Security tool

Free Password Generator

Generate strong, random passwords with custom length, character sets and a live strength meter. Everything runs in your browser only, so no passwords are uploaded or stored on any server.

1. Choose your password settings

Password length Longer passwords are much harder to crack
16
Many security experts recommend at least 16 characters for important accounts.
Characters to include Select at least one set
Number of passwords
Generate a few different options and pick the one you like best.

2. Copy and use your password

Main generated password
Click "Generate passwords" to create a new password.
Alternative suggestions
Strength and entropy
Adjust the length and character sets to see the strength estimate.

Why long, random passwords matter more than ever

Many people still rely on short, memorable passwords like pet names, birthdays or simple patterns on the keyboard. These are easy for humans to remember, but they are also easy for attackers to guess or brute force. Modern computers and password cracking tools can attempt billions of guesses per second, so weak passwords fall very quickly once a database is leaked.

Why use at least a 16 character password

The most effective way to strengthen a password is to increase its length and randomness. Every extra character multiplies the number of possible combinations. A random 8 character password may sound safe, but for a determined attacker with specialised hardware it is often within reach. A truly random 16 character password with a mix of uppercase, lowercase, numbers and symbols is in a completely different league.

Think of it this way: if an attacker can try 10 billion guesses per second, a short password can be exhausted in minutes or hours, but a long, random password pushes the required time into years, centuries or longer than the age of the universe. The strength meter in this tool gives you a rough idea of how your settings affect entropy and theoretical crack time. It is not a guarantee, but it is a useful guide when deciding what to use for your most important accounts.

Password security best practices

  • Use unique passwords for every important account, especially email, banking, cloud storage and social media.
  • Make passwords long (ideally 16 characters or more) and random instead of relying on predictable words or patterns.
  • Avoid including easy personal information such as your name, IC number, phone number or birth date.
  • Turn on two factor authentication (2FA) wherever possible, so that a stolen password alone is not enough to log in.
  • Never reuse the same password across different websites. One breach can then unlock many accounts at once.

Why you should use a password manager

Long, unique, random passwords are excellent for security, but they are almost impossible to remember once you have more than a handful of accounts. That is where a password manager becomes essential. A password manager stores your login details in an encrypted vault, protected by a single strong master password and often an additional device or biometric check.

With a password manager, you only need to remember one very strong password. The manager can generate random passwords for every new account, fill them automatically in your browser, and sync them across your devices. If one website suffers a data breach, you can simply tell the manager to generate a new strong password for that site, without having to touch anything else.

How to use this generator together with a password manager

One simple approach is to first decide on your default policy. For example, you might choose 20 characters with uppercase, lowercase, numbers and symbols for all high value accounts, and 14 to 16 characters for less critical logins. Then, whenever you create or update an account, use this generator to create a new random password, copy it, and immediately save it in your password manager.

You do not need to memorise these generated passwords. Focus instead on protecting your devices, keeping your master password safe, and enabling 2FA where supported. Over time, this habit of using long, unique passwords and a password manager will significantly reduce the risk that a single leak or weak password can compromise your online life.