HTML Entities — Encode & Decode / Escape Online Encode and decode HTML entities safely.
100% offline
Encode as
Input71 chars · 1 lines
Output30 chars
Decoded · 30 chars
Tom & Jerry — “café” © 2024 😀

About HTML Entities — Encode & Decode / Escape Online

HTML entities are the escape sequences that let you show reserved characters — like <, >, &, and quotes — as literal text instead of having the browser treat them as markup. Writing &lt;script&gt; renders the words "<script>" on the page rather than opening a real tag, which is why entity encoding is essential whenever you drop code samples, user input, or special symbols into HTML.

This free HTML entity encoder and decoder works in both directions: escape plain text into safe entity form, or unescape entity sequences back to readable characters. It understands named references (&copy;), numeric decimal (&#169;), and hexadecimal (&#xA9;), and you can choose named or numeric output for encoding.

Everything runs entirely in your browser — nothing you paste is uploaded — so it's safe for snippets, templates, and sensitive content alike.

Features

  • Encode text to HTML entities and decode entities back to text
  • Choose named (&copy;) or numeric (&#169;) output for encoding
  • Decodes named, decimal (&#NN;), and hex (&#xNN;) references
  • Always escapes the markup characters & < > " '; works fully offline

How to use

  1. Paste an HTML fragment to decode, or plain text to encode, into the input pane.
  2. Pick Decode to unescape entities, or Encode to escape your text.
  3. For Encode, toggle Named or Numeric to control the entity style.
  4. Copy the result from the output pane, or clear and start again.

Frequently asked questions

What is the difference between named and numeric entities?

Named entities use a memorable keyword, like &copy; for ©, while numeric entities reference the Unicode code point in decimal (&#169;) or hex (&#xA9;). Both render identically; named ones are easier to read, numeric ones work even when a name does not exist.

Which characters must be escaped in HTML?

At minimum, & must become &amp;, < becomes &lt;, and > becomes &gt;. Inside attribute values you should also escape " (&quot;) and ' (&#39;). This tool always escapes those five so your output is safe in both element and attribute contexts.

Is HTML entity encoding the same as escaping for security?

Entity encoding is the core of preventing HTML/XSS injection, because it stops user input from being parsed as markup. It is a display-safety measure, not encryption — anyone can decode it. Always encode untrusted content before placing it in a page.

Does my text get sent to a server?

No. All encoding and decoding happens locally in your browser with a hand-rolled entity table — no network requests, no third-party libraries calling home. Your input never leaves your device.

Related tools

HTML to Text — Strip Tags & Remove HTML Online Strip HTML to text or wrap text in HTML. HTML Formatter — Beautify & Minify HTML Online Beautify or minify HTML offline. URL Encoder / Decoder — Online Percent-Encoding Percent-encode and decode URL components

Everything runs locally in your browser — your input is never uploaded.