Password Generator

TL;DR

The password generator picks a length and character types (lowercase, uppercase, numbers, symbols) to instantly create a cryptographically secure random password.

It uses the browser's crypto.getRandomValues, and the generated password is never sent to a server.

Password length: 16 characters At least 8 characters is recommended. 16 or more is safer for important accounts.

Character types to include

Lowercase (a-z) Uppercase (A-Z) Numbers (0-9) Symbols (!@#$…) Exclude ambiguous (0,O,1,l,I)

Generated password

Choose a length and character types, then press Generate.

Store generated passwords in a trusted password manager. Do not reuse the same password across multiple sites.

How to use

Pick a length — set the password length with the slider or number (6–64 characters).
Pick character types — check the lowercase, uppercase, number and symbol types to include.
Generate and copy — press Generate to get a random password and its strength, then copy it.

Password strength scale

Strength shown by entropy (bits)
Strength	Entropy	Example
Weak	Under 60 bits	8 lowercase only, etc.
Fair	60–100 bits	12 with letters + numbers
Strong	100 bits or more	16+ mixing all 4 types

Entropy is calculated as length × log2(pool size). Longer passwords with more character types are stronger against brute-force attacks. Turning on all four types and using 16 or more characters gives a strong password of over 100 bits.

Frequently Asked Questions (FAQ)

Is this password generator secure?

Yes. It uses the browser's cryptographic random number generator (crypto.getRandomValues), so the random passwords are hard to predict. Passwords are created only in your browser and are never sent to or stored on a server.

How long should a password be?

When mixing uppercase, lowercase, numbers and symbols, at least 12 characters is recommended, and 16 or more is safer for important accounts. Longer passwords with more character types are stronger against brute-force attacks.

How is strength (weak, fair, strong) calculated?

Strength is shown from the entropy in bits, computed from the size of the character pool and the length. Entropy = length × log2(pool size). Under about 60 bits is weak, 60 to 100 is fair, and 100 or more is strong.

Which symbols are included?

Turning on the symbols option includes common signs such as !@#$%^&*()-_=+[]{};:,.?/. Allowed symbols vary by site, so check the sign-up policy.

Related tools & guides

Case Converter — change the casing of a memorized phrase.
URL Encoder / Decoder — safely place values with symbols in a URL.
Lorem Ipsum Generator — create placeholder dummy text for testing.

Last updated: 2026-06-25