Simples Two-Way PHP function to Encryption & Decryption String – without using openssl

The next php function will provide you a fast and very simple two-way system to encrypt a string or decrypt an encrypted string, useful for situations that do not require increased security, ie things that do not attract the attention of hackers or government spy services :).

function simpleStrCrypt($text, $userkey, $decode=false) {
  $key = hash('sha256',$userkey,true); 
  $key_length = strlen($key)-1;	

  if ($decode) {
    $text = strtr($text, '-_', '+/');
    $text = base64_decode($text, false);
    $crc32 = ord($text[strlen($text) -1]);		
    $text_length = strlen($text)-1;
  } else {	
    $crc32 = crc32($text.$userkey) % 256;
    $text_length = strlen($text);

  $code = '';

  for ($i = 0; $i < $text_length; $i++) {		
    $code .= chr( ord($text[$i]) ^ ord($key[$k]) ^ $crc32 );		
    if ($k < $key_length) 

  if ($decode === false) {
    $code .= chr($crc32);
    $code = base64_encode($code);
    if ($code === false)
      return false;		
    $code = strtr($code, '+/', '-_');		
  return rtrim($code, '=');

* it can be used in GET / REQUEST parameters,  which you want to not be easy to read, such as an external link or other data without major importance:


example of use:

<a target="_blank" rel="nofollow" href="exturl.php?url=<?php echo simpleStrCrypt('', __EXT_URL_KEY); ?>" class="external-link"><i class="fa-facebook"></i></a>

example for decryption

$location = (!empty($_GET['url'])) ? simpleStrCrypt($_GET['url'], __EXT_URL_KEY, true) : '#';

the encryption key must be defined somewhere in the script:

define('__EXT_URL_KEY', 'd%wHXDxy9jz^K!FG');

Very important note:

This function is not recommended for protecting sensitive data because it does not have advanced encryption techniques but the simplest possible ones.

* It may be a bit slower than using openssl, but the resulting text is much shorter, which is preferable when encrypting links and we don’t want the result to be longer than 2000 characters !

byrev Written by:

Be First to Comment

Leave a Reply

Your email address will not be published. Required fields are marked *