How do I encode HTML entities?

Paste or type your text in the left panel. Special characters like &, , ", and ' are instantly converted to their HTML entity equivalents (&, <, >, ", '). Click 'Copy Output' to copy the result.

Why should I encode HTML entities?

HTML entity encoding prevents cross-site scripting (XSS) attacks by escaping characters that have special meaning in HTML. Always encode user-generated content before rendering it in a web page to ensure it is displayed as text rather than executed as markup.

Is the HTML entity encoder free?

Yes, completely free. Encoding runs entirely in your browser — no data is sent to any server, and no signup is required.

HTML Entity Encoder

Encode special characters to HTML entities instantly online. Converts &, <, >, ", and ' to their safe HTML equivalents. Free HTML encoder — runs entirely in your browser.

Plain Text Input

HTML Encoded Output

Related Tools

Base64 Encode

Encode any text to Base64 instantly. Full UTF-8 support, runs entirely in your browser.

Base64 Decode

Decode Base64 strings back to plain text instantly. Full UTF-8 support, runs entirely in your browser.

URL Encode

URL-encode any text instantly with percent-encoding. Supports Unicode and all special characters.

About HTML Entity Encoding

& → & — prevents ambiguity in HTML parsing
< → < — prevents tag injection
> → > — closes open tags safely
" → " — safe inside attribute values
' → ' — safe inside single-quoted attributes

When to use it

Displaying user-generated content in HTML to prevent XSS attacks
Embedding raw text inside HTML attributes or body content
Generating HTML email templates with dynamic content