URL Encoder/Decoder

Encode and decode URLs, query parameters, and special characters

Pentest Tool · v2.0 (Secure)

Encoding Types

URL, RawURL, HTML, etc.

RFC 3986

Standard

URL specification

10MB

Max Input

Text size limit

HTML Safe

Entity Encoding

XSS prevention

URL Encoder/Decoder Pro

Multiple encoding types for web security testing and development

Input

Max size: 10 MB

Encoding Type

URL Encoding

RawURL (RFC 3986)

HTML Entity

Base64

Double Encoding

Standard URL encoding (application/x-www-form-urlencoded). Spaces become +, special characters become %xx.

Encode All (for URL)

Encode alphanumeric characters too

Decode Plus (for URL)

Convert + to space

Actions

URL encoding converts special characters to %xx format. Useful for safe transmission in URLs and query strings. Maximum input size: 10 MB.

Examples by Encoding Type

URL Encoding

Input:
Hello World! @#$%

Output:
Hello+World%21+%40%23%24%25

RawURL Encoding

Input:
/path/to/file?name=value

Output:
%2Fpath%2Fto%2Ffile%3Fname%3Dvalue

HTML Entity

Input:
<script>alert("XSS")</script>

Output (decode):
<script>alert("XSS")</script>

What is URL Encoding?

URL encoding (percent encoding) replaces unsafe ASCII characters with a "%" followed by two hexadecimal digits. This ensures safe transmission of data in URLs.

Common Use Cases

• Query parameters - Encoding special characters in URLs

• Form submissions - application/x-www-form-urlencoded

• WAF bypass - Double encoding for security testing

• XSS prevention - HTML entity encoding

Character Reference

Space %20

! %21

" %22

# %23

$ %24

% %25

& %26

+ %2B