Strong Password Generator
Generate strong, random passwords and passphrases with a live strength meter — 100% in your browser.
—Generated locally with a cryptographically secure random source (crypto.getRandomValues). Nothing is sent anywhere.
About Strong Password Generator
Generate a strong password in two styles: random characters with an adjustable length and any mix of lowercase, uppercase, digits and symbols (with an option to drop look-alike characters), or a memorable passphrase of random words with your choice of separator, capitalization and a trailing number.
A strength meter estimates the entropy in bits so you can see how hard a password is to guess. Every value is produced with the browser's cryptographically secure random generator (crypto.getRandomValues) using unbiased sampling — never Math.random — and nothing is ever sent to a server.
A 16-character password
Length 16 · a-z A-Z 0-9 symbols
k7$Rp2!vQx9#mB4w
Switch to Passphrase mode for something like “Coral-River-Maple-82”.
Frequently asked questions
Are the passwords really random and secure?
Yes. They use crypto.getRandomValues, the browser's cryptographically secure random source, with rejection sampling so every character is chosen with equal probability — no bias from Math.random.
Is the password sent anywhere?
No. Generation happens entirely in your browser; the password never leaves your device and isn't logged or transmitted.
What is a passphrase and why use one?
A passphrase strings together random words (e.g. Coral-River-Maple-82). It's easier to remember than a random string while still being hard to guess when you use enough words.
What does the strength meter mean?
It estimates entropy in bits — roughly how many guesses an attacker would need. More length, a larger character set or more words all raise it; aim for 60+ bits, and 80+ for high-value accounts.