ROT13 Encoder & Decoder Online

Apply the classic Usenet ROT13 letter-rotation cipher. Self-reversible — the same button encodes and decodes. 100% in your browser, no upload.

warning

Security warning: ROT13 and Caesar ciphers are NOT cryptographically secure. Use AES or modern encryption for real security. ROT13 only obscures text — anyone can reverse it instantly.

Input Text

ROT13 Result

What is ROT13?

ROT13 ("rotate by 13 places") is a simple letter-substitution cipher that replaces each letter of the alphabet with the letter 13 positions later. A becomes N, B becomes O, and so on. Because the English alphabet has 26 letters, applying the operation twice returns the original text — making ROT13 famously self-reversible.

ROT13 rose to internet fame on Usenet in the 1980s as a polite convention for hiding spoilers, joke punchlines, and offensive content behind a one-keystroke obfuscation. Newsreaders shipped with a built-in ROT13 toggle so readers had to deliberately reveal the text. The cipher itself is much older: it's simply a Caesar cipher with the shift fixed at 13, and the Caesar cipher dates to first-century BC Rome.

How to use the ROT13 tool — 4 steps

Paste your text. Drop plaintext or ROT13 ciphertext into the Input panel. Click Load Sample to try a demo.
Click Apply ROT13. The cipher runs in your browser — there's no encode/decode toggle because the operation is its own inverse.
Read the output. Letters rotate 13 places; digits, punctuation, and Unicode pass through unchanged.
Copy the result. Use Copy to grab the transformed text for forums, spoilers, geocaches, or CTF write-ups.

Sample input and output

Plaintext

Hello, World! The answer is 42.

ROT13 output

Uryyb, Jbeyq! Gur nafjre vf 42.

Notice that the comma, exclamation mark, space, and the digits 42 are unchanged — only A–Z and a–z rotate. Apply ROT13 to the output and you get the original back.

Self-Reversible

Encoding and decoding are the same operation. One button covers both directions — no need to choose a mode.

Case & Symbol Safe

Uppercase stays uppercase, lowercase stays lowercase, and every non-letter character (digits, punctuation, Unicode) is preserved exactly.

Client-Side Only

The cipher runs in JavaScript in your browser. Spoilers, puzzle answers, and CTF flags never leave your device.

Common use cases

check_circleHiding spoilers in forum posts, Reddit comments, or Discord chat
check_circleObscuring joke punchlines so readers see them only on purpose
check_circleEncoding hints for puzzles, escape rooms, and trivia games
check_circleGeocaching — many GC.com listings use ROT13 for clue hints
check_circleWarm-up challenges in CTF (capture-the-flag) competitions
check_circleTeaching modular arithmetic and basic substitution ciphers
check_circleStudying classical cryptography history without complex setup
check_circleMild obfuscation of strings in source code comments (visual only — never security)

ROT13 vs Caesar cipher vs modern encryption

Property	ROT13	Caesar (shift 1–25)	AES-256-GCM
Key space	1 (fixed)	25	2²⁵⁶
Brute-force time	Instant	Instant	Beyond age of universe
Self-reversible	Yes	No	No
Authenticated	No	No	Yes (GCM tag)
Secure?	No	No	Yes

ROT13 and Caesar ciphers are NOT secure. Treat them as text obfuscation, never as encryption. For real confidentiality use AES-256-GCM, ChaCha20-Poly1305, or libsodium — and manage keys properly.

Need actual encryption?

ROT13 hides text from casual viewing — it does not protect secrets. For passwords, tokens, or any sensitive payload use a modern authenticated cipher like AES-256-GCM with a strong key.

AES Encrypt AES Decrypt Caesar Cipher

Frequently Asked Questions

Is ROT13 secure?

No. ROT13 provides zero cryptographic security. It is a fixed substitution cipher with no key — anyone who knows the algorithm (which is public) can decode it instantly. Never use ROT13 to protect passwords, personal data, source code secrets, or anything that needs real confidentiality. For genuine encryption use AES-256-GCM, ChaCha20-Poly1305, or another modern authenticated cipher with a properly managed key.

Why is ROT13 self-reversible?

The English alphabet has 26 letters and 13 is exactly half. Rotating a letter forward by 13 and then forward by 13 again moves it 26 positions — back to the original. This means encoding and decoding are the same operation, which is why the tool only needs a single Apply button.

What is ROT13 used for today?

ROT13 is used to lightly obscure text where the goal is to prevent accidental reading rather than to protect secrets — spoiler tags on Usenet and forums, joke punchlines, puzzle hints, geocaching coordinates, and CTF (capture-the-flag) warm-up challenges. It is also a teaching tool for introducing substitution ciphers and modular arithmetic.

Does ROT13 work on numbers and punctuation?

No. Standard ROT13 only transforms the 26 letters A–Z and a–z. Digits, punctuation, whitespace, and non-Latin Unicode characters pass through unchanged. A variant called ROT47 covers more printable ASCII characters but is rarely used outside of niche puzzles.

Where did ROT13 come from?

ROT13 became famous on Usenet in the 1980s as a convention for hiding spoilers, offensive jokes, and puzzle answers. The newsreader software included a built-in ROT13 toggle so readers had to deliberately reveal the text. The technique itself is just a Caesar cipher with shift 13 — the underlying idea is over 2,000 years old.

Is my text uploaded to your server?

No. The ROT13 transformation runs entirely in your browser via JavaScript. Nothing leaves your device — you can verify by opening DevTools → Network and clicking Apply ROT13. No requests fire.

Can ROT13 be combined with real encryption?

No — applying ROT13 before or after a modern cipher adds zero security and only wastes CPU. Modern ciphers like AES-GCM are designed to handle arbitrary plaintext; obscuring it first does not strengthen them. If you need confidentiality, use the cipher correctly with a strong key and a unique nonce.

How is ROT13 different from a Caesar cipher?

ROT13 is a Caesar cipher with the shift hard-coded to 13. A general Caesar cipher accepts any shift from 1 to 25, so it has 25 possible keys (still trivially breakable by brute force). The shift of 13 is special only because it makes the cipher self-inverse.