Secure Password Generator

Free, instant, and browser-only — your passwords are never sent anywhere.

🔒 100% client-side — no data leaves your browser

Generator Options

How It Works

Every password is built using window.crypto.getRandomValues() — your browser's cryptographically secure random number generator (CSPRNG). Characters are drawn from only the sets you select, with at least one guaranteed character per set.

Nothing is logged, cached, or transmitted. Close the tab and the password is gone.

Frequently Asked Questions

Is the generated password actually secure?

Yes. crypto.getRandomValues() is a CSPRNG — suitable for generating passwords, tokens, and keys. It is available in all modern browsers and is not predictable from previous output.

Why exclude similar-looking characters?

Characters like O and 0, or l and 1, are easy to confuse when reading or manually entering a password. Enabling this option removes them from the pool.

Is my password sent to any server?

No. The entire tool runs inside your browser tab. There are no API calls, no analytics events that capture the password, and no server-side logging.

What does the strength score mean?

Score is estimated from password length and the number of character classes active (uppercase, lowercase, numbers, symbols). It is a quick guide — a truly secure password also depends on how it is stored and whether it is reused across sites.