Password History
Generated passwords will appear here
History is stored locally and cleared when you close the browserPassword Generator
Create strong, secure, and random passwords instantly. Customize length, character types, and generate uncrackable passwords for all your accounts.
100% Secure
All passwords are generated locally in your browser. Nothing is ever sent to our servers or stored anywhere.
Cryptographic Random
We use the Web Crypto API (crypto.getRandomValues) for true cryptographic randomness.
No Tracking
We don't track, log, or analyze your generated passwords. Your security is our priority.
Open Algorithm
Our password generation algorithm is transparent and follows industry best practices.
Understanding Password Strength
Learn what makes a password strong and how to protect your accounts
Very Weak
< 28 bitsCan be cracked instantly. Never use for any account.
Weak
28-35 bitsCrackable in minutes to hours. Not recommended.
Fair
36-59 bitsTakes days to weeks to crack. Minimum acceptable.
Strong
60-127 bitsTakes years to centuries. Good for most accounts.
Very Strong
128+ bitsVirtually uncrackable. Ideal for critical accounts.
Password Entropy Explained
Entropy measures the randomness of a password in bits. Each additional bit doubles the number of possible combinations.
| Character Set | Pool Size | Bits/Char |
|---|---|---|
| Numbers only (0-9) | 10 | 3.32 |
| Lowercase (a-z) | 26 | 4.70 |
| Mixed case (a-z, A-Z) | 52 | 5.70 |
| Alphanumeric | 62 | 5.95 |
| All printable ASCII | 94 | 6.55 |
How to Use the Password Generator
Create strong, secure passwords in four simple steps
Choose Password Type
Select between Random (maximum security), Memorable (easier to type), Passphrase (easy to remember), or PIN (numeric only).
Configure Settings
Adjust the length and select which character types to include. Use advanced options for specific requirements.
Generate Password
Click Generate to create your password. Review the strength meter and crack time estimation to ensure adequate security.
Copy & Store Safely
Copy your password and store it in a secure password manager. Never write passwords down or share them.
Password Requirements by Platform
Common password requirements for popular services
| Platform | Min Length | Max Length | Requirements | Recommended |
|---|---|---|---|---|
| 8 | 100 | Letters, numbers, symbols | 16+ characters | |
| Apple ID | 8 | 32 | Upper, lower, number | 16+ characters |
| Microsoft | 8 | 256 | 3 of 4 character types | 16+ characters |
| 6 | No limit | Letters and numbers | 14+ characters | |
| Twitter/X | 8 | No limit | Any characters | 14+ characters |
| 6 | No limit | Letters, numbers, symbols | 14+ characters | |
| 8 | No limit | Case-sensitive | 14+ characters | |
| Amazon | 8 | 128 | Upper, lower, number/symbol | 16+ characters |
| Banking (typical) | 8-12 | 20-32 | Varies by institution | Max allowed |
| GitHub | 8 | 72 | Not compromised in breach | 16+ characters |
Password vs Passphrase
Understanding the difference and when to use each
Random Password
- Maximum entropy per character
- Shorter length needed
- Works with all systems
- Hard to remember
- Difficult to type
- Easy to misread characters
Passphrase
- Easy to remember
- Easy to type
- Highly secure with 4+ words
- Longer to type
- Some sites have length limits
- May not meet symbol requirements
Frequently Asked Questions
Common questions about password security and our generator
A strong password has four key characteristics: length (16+ characters recommended), complexity (mix of character types), randomness (no patterns or dictionary words), and uniqueness (different for every account). Our generator creates passwords that meet all these criteria.
For most accounts, 12-16 characters with mixed character types provides excellent security. For critical accounts like email, banking, or password managers, use 20+ characters. The longer the password, the exponentially harder it is to crack.
Yes, absolutely. Our generator runs entirely in your browser using JavaScript and the Web Crypto API. Your passwords are never sent to any server, logged, or stored. All generation happens locally on your device, making it completely private and secure.
Entropy measures password randomness in bits. It represents the number of guesses needed to crack the password. Each bit doubles the difficulty. A 128-bit entropy password has 2^128 possible combinations, making it virtually impossible to crack with current technology.
We estimate crack time assuming an attacker can make 100 billion guesses per second (state-of-the-art hardware). The calculation divides total possible combinations by guesses per second. Real-world crack time depends on the attacker's resources and methods.
Passphrases are excellent for passwords you need to remember and type frequently, like your master password. A 4-5 word passphrase provides strong security while being much easier to remember. Use random passwords for accounts managed by a password manager.
When one service is breached, attackers try those credentials on other sites (credential stuffing). If you reuse passwords, one breach compromises all your accounts. Use unique passwords for every account and a password manager to keep track of them.
Special characters increase the character pool and entropy, making passwords harder to crack. However, a longer password with just letters can be equally secure. For example, a 20-character all-lowercase password has similar entropy to a 12-character password with all character types.
Use a reputable password manager like Bitwarden, 1Password, or KeePass. They encrypt your passwords with a master password, sync across devices, and can auto-fill login forms. Never store passwords in plain text, browsers without a master password, or sticky notes.
Modern security guidance no longer recommends regular password changes for their own sake. Change passwords immediately if: you suspect compromise, a service reports a breach, you've shared the password, or you've used it on a public computer. Otherwise, strong unique passwords can remain unchanged.
Passwords to Avoid
These commonly used passwords are instantly crackable
These passwords appear in every hacker's dictionary and are cracked instantly. If you use any of these, change them immediately!
Top 10 Most Common
- 123456
- password
- 123456789
- 12345678
- 12345
- qwerty
- 1234567
- 111111
- 1234567890
- 123123
Keyboard Patterns
- qwerty
- qwertyuiop
- asdfgh
- zxcvbn
- 1qaz2wsx
- qazwsx
- !@#$%^&*()
Common Words
- password
- letmein
- welcome
- admin
- login
- master
- dragon
Personal Info (Never Use)
- Your name
- Pet's name
- Birthday
- Phone number
- Address
- Sports team
- Family names
Privacy & Security Notice
This password generator runs entirely in your web browser. No passwords are ever transmitted, stored, or logged by our servers. We use the Web Cryptography API for cryptographically secure random number generation. While we strive to provide the most secure password generation possible, we recommend using a reputable password manager to store your passwords securely. Always enable two-factor authentication when available for an additional layer of security.