HTML Escape / Unescape

Convert special HTML characters to entities and back.

Input & Output

Raw

Escaped / Output

Escapes the five special characters in HTML text: & < > " ' → & < > " '.
Unescape reverses those entities back to literal characters.
Escaping is not the same as sanitizing. This tool does not remove unsafe tags/attributes or prevent XSS.
URL encoding (%HH) is different and handled by the URL Encoder tool.

All text stays local, no network calls.

Only basic five entities supported; not a full HTML sanitizer.

Looking for broader guides and best practices? Visit the ToolsAreUs Blog for indexes (like the full tool list) and articles (e.g. secure password generation).