Password Generator
Generate cryptographically secure random passwords with configurable length, character types and entropy display.
How to Use the Password Generator
Use the slider to select your desired password length (8 to 128 characters). Toggle the checkboxes to include or exclude lowercase letters, uppercase letters, numbers, and symbols. Click "Generate Password" to create a cryptographically secure random password, then click "Copy" to copy it to your clipboard.
Password Strength Tips
- Length matters most — longer passwords are exponentially harder to crack. Aim for 16+ characters.
- Use all character types — mixing uppercase, lowercase, numbers and symbols maximizes entropy.
- Never reuse passwords — generate a unique password for every account.
- Use a password manager — store your generated passwords securely in a password manager.
What is Entropy?
Entropy measures the randomness (unpredictability) of a password in bits. A password with 80+ bits of entropy is considered very strong. The entropy depends on both the password length and the size of the character set used.
Frequently Asked Questions
Is this password generator secure?
Yes. It uses crypto.getRandomValues(), the cryptographically secure random number generator built into your browser. No passwords are transmitted to any server — everything happens locally in your browser.
Are my generated passwords stored anywhere?
No. Generated passwords exist only in your browser memory. They are not stored, logged, or transmitted anywhere. Once you close the tab, the password is gone.
How long should my password be?
At minimum 12 characters, but 16 or more is recommended. For critical accounts like banking or email, use 20+ characters with all character types enabled.
What does entropy mean?
Entropy measures password randomness in bits. Higher entropy means a harder-to-crack password. A 16-character password with all character types has about 105 bits of entropy — virtually uncrackable by brute force.
Can I use this for work or enterprise passwords?
Yes. The Web Crypto API used here meets the same security standards as enterprise password managers. The passwords are generated entirely client-side with no server involvement.
More Security & Privacy
Password Strength Checker
Check password strength with entropy calculation, pattern detection and common password matching.
Open tool →Security Hash Generator
Generate SHA-1, SHA-256, SHA-384 and SHA-512 hashes from text or files using the Web Crypto API.
Open tool →TOTP Generator
Generate time-based one-time passwords (TOTP) from a base32 secret with live 30-second countdown.
Open tool →CSP Header Generator
Build Content-Security-Policy headers with a visual form, presets and per-directive configuration.
Open tool →AES Encrypt / Decrypt
Encrypt and decrypt text with AES-256-GCM and PBKDF2 key derivation, entirely in the browser.
Open tool →RSA Key Generator
Generate RSA key pairs (2048 or 4096 bit) in PEM format using the Web Crypto API.
Open tool →