Security Batch Processing 2026-04-07

Batch Hash Files (SHA-256, MD5, SHA-512)

Q: Which hash algorithm should I use for file integrity?

Use SHA-256 for most cases — it's fast, secure, and universally supported. Avoid MD5 for security-sensitive applications (it has known collision vulnerabilities). Use SHA-512 when you need extra security margin.

Generate checksums for hundreds of files using SHA-256, MD5, or SHA-512. Verify file integrity, detect tampering, and create manifest files for deployment.

Tools used: Hash Generator All Free

The Problem

You need to verify the integrity of a large number of files after a download, backup, or deployment. Hashing them one at a time is impractical, and you need a checksum manifest for future verification.

Why Batch Processing Matters

File integrity verification is critical for software distribution (verifying downloads), deployment pipelines (detecting corrupted assets), backup validation (confirming no data loss), and security audits (detecting unauthorized modifications). A checksum manifest makes future verification instant.

Common Use Cases

Create SHA-256 checksums for a software release package
Verify backup integrity after transfer to remote storage
Generate content hashes for cache busting in web deployments
Detect unauthorized file modifications in production servers

Step-by-Step Instructions

Choose your hash algorithm

Use SHA-256 for general integrity (recommended). Use MD5 only for non-security checksums (faster but collision-prone). Use SHA-512 for maximum security.

Generate checksums for all files

Run the batch hashing command on your directory. The output is a standard checksum file compatible with sha256sum -c for verification.

Save the manifest file

Store the checksum manifest (checksums.sha256) alongside your files or in a secure location. This file is your source of truth for verification.

Verify files against manifest

Run sha256sum -c checksums.sha256 to verify all files match. Any modifications, corruptions, or missing files will be flagged immediately.

Code Examples

# Generate SHA-256 checksums for all files in a directory
find ./release -type f -exec sha256sum {} \; > checksums.sha256

# Verify all checksums
sha256sum -c checksums.sha256

# Generate MD5 checksums (faster, less secure)
find ./release -type f -exec md5sum {} \; > checksums.md5

# Hash only specific file types
find . -name '*.js' -o -name '*.css' | xargs sha256sum > assets.sha256

# Compare two directories (find changed files)
diff <(cd dir1 && find . -type f -exec sha256sum {} \; | sort) \
     <(cd dir2 && find . -type f -exec sha256sum {} \; | sort)

import hashlib
from pathlib import Path

def hash_file(path: Path, algo: str = "sha256") -> str:
    """Hash a file using specified algorithm."""
    h = hashlib.new(algo)
    with open(path, "rb") as f:
        for chunk in iter(lambda: f.read(8192), b""):
            h.update(chunk)
    return h.hexdigest()

# Hash all files in directory
target_dir = Path("./release")
algo = "sha256"
manifest = []

for file_path in sorted(target_dir.rglob("*")):
    if file_path.is_file():
        digest = hash_file(file_path, algo)
        relative = file_path.relative_to(target_dir)
        manifest.append(f"{digest}  {relative}")
        print(f"{digest}  {relative}")

# Save manifest
Path(f"checksums.{algo}").write_text("\n".join(manifest) + "\n")
print(f"\nHashed {len(manifest)} files → checksums.{algo}")

const crypto = require('crypto');
const fs = require('fs');
const path = require('path');

function hashFile(filePath, algo = 'sha256') {
  const data = fs.readFileSync(filePath);
  return crypto.createHash(algo).update(data).digest('hex');
}

function walkDir(dir) {
  let files = [];
  for (const entry of fs.readdirSync(dir, { withFileTypes: true })) {
    const full = path.join(dir, entry.name);
    if (entry.isDirectory()) files.push(...walkDir(full));
    else files.push(full);
  }
  return files;
}

const targetDir = './release';
const algo = 'sha256';
const files = walkDir(targetDir).sort();
const manifest = files.map(f => {
  const hash = hashFile(f, algo);
  const rel = path.relative(targetDir, f);
  return `${hash}  ${rel}`;
});

fs.writeFileSync(`checksums.${algo}`, manifest.join('\n') + '\n');
console.log(`Hashed ${files.length} files`);

Single vs Batch Comparison

Single file (web tool)

Paste text → get SHA-256, MD5, SHA-512 hashes instantly

Batch output

$ find ./release -type f -exec sha256sum {} \; > checksums.sha256
$ cat checksums.sha256
a3f2b8c...  ./release/app.js
7d91e4a...  ./release/styles.css
b28f3dc...  ./release/index.html
e5c7a91...  ./release/logo.png
$ sha256sum -c checksums.sha256
./release/app.js: OK
./release/styles.css: OK
./release/index.html: OK
./release/logo.png: OK

Download Workflow Template

Save this JSON workflow template to automate this process in your CI/CD pipeline or scripts.

Download batch-hash-verify.json

Frequently Asked Questions

Which hash algorithm should I use for file integrity?

Use SHA-256 for most cases — it's fast, secure, and universally supported. Avoid MD5 for security-sensitive applications (it has known collision vulnerabilities). Use SHA-512 when you need extra security margin.

How fast is batch hashing?

SHA-256 hashes at roughly 200-500 MB/s on modern hardware. A directory with 1,000 files totaling 1 GB takes about 2-5 seconds. SSD vs HDD matters more than the hash algorithm for I/O-bound workloads.

Can I use this for password hashing?

No. SHA-256 is for file integrity, not passwords. For passwords, use bcrypt, scrypt, or Argon2 — they're intentionally slow to resist brute-force attacks. See our Password Generator.

Related Batch Guides

📦

Each tool runs in your browser with no signup required. Process single items instantly.

Open Hash Generator

← All Batch Guides All Developer Guides