🔒

Password

Generate secure passwords with customizable options

Configuration

Generated Password

105.00 bits
Centuries
88

Frequently Asked Questions

How secure are the generated passwords?

Very secure. The generator uses the Web Crypto API (crypto.getRandomValues) for cryptographically secure randomness. A 16-character password with all character types has over 100 bits of entropy — practically uncrackable with current technology.

Are my passwords stored or transmitted?

No. All password generation happens locally in your browser. Generated passwords are never sent to any server, stored in any database, or logged anywhere.

How long should my password be?

For most accounts, 12-16 characters with mixed case, numbers, and symbols is more than sufficient. For high-security contexts (encryption keys, admin accounts), use 20+ characters.

What does "exclude ambiguous characters" mean?

It removes characters that look similar in many fonts: 0/O (zero/capital O), l/1/I (lowercase L/one/capital I). This prevents confusion when manually typing passwords.

Can I generate multiple passwords at once?

Yes. Set the desired count and generate a batch of passwords. Copy them all or pick individual ones as needed.

Password Generator: Create Strong Random Passwords Online

Cryptographically secure random passwords are created by this password generator using the Web Crypto API — not Math.random(). Length (8-128 characters), character types, and exclusion rules are all customizable. The strength score is updated in real-time. Everything is processed in your browser — generated passwords are never stored or transmitted anywhere.

Customizable rules

The length (8-128 characters) can be set, character types (uppercase, lowercase, numbers, symbols) can be chosen, ambiguous characters (0/O, l/1) can be excluded, and similar-looking pairs can be avoided. The strength meter updates in real-time so exactly how resistant your password is to brute-force attacks can be seen.

How strong is strong enough?

A 16-character password with mixed case, numbers, and symbols has over 100 bits of entropy — that would take billions of years to crack with current technology. For most accounts, 12-16 characters with all character types is more than sufficient. For high-security contexts (encryption keys), going longer is recommended.