Generating Random String Using PHP

In PHP, you can generate random strings using various methods depending on your security requirements. For basic random strings, you can use md5() with mt_rand(), while for cryptographically secure strings, use random_bytes().

Using md5() with mt_rand()

This method creates a random string by hashing a random number and extracting a substring ?

<?php
    $res = substr(md5(mt_rand()), 0, 5);
    echo "Displaying random string...<br>";
    echo $res;
?>

Displaying random string...
1c856

Using random_bytes()

For cryptographically secure random strings, use random_bytes() with bin2hex() ?

<?php
    $res2 = bin2hex(random_bytes(5));
    echo "Displaying cryptographically secure random string...<br>";
    echo $res2;
?>

Displaying cryptographically secure random string...
335b83d9e9

Combining Both Methods

Here's an example showing both approaches in a single script ?

<?php
    // Method 1: Using md5() with mt_rand()
    $res = substr(md5(mt_rand()), 0, 5);
    echo "Displaying random string...<br>";
    echo $res;
    
    echo "\nDisplaying another random string...<br>";
    
    // Method 2: Using random_bytes()
    $res2 = bin2hex(random_bytes(5));
    echo $res2;
?>

Displaying random string...
a3541
Displaying another random string...
335b83d9e9

Comparison

Conclusion

Use md5(mt_rand()) for basic random strings and random_bytes() for cryptographically secure strings. The random_bytes() method is recommended for security-sensitive applications like generating tokens or passwords.