What are recovery codes for?

Recovery codes are single-use backup credentials that let a user regain access to an account if they lose their primary two-factor device. Each code works once, so a typical service issues a set of ten that the user stores safely.

How should recovery codes be stored on the server?

Never store them in plain text. Hash each code the same way you hash passwords, with a slow algorithm and per-code salt, and mark a code as used once it is redeemed so it cannot be reused.

Are these codes generated securely?

Yes. Every code is built from crypto.getRandomValues, the browser's cryptographically secure RNG. They are not derived from a predictable sequence, so each one is independent and unguessable.

What format do services like GitHub use?

Most services use short alphanumeric codes grouped for readability, such as five characters, a hyphen, then five more. This tool lets you match that style or choose your own length and grouping.

Can a user reuse a recovery code?

No, by design. Each recovery code should be valid for exactly one login, after which the server marks it consumed. The user is usually prompted to regenerate a fresh set once most codes are used.

Recovery Codes Generator

Recovery codes are single-use backup credentials that let someone log in when their normal second factor — an authenticator app, a security key, an SMS code — is unavailable. When a user enables two-factor authentication, the service typically hands them a set of ten codes to print or save in a password manager. If they lose their phone, one of those codes gets them back in. This tool generates a batch of cryptographically random codes in the familiar xxxx-xxxx style used by GitHub, Google, and similar services, entirely in your browser.

How it works

Each code is built from secure random bytes, then mapped onto a clear, unambiguous character set:

Draw random values from crypto.getRandomValues — the browser’s cryptographically secure RNG.
Map each value onto an alphabet that omits visually confusing characters (no 0/O or 1/l/I) to reduce transcription errors.
Insert a hyphen at the chosen group size to make the code readable, producing forms like a8k3f-2m9qz.

Because each code is generated independently from secure randomness, knowing one code tells an attacker nothing about the others.

Storage and lifecycle

On the server, store each code hashed with a slow password hash and a per-code salt — never in plain text. Mark a code as consumed the moment it is redeemed.
On the user side, codes belong somewhere reachable without the primary device: a password manager, a printed sheet in a safe, or an encrypted note.
Treat the set as single-use: each code authenticates exactly one login. Prompt the user to regenerate a fresh set when most are spent.

Everything here runs locally, so generated codes never touch a network — copy them straight into your enrollment flow or test fixtures.