How are passwords generated?

Using the browser's cryptographically secure random source (window.crypto). Nothing leaves your device.

How is strength estimated?

With zxcvbn-style heuristics that look at length, character classes, and common patterns.

Your password

Strength

Bits of entropy

Each bit doubles the number of possible passwords an attacker must try.

entropy = length × log₂(charset size)

Assumes a uniformly random password. Reused or dictionary words have far less effective entropy.

· bits of entropy

Settings

Length

4 128

Lowercase (a-z)

Uppercase (A-Z)

Digits (0-9)

Symbols (!@#…)

Exclude similar

Drops 1, l, I, 0, O, o.

Exclude ambiguous symbols

Drops { } [ ] ( ) / \ ' " ` ~ , ; : . < >

Pick at least one character set.

The URL below carries your settings, not your password. Open it anywhere to generate a fresh password with the same options.

Some inputs are too long to fit in the URL.

Share URL

How are passwords generated?: Using the browser's cryptographically secure random source (window.crypto). Nothing leaves your device.
How is strength estimated?: With zxcvbn-style heuristics that look at length, character classes, and common patterns.