Password Generator
Generate strong, cryptographically random passwords. Runs entirely in your browser.
How are passwords generated?
Passwords are generated using the browser's crypto.getRandomValues() API — the same cryptographic random number generator used in TLS and security software. Your passwords are never sent to a server or stored anywhere.
How long should a password be?
- 12 characters — minimum for most accounts
- 16 characters — recommended for email and financial accounts
- 20+ characters — best for admin accounts, SSH keys and password manager master passwords
What makes a password strong?
A strong password has high entropy — a large number of possible combinations. Length is the most important factor. Using all four character sets (uppercase, lowercase, numbers, symbols) and a length of 16+ creates a password that would take billions of years to brute-force with current hardware.
Should I use a password manager?
Yes. Generate a different strong password for every account using this tool, then store them in a password manager (Bitwarden, 1Password, etc.). Never reuse passwords across sites.