Password Generator

Generate a strong, random password right in your browser. Choose the length and which character types to include; nothing is sent anywhere, and a fresh password is built using your device's secure random number generator.

Set your options and press Generate password.

How to make a strong password

The two things that make a password strong are length and randomness. A long password drawn from a large, unpredictable character set is exponentially harder to crack than a short or guessable one. Current security guidance favours length above forced complexity rules — a long random password (or passphrase) beats a short one peppered with symbols.

How password strength is measured

Strength is commonly expressed as entropy in bits — the base-2 logarithm of the number of possible passwords. For a random password it is:

entropy (bits) = length × log₂( size of character set )

With all four character sets enabled (about 94 printable characters), each character adds roughly 6.55 bits. A 16-character password is therefore around 105 bits — far beyond what's feasible to brute-force. As a rough guide, under 50 bits is weak, 50–80 is reasonable, and 80+ is strong.

Staying safe

This generator runs entirely in your browser using crypto.getRandomValues, a cryptographically secure source — nothing you generate is transmitted or stored. For real accounts, use a unique password everywhere and store them in a reputable password manager, and turn on two-factor authentication where you can.

Note: never reuse passwords across sites. A leak from one site is how attackers get into the others; a password manager makes per-site passwords painless.

Frequently asked questions

Is this password generator safe?

Yes. It runs entirely in your browser using crypto.getRandomValues, the browser's cryptographically secure random source. Nothing you generate is sent over the network or saved.

How long should my password be?

Aim for at least 12–16 characters for important accounts. Longer is stronger — each extra random character multiplies the number of possibilities and the time needed to crack it.

What is password entropy?

Entropy in bits measures unpredictability: length × log₂(character-set size). Higher is better — under 50 bits is weak, 80+ bits is strong. A 16-character all-types password is about 105 bits.

Should I include symbols?

Including symbols enlarges the character set and raises entropy per character, so it helps. But length matters more — a longer password without symbols can still be very strong.

MB
Mustafa Bilgic · Editor, Calcool
Passwords are generated with the browser’s cryptographically secure crypto.getRandomValues, and strength is reported as entropy in bits (length × log₂ of the character-set size). The length-over-complexity guidance follows NIST SP 800-63B digital-identity guidelines. Everything runs in your browser.

Related calculators

🔬 Scientific Calculator🔄 Unit Converter% Percentage Calculator⚖️ Ratio Calculator