Free password generator
Generate strong, cryptographically random passwords. Customize length and character sets, then copy with one click. No passwords are ever stored or sent anywhere.
How it works
Are these passwords truly random?
Yes. Passwords are generated using the browser's built-in crypto.getRandomValues() API, which produces cryptographically secure random values. This is the same standard used in security-focused applications — far more random than Math.random().
Are my passwords stored?
No. Passwords are generated entirely in your browser's memory and are never sent to any server, stored in a database, or written to disk. When you leave or refresh the page, they are gone.
How long should my password be?
Security experts generally recommend 16+ characters for important accounts. For master passwords (e.g. for a password manager), use 20+ characters. Length matters more than complexity — a 16-character lowercase-only password is stronger than an 8-character password with symbols.
Should I include symbols?
Symbols increase password entropy and make brute-force attacks harder. However, some sites don't allow certain special characters. If a site rejects your password, try disabling symbols and increasing the length instead.
What is the strength indicator based on?
The strength meter scores passwords based on length (longer is better) and the variety of character types used (uppercase, lowercase, digits, symbols). It's a quick guide — using a password manager is always the best practice regardless of score.