Password Generator
Cryptographically secure passwords with entropy & crack-time estimates
Why people choose us
Private by design
Your input is processed securely and never sold. Client-side tools never leave your browser at all.
Instant & free
No installs, no waiting. Results in seconds, right in your browser, on any device.
Free forever
No sign-up, no watermarks, no limits. All client-side tools are free to use as much as you like.
Frequently asked questions
How random are these passwords?⌄
They use your browser’s Web Crypto API (crypto.getRandomValues) — the same cryptographically secure randomness used for encryption keys — with rejection sampling to avoid modulo bias. Nothing is generated on, or sent to, any server.
How long should my password be?⌄
Aim for at least 60 bits of entropy for normal accounts and 80+ bits for email, banking and password-manager master passwords. With all character sets enabled, 12 characters ≈ 78 bits and 16 characters ≈ 104 bits.
What does the crack-time estimate assume?⌄
A strong offline attack at 10 billion guesses per second against the full random character space. Real online attacks are millions of times slower, so the estimate is deliberately conservative.