Secure Random Password Generator
Create strong, random passwords with custom length, character types, and exclusion rules. Real-time strength meter. No data leaves your browser.
Runs in your browser. No data leaves your device.
Frequently Asked Questions
How does the Password Generator work?
Random bytes are sourced from the Web Crypto API's crypto.getRandomValues() to fill a Uint32Array, then each value is mapped via modulo to a character from your chosen pool (uppercase, lowercase, digits, symbols). Entropy is calculated as password length multiplied by log2 of the pool size. Ambiguous characters like 0/O and 1/l/I can be filtered from the pool before generation.
Are the generated passwords truly random?
Yes. Passwords are generated using the Web Crypto API (crypto.getRandomValues), the same cryptographically secure random number generator used by password managers and security software.
Can the website see my generated passwords?
No. Everything runs entirely in your browser. No passwords are ever sent to a server or stored anywhere outside your device. You can verify this by using the tool offline.
How long should my password be?
At least 16 characters for important accounts. The tool shows an entropy score in bits -- aim for 80+ bits for strong security. Longer passwords with mixed character types are exponentially harder to crack.