Password Generator
Create strong random passwords. Customize length, symbols, and character sets.
Runs entirely in your browser — files never uploaded
—
Generated using crypto.getRandomValues with rejection sampling — uniformly random, never sent anywhere.
How to use Password Generator
- 1. Pick a length. 16–24 characters is a good default. Longer is exponentially stronger.
- 2. Choose character sets. More sets = more strength per character. Symbols help most.
- 3. Copy. Hit Copy — your password lands on the clipboard. Nothing is logged or stored.
FAQ
How random is this generator?
We use the browser's crypto.getRandomValues API with rejection sampling, so each character is uniformly random. The same primitive that powers TLS key generation in your browser.
What length should I use?
16+ characters with mixed sets is good for most accounts. 20+ is recommended for important accounts (email, banking, password manager). Skip the 8-character defaults of the 2000s — they're trivially crackable now.
What does 'bits of entropy' mean?
It's a measure of how hard the password is to guess. 60 bits ≈ uncrackable by casual attackers, 80+ bits ≈ unbreakable for years. We display an estimate based on the character classes used.
Is the password sent anywhere?
No. Generation runs entirely in your browser. The password never leaves your device — not even temporarily.
Should I exclude ambiguous characters?
Only if you'll be typing the password by hand (server consoles, written down). For copy-paste use, leave it off — fewer characters = slightly weaker.