repo on GitHub which you can clone from here:

Please consider donating (5th button above) if you find PWDTK.NET useful!

Package AVAILABLE on NuGet!!!

Thanks - Ian




Public Domain


  • Crypto Randomly Generate Salt
  • Password Policy Integration
  • PBKDF2 implementation using HMACSHA512 as the underlying PRF
  • Control resource usage vs key stretching by supplying iteration count as per PBKDF2 spec
  • Code open source and available for peer review by security experts\cryptographers
  • Uses UTF-8 encoding to support non English characters, better than implementations using ASCII
  • Created using instructions for PBKDF2 standard here:
  • Ability to call Rfc2898.PBKDF2(P,S,c,dkLen) to derive encryption keys of your specific size
  • Source code includes sample GUI with common usage implemented


Other Useful Business Software

Protect your Network & Cloud Assets with USM Anywhere Icon

Discover a better way to detect & respond to threats before they impact your business with AlienVault USM Anywhere.

Protect your Network & Cloud Assets with USM Anywhere Icon
AlienVault® Unified Security Management™ (USM™) is an innovative approach to security monitoring, delivered in a unified platform. The USM platform includes five essential security capabilities that provide resource-constrained organizations with everything they need for effective threat detection, incident response, and compliance management, in a single pane of glass.

User Ratings

ease 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 5 / 5
features 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 5 / 5
design 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 5 / 5
support 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 5 / 5
Write a Review

User Reviews

  • 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5

    Great library to help insure a quality implementation of encrypting passwords.

    Posted 07/27/2013
  • 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5

    It's an easy to use and stable, reliable implementation. We are using this in a production environment with no problems till now.

    Posted 07/10/2013
  • 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5

    I think this is fantastic, but I'm biased lol ;)

    Posted 08/31/2012
Read more reviews

Additional Project Details

Intended Audience

Information Technology, Science/Research, Developers, Auditors, Security Professionals, Security

User Interface


Programming Language




Thanks for helping keep SourceForge clean.

Screenshot instructions:
Red Hat Linux   Ubuntu

Click URL instructions:
Right-click on ad, choose "Copy Link", then paste here →
(This may not be possible with some types of ads)

More information about our ad policies

Briefly describe the problem (required):

Upload screenshot of ad (required):
Select a file, or drag & drop file here.

Please provide the ad click URL, if possible:

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:

JavaScript is required for this form.

No, thanks