Create strong, random passwords — secure and instant
A strong password is long and unpredictable. Length matters more than anything — every extra character multiplies the number of possible combinations. Mixing uppercase, lowercase, numbers, and symbols widens the pool further, making the password far harder to guess or crack by brute force. Aim for at least 16 characters for important accounts.
This tool generates passwords using crypto.getRandomValues() — your browser's cryptographically secure random number generator — rather than ordinary pseudo-random functions. Everything runs locally in your browser: no password is ever sent over the internet, stored, or logged anywhere.
Use a unique password for every account so one breach can't unlock the others. Store them in a reputable password manager instead of reusing or writing them down, and enable two-factor authentication wherever it's offered. Avoid passwords based on names, dates, or dictionary words.
The meter estimates how resistant a password is to brute-force guessing, based on its length and the size of the character pool you've enabled. "Very strong" passwords have enough possible combinations that guessing them is impractical with current technology.