Password Generator
Pick a length and character sets to generate a strong, random password.
At least one character from each selected set is included when the length allows.
How to make a strong password
Length matters most. Aim for at least 12 characters, and 16+ for important accounts. Mix uppercase, lowercase, digits, and symbols, and avoid dictionary words or personal information. This tool always includes at least one character from every set you select.
Understanding strength (entropy)
Entropy measures how hard a password is to guess, in bits, calculated as length × log2(number of possible characters). Higher is stronger. As a rough guide we label under 40 bits weak, 60+ strong, and 80+ very strong.
Privacy
All generation happens in your browser. There is no server, and generated passwords are never sent or stored. Randomness comes from the cryptographically secure Web Crypto API.
Frequently asked questions
- Are these passwords generated securely? Yes. Randomness uses crypto.getRandomValues (a cryptographically secure source) and integer sampling avoids modulo bias. Math.random is never used.
- Are generated passwords saved anywhere? No. Generated values are never stored or transmitted. Only your settings (length and character sets) are saved locally in your browser for next time.
- What is the estimated crack time? It assumes a fast offline brute-force attack (10 billion guesses per second) and is a rough guide only. Real-world safety also depends on the attacker and whether you reuse passwords.