Utility
Password Generator
Passwords are generated with the Web Crypto API and never leave your browser.
Frequently asked questions
Is the generated password stored or transmitted anywhere?
No. All password generation happens in your browser using the Web Crypto API (crypto.getRandomValues). The result is never sent to any server, logged, or stored.
How long should a strong password be?
Security professionals recommend at least 16 characters for important accounts, combining uppercase letters, lowercase letters, numbers, and symbols to maximise entropy and resist brute-force attacks.
What does the strength meter measure?
The strength meter estimates entropy — the total number of possible combinations based on the character set size and password length. Higher entropy means exponentially longer to crack by brute force.