RFC 6238 TOTP from a Base32 secret. Matches authenticator apps when settings align.
Code —
RFC 6238 TOTP from a Base32 secret. Matches authenticator apps when settings align.
Code —
TOTP Generator
Generate time-based one-time passwords with configurable period, digits, and HMAC algorithm. Secret stays local; codes refresh every second.
TOTP Generator Use Cases
- Verify authenticator implementations during development
- Compare codes against RFC test vectors
- Rotate secrets with a known-good generator
- Support engineers reproducing MFA issues
TOTP Generator FAQ
Why Base32?
Authenticator apps commonly ship secrets as Base32 strings. We decode that to bytes before HMAC.
Does this replace Google Authenticator?
It mirrors the math for debugging. Keep your phone app as the primary second factor for accounts.
Clock skew?
Codes depend on UTC time. Large device clock drift can mismatch servers; sync your system clock.
Is the secret stored?
Only in memory while this tab is open. Clear it when finished.