HTML Entity Encoder / Decoder
Encode special characters to HTML entities or decode entities back to text.
&
&
<
<
>
>
"
"
'
'
space
©
©
®
®
Encode special characters to HTML entities or decode entities back to text.
HTML entities are special codes used to represent characters that have reserved meaning in HTML or that cannot be easily typed on a keyboard. For example, the less-than sign (<) starts an HTML tag, so displaying it as literal text requires encoding it as <. Similarly, ampersands, greater-than signs, and quotation marks all need to be encoded when they appear in HTML content to prevent them from being interpreted as markup.
Encoding special characters is essential for preventing cross-site scripting (XSS) vulnerabilities, ensuring that user-generated content displays correctly, and maintaining valid HTML markup. When you embed user input into a web page without encoding, malicious scripts could be injected. Proper encoding neutralizes these risks by converting potentially dangerous characters into their safe entity equivalents.
The encoder converts the five core HTML special characters (ampersand, less-than, greater-than, double quote, and single quote) into their named entity equivalents. The decoder reverses the process, converting both named entities and numeric character references back into their original characters. Both operations happen instantly in your browser with no data sent to any server.