History


Frequently Asked Questions

Yes. Passwords are generated entirely in your browser using crypto.getRandomValues() — cryptographic randomness. They are never sent to any server and never logged.
For most accounts, 16 characters with all four character sets enabled gives excellent security. For critical accounts (banking, email) prefer 20+ characters. A 12-character password with all sets is already very strong against brute-force attacks.
Length is the most important factor. Each additional character multiplies the number of possible passwords. Using all four character sets (upper, lower, digits, symbols) gives a pool of ~96 characters per position, so a 16-character password has 96¹⁶ ≈ 5 × 10³¹ combinations.


Send your feedback