Strong random passwords

Suggestions only — use a password manager to store them. Nothing you generate here is sent to our server; it stays in your browser.

Click “Generate” for a new password

—

What “bits of entropy” means: It’s a rough measure of how strong a fully random password like this is against guessing. Each extra bit represents doubling the number of combinations an attacker would have to try on average. The number here is estimated from the password length and the character types you turned on—it’s a guide, not a guarantee, and real-world risk also depends on the website and whether you reuse passwords.

Length

characters

Character sets

A–Z

a–z

0–9

Symbols

Avoid ambiguous characters (0, O, 1, l, I, …)

Tips

Longer is stronger: 16+ characters is a good default for important accounts.
Use a unique password for every site; a password manager makes this easy.
Turn on two-factor authentication where offered.
If a site limits symbols, uncheck “Symbols” and generate again.