A password generator you don't have to trust
The awkward thing about online password generators is that you're asking a stranger's server to invent your secret. This one doesn't work that way: passwords are generated by your own browser's cryptographic randomness (crypto.getRandomValues), with unbiased sampling, and never leave your device.
Adjust length and character sets and a fresh password appears instantly, with an honest entropy estimate instead of a vague color bar.
Frequently asked questions
Could anyone else see the generated password?
No. It's generated by your browser's cryptographic random number generator on your device, never transmitted, never logged, and gone when you leave the page. We couldn't see it if we wanted to.
How long should a password be?
For accounts, 16+ characters with all character sets (about 100 bits of entropy) is effectively uncrackable. Go to 20+ for anything critical like email or password-manager master passwords.
What do the entropy bits mean?
Entropy measures how many guesses an attacker would need — each bit doubles the work. 55+ bits resists casual attacks, 75+ is strong against serious offline cracking, and 100+ is beyond any realistic attack.