How long should a password be?

Security experts recommend passwords of at least 12–16 characters. Longer passwords with a mix of uppercase, lowercase, numbers, and symbols are significantly harder to crack.

What makes a password strong?

A strong password is long (16+ characters), random, uses a mix of character types, and is unique for each account. Avoid dictionary words and personal information.

CalcHub

Saved

Random Password Generator

Generate secure, strong, random passwords entirely in your browser — nothing is sent over the Internet. Customize length, character types, and exclusion rules to meet any password policy.

SecureLowercaseUppercaseNumbersSymbolsEntropy

How to use this generator

Select a Password Length and check the character types you want to include. Click Generate to create a new password. Use Copy Password to copy it to your clipboard, or Regenerate to create another with the same settings. Clear resets all options to defaults while keeping the last generated password visible.

Password Settings

Customize your password options

Password Length

Include Lower Case (a-z)Include Upper Case (A-Z)Include Numbers (0-9)Include Symbols (!"#$%&'()*+,-./:;<=>?@[\]^_`{|}~)Exclude Ambiguous Characters (iIl1L| o0O `'-_":;.,)Exclude Brackets (<>()[]{})No Repeated Characters

Password Tips

• Use at least 12 characters for a strong password
• Mix uppercase, lowercase, numbers, and symbols
• Never reuse passwords across different accounts
• Consider using a password manager
• Higher entropy = harder to crack

About Password Generator

About Password Security

A strong password is your first line of defense against unauthorized access. This generator uses the browser's built-in crypto.getRandomValues() API, which provides cryptographically secure random numbers — far more unpredictable than Math.random(). The password is generated entirely on your device and is never transmitted over the network.

Password Strength

Password strength is measured by entropy — the number of bits required to represent all possible combinations. A password with 60+ bits of entropy is generally considered strong for most purposes. Entropy is calculated as: length × log₂(charset size). A 12-character password using all character types (lowercase + uppercase + numbers + symbols) has a charset of ~94 characters, yielding ~78 bits of entropy.

How to Create a Secure Password

Use at least 12 characters — longer is always better
Mix lowercase letters, uppercase letters, numbers, and symbols
Avoid personal information (names, birthdays, phone numbers)
Never reuse passwords across different websites or accounts
Change passwords regularly, especially after a suspected breach
Use a reputable password manager to store and organize your passwords

Back to All Calculators

Related Calculators

IP Subnet Calculator

Random Number Generator

Quick Reference

8 chars, all types~52 bits

12 chars, all types~78 bits

16 chars, all types~105 bits

20 chars, all types~131 bits

≥60 bits = Strong

Frequently Asked Questions

A strong password is: long (16+ characters), random (not based on words or personal info), complex (mix of uppercase, lowercase, numbers, and symbols), and unique (different for every account). Length is the most important factor — a 20-character password of random lowercase letters is stronger than an 8-character password with all character types.