Security

Password Generator

Strong, random passwords generated in your browser. Nothing leaves your machine.

@?l!unX.4]7UZ>+:^P!Y

Password StrengthVery Strong

Entropy: 130 bitsCrack time: Millions of years

Length20

464

Character Types

Exclude ambiguous characters

0 O 1 l I | — hard to distinguish

Character pool: 90 characters · 1.22e+39 possible combinations

Frequently asked questions

How strong should my password be?

Aim for at least 70 bits of entropy (~Strong). That's roughly a 12-character password with all character types enabled. For critical accounts (email, banking), use 80+ bits. For password managers, use 128 bits (20+ characters).

Is this actually secure?

Yes — passwords are generated using crypto.getRandomValues(), a cryptographically secure random number generator. The generation happens entirely in your browser; nothing is sent anywhere, stored, or logged.

Why is my password still weak?

Check that you have at least 3 character types enabled and the length is 12+. A password with only lowercase letters has a tiny character pool (26), so a 20-character password is actually quite strong — the entropy calculation is accurate regardless of length.

Should I use a password manager instead?

Yes — and generate your passwords here, then save them in a password manager. A password manager means you only need to remember one strong master password. Every other password should be unique, random, and unguessable.