Free Strong Password Generator

Generate cryptographically secure random passwords. Nothing is transmitted — passwords are created and stay in your browser.

Frequently Asked Questions

How random are these passwords?

They are generated with your browser's Web Crypto API (crypto.getRandomValues), the same cryptographically secure random source used for encryption keys — not the weaker Math.random(). Every generated password also includes at least one character from each type you select.

How long should my password be?

16 characters with all character types gives roughly 100 bits of entropy — far beyond what any current attacker can brute-force. Use 20+ for anything critical, and never reuse passwords across sites; a password manager makes that painless.

Are the generated passwords sent to a server or stored?

No. Generation happens entirely in your browser's memory. Nothing is transmitted, logged, or saved — refresh the page and the password is gone forever.

What does "exclude look-alikes" do?

It removes characters that are easy to confuse when reading or typing a password by hand: 0 and O, 1, l and I. Useful for passwords someone might need to type from a screen or paper.