Password Generator

This free password generator creates cryptographically secure random passwords directly in your browser using the Web Crypto API. Every password is generated locally — nothing is transmitted to any server, logged, or stored anywhere. You can choose length (8–128 characters), include or exclude uppercase letters, lowercase letters, numbers, and symbols, and filter out ambiguous characters (0/O, 1/l/I) that cause confusion when reading passwords aloud.

The entropy meter shows the information-theoretic strength of your password in bits. Entropy is calculated as log₂(character pool size) × length. A password with 80+ bits of entropy is considered computationally infeasible to crack by brute force with current technology — even using a GPU cluster running billions of attempts per second, it would take longer than the age of the universe. Aim for at least 64 bits for basic accounts and 80+ bits for financial or sensitive accounts.

Best practices for password security: use a unique password for every account (reuse is the primary cause of credential stuffing attacks). Use a password manager (Bitwarden, 1Password, or the built-in browser keychain) to store them — you should only need to remember one master password. Enable two-factor authentication (2FA) on every account that supports it, as it protects you even if a password is compromised in a data breach.

A common misconception is that complex passwords with special characters are automatically stronger than long simple passwords. A 20-character lowercase passphrase like "correct-horse-battery-staple" has more entropy than an 8-character "P@ssw0rd!" style password. Length contributes more to strength than character set diversity, which is why this generator defaults to longer lengths.

More generators