HAR Viewer & Sanitizer

Client-side HAR file viewer with one-click sanitization for secure sharing

100% client-side. Your data never leaves your browser.

Drag and drop a HAR file here

or click "Open HAR File" to browse

Related Tools

jwt
JWT Decoder

Decode and inspect JSON Web Tokens in your browser. View the header, payload claims, and expiration status without sending your token to any server.

 %20
URL Encoder & HTML Entity Encoder

Encode text for URLs with encodeURIComponent or encodeURI, and escape HTML special characters to named or numeric entities. All processing happens in your browser.

 {}
JSON Formatter + Tree Viewer

Paste JSON to pretty-print, minify, or validate it with syntax highlighting and an interactive tree view. Real time error detection with line numbers.

Open, inspect, and filter HTTP Archive logs completely in your browser

Redact session tokens, passwords, and cookies with one click before sharing your logs with support teams. DevBento’s HAR viewer runs entirely in your browser with zero server uploads. Filter requests by category, duration, size, or error status. Every request gets a Chrome DevTools style waterfall showing blocked, DNS, connect, SSL, send, wait, and receive phases.

Features

Waterfall Visualization. Every request renders as a horizontal bar segmented by timing phase, exactly like Chrome DevTools. Colors map to specific phases: blocked (gray), DNS (blue), connect (cyan), SSL (teal), send (green), wait (amber), receive (bright green). Hover any segment to see the exact duration in milliseconds.

Smart Filters. Narrow down requests using category tabs (HTML, CSS, Scripts, Fetch/XHR, Images, Fonts, Media, Other), duration and size dropdowns, or quick toggles for Errors Only and Large Payloads. The search box filters by URL, method, or status code.

One-Click Sanitize. Strips authorization headers, cookies, set-cookie headers, API keys, passwords, and tokens. The rest of the HAR data (timing, status codes, URLs, payload structure) stays intact for debugging.

Export Clean HAR. Download the sanitized file as a valid HAR JSON ready for sharing with QA, support, or engineering teams.

Performance Audits. The tool automatically scans your HAR file for slow TTFB responses (>800ms), uncompressed text assets, large payloads (>2MB), and duplicate URLs. Each audit links to the affected requests so you can jump straight to them.

Client-Side Only. Your network logs stay on your machine. No upload, no server processing, no tracking.

Understanding the Waterfall Timeline

The waterfall timeline is the most useful part of any HAR viewer. Each row represents one HTTP request, and the horizontal bar shows how that request spent its time. Reading it correctly helps you find real performance bottlenecks instead of guessing.

The timeline breaks every request into sequential phases. Blocked time is the period the browser spent waiting before it could start the request. A high blocked time often means too many connections are competing for the same origin. DNS lookup measures how long it took to resolve the hostname. Slow DNS usually points to your DNS provider rather than your application. Connect time covers the TCP handshake. If you see high connect times alongside high SSL/TLS negotiation times, the server may be far from the user or the TLS configuration needs tuning. Send time is how long the browser took to transmit the request body. For most API calls this is negligible unless you are uploading large payloads. Wait time (TTFB, or Time to First Byte) is usually the most important metric. It measures how long the server took to start responding after receiving the request. A TTFB over 200ms on a CDN cached resource or over 800ms on a dynamic endpoint warrants investigation. Receive time is how long the browser spent downloading the response body. Large values here mean large payloads or slow network throughput.

Stacked bars are not cumulative. Each segment starts where the previous one ended. The total bar width adds up to the total response time. If a bar looks visually short next to another bar, that request finished relatively fast. The time ruler at the top of the waterfall shows the absolute time scale so you can compare requests across the page load.

The most common performance patterns to look for: a long blocked phase means connection pooling is saturated, a long wait phase means the server or database is slow, a long receive phase on a small resource means the network itself is congested, and a request that starts very late in the waterfall (far from the left edge) was queued behind something else.

Use Cases

Share debug logs with support teams without exposing session tokens or API keys. Export network traces for bug reports while keeping sensitive headers redacted. Inspect large HAR files locally instead of uploading to a third party service that may log your data. Find slow API endpoints by sorting by duration or scanning the waterfall for long wait bars. Check whether static assets are properly compressed by looking for compression audit warnings.

How It Works

  1. Drag and drop a HAR file onto the page or click Open HAR File to browse.
  2. Browse all requests in the waterfall table. Click any row to expand its full details: summary, headers, body, and timing breakdown.
  3. Use the search box, category tabs, duration and size dropdowns, or quick filters (Errors Only / Large Payloads) to narrow down the list.
  4. Click Sanitize HAR to redact sensitive headers and cookies.
  5. Download the clean HAR file for secure sharing.

Supported HAR Files

Chrome DevTools HAR exports. Firefox Network Log exports. Safari Network tab exports. Any valid HAR JSON file.