Password Generator

Generate secure random passwords using cryptographic randomness.

How to Use

Adjust password length using the slider (8-128 characters)—longer is exponentially more secure. Toggle character sets: Uppercase (A-Z), Lowercase (a-z), Numbers (0-9), Symbols (!@#$%^&*). Enable at least 2-3 character types for good entropy. Optional: Toggle 'Avoid Ambiguous' to exclude lookalike characters (0/O, 1/l/I) for manually typed passwords. The tool shows real-time password strength (Weak/Fair/Good/Strong) and entropy bits. Click 'Generate' for a new password, 'Copy' to clipboard. Generate multiple passwords with 'Bulk Generate' (up to 100 at once) for batch account creation or password rotation. Entropy formula: log2(charset_size^length)—a 12-char password with all character types has ~78 bits of entropy (2^78 combinations).

Common Use Cases

Limitations & Important Notes

This tool generates cryptographically strong passwords but cannot guarantee how you store or use them. NEVER store passwords in plain text—hash with bcrypt/argon2. NEVER reuse passwords across services—use a password manager. NEVER share passwords via email/Slack—use encrypted secrets sharing tools. Generated passwords are random—not memorable; for human-memorized passwords consider passphrases (4-6 random words) which offer better usability with similar entropy. The 'crack time' estimate assumes offline attack with modern GPUs (billions of guesses/sec)—online attacks with rate limiting are much slower. Very long passwords (64+ chars) may hit length limits in some systems (e.g., older UNIX crypt() limited to 72 chars for bcrypt). Symbols (!@#$) may cause issues in some contexts (shells, config files)—test or escape properly. For extreme security (government, military), use hardware security keys (YubiKey) and multi-factor authentication, not just strong passwords.