Loading
Preparing the page...
Loading
Preparing the page...
Create cryptographically secure passwords with customisable requirements. Uses your browser's Web Crypto API for true randomness, meaning no passwords ever leave your device.
This tool handles sensitive data. All processing happens in your browser and no data is sent to any server. However, you should avoid entering real credentials or sensitive information when learning.
This is designed for learning and exploration. Use test data when possible and always verify results independently for production use.
No password generated yet
Click "Generate Password" to create a secure password
Entropy measures password randomness in bits. Each bit doubles the number of possible combinations an attacker must try. A 40-bit password has about 1 trillion combinations. An 80-bit password has over a septillion combinations, making brute-force attacks practically impossible with current technology.
Humans are terrible at creating random passwords. We tend to use patterns, dictionary words, and predictable substitutions that attackers know to try first. A cryptographic generator creates truly random passwords that have no patterns to exploit.
For most accounts, I recommend 16 or more characters with uppercase, lowercase, numbers, and symbols enabled. This gives you about 100 bits of entropy, which is considered secure against all known attack methods for the foreseeable future.
Never reuse passwords across sites. Use a password manager to store your generated passwords securely. Good options include Bitwarden (open source), 1Password, or your browser's built-in password manager if it syncs securely.