Password Generator

Generate secure random passwords and passphrases. All generation happens locally in your browser - no data is sent to any server.

Options

Length: 16

Character Types

Uppercase (A-Z)Lowercase (a-z)Numbers (0-9)Symbols (!@#$...)

Charset size: 88 characters

Password Security Guide

Length vs Complexity

A longer password with simple characters is often more secure than a short complex one. Each additional character exponentially increases the number of possible combinations.

PasswordCrack Time*

Ab1! (4 chars)Instant

Password1 (9 chars)Minutes

correcthorse (12 chars)Days

Kj8#mP2$xL9@ (12 chars)Centuries

correct-horse-battery (21 chars)Millennia+

*Estimated at 10 billion attempts/second

Best Practices

Use unique passwords - Never reuse passwords across different accounts
Use a password manager - Tools like Bitwarden, 1Password, or KeePass securely store all your passwords
Enable 2FA - Two-factor authentication adds an extra layer of security
Avoid personal info - Don't use birthdays, names, or common words
Consider passphrases - Easier to remember, equally secure

Understanding Entropy

Entropy measures password randomness in bits. Higher entropy = more secure.

< 28 bits: Very weak - cracked instantly
28-35 bits: Weak - cracked in minutes
36-59 bits: Reasonable - cracked in days/months
60-127 bits: Strong - cracked in years/centuries
128+ bits: Very strong - practically uncrackable

Formula: Entropy = Length × log₂(Charset Size)

Common Mistakes

✗Using password123 or qwerty
✗Substituting letters with numbers (p@ssw0rd)
✗Adding numbers at the end (mypassword1)
✗Using the same password everywhere
✗Sharing passwords via email or chat

Security Note: This tool generates passwords entirely in your browser using the cryptographically secure crypto.getRandomValues() API. No passwords are ever sent to any server.