How are the passwords generated — are they truly random?

Yes. Passwords are generated using the Web Crypto API's crypto.getRandomValues() function, which is a cryptographically secure pseudo-random number generator (CSPRNG) provided by the browser. This is the same randomness source used for cryptographic keys, making the generated passwords suitable for security-sensitive applications.

Is the generated password sent to a server?

No. Everything happens in your browser — no password, no character set choice, and no generated output is ever transmitted to any server. You can disconnect from the internet after the page loads and the generator will still work.

How long should my password be?

Security experts recommend at least 16 characters for general accounts and 20+ characters for critical accounts (email, banking, password managers). A random 16-character password using uppercase, lowercase, digits, and symbols has over 95^16 (roughly 2^105) possible combinations, making brute-force attacks computationally infeasible.

CodeLint.Dev Dev Tools

Generators & Utilities

UUID Generator Percentage Calculator Password Generator Hash Generator Cron Expression Builder API Status Page Generator

AI Tools

LLM Model Comparison Token Counter Prompt Builder AI Cost Calculator Context Window Visualizer Prompt Diff / A-B Tester Regex for AI Outputs System Prompt Analyzer

Currency & Forex

Currency Converter Exchange Rate Tracker Crypto Price Tracker Crypto Unit Converter

Blog

Technical Tools

UUID Generator
Percentage Calculator
Password Generator
Hash Generator
Cron Expression Builder
API Status Page Generator

Password Generator

Cryptographically random, generated locally in your browser.

—

Length 16

4128

Character Sets

About

The Password Generator creates cryptographically strong random passwords using the browser's secure PRNG (Web Crypto API). You can customise the password length (up to 128 characters) and choose which character sets to include: uppercase, lowercase, digits, and special symbols. A password-strength meter gives instant feedback.

How to use

1 Set the desired password length using the slider.
2 Toggle the character sets you want (uppercase, lowercase, numbers, symbols).
3 Click Generate or the refresh icon for a new password.
4 Click Copy to copy it to your clipboard securely.

How are the passwords generated — are they truly random?: Yes. Passwords are generated using the Web Crypto API's crypto.getRandomValues() function, which is a cryptographically secure pseudo-random number generator (CSPRNG) provided by the browser. This is the same randomness source used for cryptographic keys, making the generated passwords suitable for security-sensitive applications.
Is the generated password sent to a server?: No. Everything happens in your browser — no password, no character set choice, and no generated output is ever transmitted to any server. You can disconnect from the internet after the page loads and the generator will still work.
How long should my password be?: Security experts recommend at least 16 characters for general accounts and 20+ characters for critical accounts (email, banking, password managers). A random 16-character password using uppercase, lowercase, digits, and symbols has over 95^16 (roughly 2^105) possible combinations, making brute-force attacks computationally infeasible.

CodeLint.Dev Dev Tools

Your code never touches our servers. Everything runs locally in your browser.

WCAG 2.1 AA

Tools

JSON Tools JWT Encoder / Decoder Hash Generator Morse Code Password Generator 1D & 2D Barcode Generator QR Code Generator Code Formatter CSV ⇄ JSON GeoJSON Tools UUID Generator Percentage Calculator Countdown Timer Stopwatch Date Calculator Clock Time Utility Regex Checker String Tuner Countries Reference

Company

About Contact Privacy Policy Cookie Policy Terms of Service Do Not Sell

Support

Support / Donate

We and our partners (including Google) use cookies to serve ads based on your prior visits to this and other sites. Your tool data is never collected or shared. Cookie Policy