Password Generator
Generate secure random passwords with configurable length and character sets.
Generated password
nN1YUOdcsQ4Thl26
Examples
| Input | Result |
|---|---|
| Length: 16, uppercase + lowercase + numbers | kR7mNx2pLw9qTc4j |
| Length: 32, all character sets enabled | aB3$kM8!nP2@wQ6#xR9&yT1*zU5^vL0 |
| Length: 8, lowercase + numbers only | r7km3x2p |
| Length: 24, uppercase + lowercase + symbols | KmNxPw!qTc@jRy#LzBv$HgWs |
About this tool
This password generator creates random passwords directly in your browser using cryptographically secure randomness from the Web Crypto API. You can set the length anywhere from 4 to 128 characters and toggle which character sets to include: uppercase letters, lowercase letters, numbers, and symbols. A real-time strength indicator shows you how the current settings affect password security.
The strength score is based on the total entropy of the password, which depends on both length and the size of the character pool. A 16-character password with all four character sets enabled produces roughly 105 bits of entropy, which is well beyond what brute-force attacks can crack with current hardware. The password updates instantly when you change any setting, so you can experiment with different configurations until you find something that fits your requirements.
Frequently asked questions
How long should a password be to be secure?
A minimum of 12 characters is a good baseline for most accounts. For sensitive accounts like email or banking, aim for 16 or more characters with a mix of character types.
Is it safe to generate passwords in the browser?
Yes. This tool runs entirely in your browser using the Web Crypto API for randomness. No passwords are sent to any server or stored anywhere.
Should I include symbols in my passwords?
Including symbols significantly increases the number of possible combinations an attacker would need to try. Some services restrict which symbols are allowed, so you may need to adjust if a generated password gets rejected.