Password Generator
Generate strong, truly random passwords with the character sets and length you choose. A live entropy meter shows how hard each password is to crack.
Select at least one character setAbout this tool
A password generator creates random passwords that are far harder to guess or brute-force than anything a human invents. This generator uses your browser's cryptographically secure random source (crypto.getRandomValues) with unbiased sampling, so every character is genuinely unpredictable — and nothing is ever sent over the network.
What makes a password strong?
Strength comes from entropy — the number of equally-likely possibilities an attacker must search. Entropy grows with both length and the size of the character set. A longer password from a larger alphabet (upper, lower, digits and symbols) is exponentially harder to crack. The meter here estimates entropy in bits: under 50 bits is weak, 60–80 is solid for most accounts, and 100+ is excellent.
Tips for using generated passwords
- Use a unique password per site so one breach can't unlock everything.
- Store them in a password manager — generated passwords are meant to be remembered by software, not your brain.
- Prefer length over complexity — a longer password beats a short one full of symbols.
- Enable two-factor authentication wherever possible for a second layer.
Frequently asked questions
Yes. They are generated locally in your browser using crypto.getRandomValues, a cryptographically secure random source, and are never transmitted or stored anywhere. Close the tab and they are gone.
Aim for at least 16 characters for important accounts. Length matters more than symbol complexity — a 20-character password is dramatically stronger than an 8-character one even with fewer special characters.
Entropy measures unpredictability in bits — roughly how many guesses an attacker needs. More length and a larger character set raise entropy. Below ~50 bits is weak; 80+ bits is strong against offline cracking.
If you may type the password by hand, excluding look-alikes such as l, 1, I, O and 0 avoids confusion. If a password manager fills it for you, leave them in for maximum entropy.