How to Compute MD5 Checksums: Tools and Examples
What an MD5 checksum is
MD5 produces a 128-bit (16-byte) hash, usually shown as a 32-character hexadecimal string. It’s used for quick integrity checks (detecting accidental corruption) but is cryptographically broken for security-sensitive uses (collisions are practical).
Common command-line tools
-
Linux / macOS
- md5sum (Linux) — Example:
Code
md5sum filename.zipOutput:
filename.zip - md5 (macOS) — Example:
Code
md5 filename.zipOutput:
MD5 (filename.zip) =
- md5sum (Linux) — Example:
-
Windows
- certutil (built-in) — Example:
Code
certutil -hashfile filename.zip MD5Output includes the MD5 hash.
- PowerShell (Get-FileHash) — Example:
Code
Get-FileHash filename.zip -Algorithm MD5Output fields: Algorithm, Hash, Path
- certutil (built-in) — Example:
-
Cross-platform / GUI
- HashMyFiles (Windows), QuickHash, 7-Zip (Files pane → CRC/Hash), various file managers and third-party checksum utilities.
Examples
- Verify a downloaded file on Linux:
Code
md5sum ubuntu.iso # compare the printed hash to the vendor’s published MD5
- Generate MD5 in PowerShell:
Code
Get-FileHash .\installer.exe -Algorithm MD5 | Select-Object -ExpandProperty Hash
- Create and verify a checksum list on Linux:
Code
md5sum *.tar.gz > checksums.md5 md5sum -c checksums.md5 # verifies all, shows OK or FAILED
Notes and best practices
- Use MD5 only for detecting accidental corruption or legacy compatibility. Do not use MD5 for cryptographic integrity or authentication — prefer SHA-256 or stronger.
- When sharing hashes, use a secure channel to avoid tampering.
- For scripted workflows, compare hashes programmatically (string equality) and check exit codes where available.
If you want, I can provide a short script (bash, PowerShell, or Python) to compute and verify MD5 checksums automatically.
Leave a Reply