HTML Entity Encode / Decode
Escape or unescape HTML entities (<, &, β¦).
Results appear as you type
Everything runs locally in your browser β your input never leaves this page.
About the HTML Entity Encode / Decode
HTML Entity Encode / Decode escapes characters that have special meaning in HTML, turning symbols like < > & and quotes into safe entities such as <, > and &, or converts them back. Escaping is essential when you need to display code or user-supplied text without the browser interpreting it as markup. The conversion is performed locally in your browser, keeping your content private.
How to use
- Paste the text or HTML snippet you want to convert.
- Choose encode to escape special characters or decode to restore them.
- Review the converted output.
- Copy the safe markup into your page or template.
Frequently asked questions
- Why should I escape HTML entities?
- Escaping prevents characters like < and & from being parsed as tags or entity references. This is critical for displaying code samples correctly and for avoiding cross-site scripting when rendering user input.
- Which characters must always be escaped?
- The core characters are &, <, > and quotes. Escaping & first is important so existing entities are not double-encoded.
- Is decoding safe to run on untrusted input?
- Decoding just converts entities back to their characters; it does not execute anything. However, do not inject decoded untrusted text into a live page without re-escaping it.