Password Generator
Generate strong, secure random passwords — customize length, character sets, and generate multiple passwords at once.
16
About Password Generator
This cryptographically secure password generator uses the Web Crypto API (crypto.getRandomValues) to generate passwords that are truly random and impossible to predict. Unlike Math.random()-based generators, crypto.getRandomValues uses the operating system's entropy source for maximum security.
Strong passwords should be at least 12 characters long and include a mix of uppercase letters, lowercase letters, numbers, and symbols. For maximum security, use a different random password for every account and store them in a password manager. Avoid passwords based on dictionary words, names, dates, or keyboard patterns.
FAQ
Is this generator cryptographically secure?
Yes. This tool uses window.crypto.getRandomValues() which is the Web Crypto API — the same entropy source used by browsers for TLS key generation. It is cryptographically secure and suitable for generating real passwords.
How long should a password be?
For most accounts: 16+ characters. For sensitive accounts (banking, email): 20+ characters. A 16-character password using all character types has over 85 bits of entropy — far beyond what any brute-force attack can crack in a human lifetime.
What are ambiguous characters?
Characters that look similar and can cause confusion: 0 (zero) and O (uppercase o), 1 (one), l (lowercase L), and I (uppercase i). Excluding them reduces the character set slightly but makes passwords easier to type correctly when you cannot copy-paste.