Password Generator
Generate cryptographically random passwords with custom length and character sets. Includes entropy score and strength meter — free, no sign-up, runs entirely in your browser.
Password Generator
What is a password generator?
Length is the single most important factor. A 16-character password with mixed character sets has far more entropy than a shorter password with special characters. This tool shows entropy in bits.
Character sets
Enabling uppercase, lowercase, numbers, and symbols maximises the search space. Even enabling just two or three sets produces strong passwords at sufficient length.
Security note
All passwords are generated in your browser using the Web Crypto API. Nothing is sent to any server, and no passwords are logged or stored.
How to use
- Set your desired password length using the slider (4–128 characters).
- Toggle the character sets you want — uppercase, lowercase, numbers, and symbols.
- Click "Generate" to create a new password. The entropy-based strength meter updates automatically. Click "Copy" to copy it.
Passwords are generated using the Web Crypto API entirely in your browser — nothing is sent to any server.
Frequently Asked Questions
- How long should a password be?
- Security experts recommend at least 16 characters for a general-purpose password. For highly sensitive accounts, 24+ characters with a mix of uppercase, lowercase, numbers, and symbols is preferred. Password managers allow you to use long random passwords without memorising them.
- What makes a password strong?
- Password strength is determined by entropy — the number of bits of randomness. A strong password has high entropy, achieved by combining a large character set (uppercase, lowercase, numbers, symbols) with sufficient length. 60+ bits of entropy is generally considered strong.
- Are the generated passwords saved anywhere?
- No. Passwords are generated entirely in your browser using the Web Crypto API. No data is sent to any server, and nothing is stored or logged.
- What is password entropy?
- Entropy measures how unpredictable a password is, calculated as: length × log₂(charset size). For example, a 16-character password using all character types (94 chars) has about 105 bits of entropy — essentially uncrackable by brute force.