wyreup
create

Backup Codes

Generate N cryptographically random recovery codes for 2FA. Configurable alphabet (base32 / numeric / alphanumeric), code length, and group separator. Pairs with totp-code and hotp-code for enrollment.

Loading…

About Backup Codes

Backup Codes generates a set of cryptographically random recovery codes for two-factor authentication — the fallback users lean on when they lose their authenticator device. You configure how many codes, the alphabet (base32, numeric, or alphanumeric), the code length, and an optional group separator for readability. Generation uses your browser's secure randomness, so the codes are created locally and never transmitted.

Category
create
Input
Accepts: */*.
Output
Outputs: application/json.
Cost
Free, runs in your browser
Memory
low
Privacy: Backup Codes runs entirely on your device. Files you provide never leave your browser — no uploads, no server, no tracking. The page works offline once loaded.

Common uses

  • Issue a batch of one-time recovery codes during a user's 2FA enrollment flow
  • Generate numeric-only backup codes for a system where users type them on a phone keypad
  • Produce readable codes with a dash separator (e.g. ABCD-EFGH) for a printed recovery sheet
  • Create base32 recovery codes to sit alongside a TOTP or HOTP secret you're provisioning
  • Spin up test recovery codes for QA of an account-recovery path

Frequently asked questions

How random are the codes?

They're generated with cryptographically secure randomness, suitable for security-sensitive recovery codes rather than predictable pseudo-random output.

What can I configure?

The number of codes (N), the alphabet (base32, numeric, or alphanumeric), each code's length, and an optional group separator for legibility.

Are the codes sent anywhere?

No. They're generated entirely in your browser. Nothing is uploaded, so the recovery codes exist only where you create and save them.

What format is the output?

JSON containing the generated codes, ready to display, store hashed, or hand to a user.

Do these work with my authenticator setup?

They're standalone recovery codes meant to pair with TOTP or HOTP enrollment. Store a hashed copy server-side and let each code be used once.

Keywords

  • backup
  • codes
  • 2fa
  • recovery
  • mfa
  • auth
  • random
  • generate

Try next

TOTP Code
inspect

Generate the time-based 2FA codes these recovery codes back up
HOTP Code
inspect

Pair recovery codes with counter-based OTP enrollment
Password Generator
create

Create strong random passwords alongside the recovery codes for the same account
QR Code
create

Generate a QR code image from text or a URL.
Favicon Generator
create

Generate a complete favicon set (PNG sizes + ICO + webmanifest) from any image.
Password Generator
create

Generate cryptographically random passwords with configurable character sets.
UUID Generator
create

Generate one or more random UUID v4 identifiers.
Lorem Ipsum
create

Generate placeholder Latin text (lorem ipsum) with configurable paragraphs and sentence length.
Color Harmony
create

Generate complementary, analogous, triadic, tetradic, split-complementary, and monochromatic color schemes from a base hex color.
Color Palette
inspect

Extract dominant colors from an image as hex codes.
Image Info
inspect

Extract dimensions, format, and metadata from an image.