Password Generator

Password Generator - Generate a Secure Password

With the password generator you can easily create a secure password. The special thing about it is that we also check whether the password has been leaked in the past. Such a password should never be used again.

To create awareness for secure passwords, we also show you how long it takes a computer to crack the password with a brute force attack.

How to Generate a Secure Password

  • When this page is accessed, a random password is generated with the default settings. In the default settings, the password has 16 characters and uses lower and upper case letters, numbers and special characters.
  • If you have special requirements for the password, you can adjust the length of the password and the characters used.
  • To copy the password to the clipboard, please click the button.
  • To generate a new random password, please click the button.

What Makes a Password Secure?

Two decisive factors when choosing a password are the length of the password and its uniqueness.

Your password should consist of at least 8 characters, but preferably 12 or 16 characters. If you use upper and lower case letters, numbers and special characters, the time needed to crack a password using a brute force attack is increased. Our password generator calculates an approximate time for a modern computer to crack the password. If your settings generate an insecure password, our password generator will warn you.

Besides the length, it is crucial that you do not use the same password for every online account. In the past, millions of passwords have become public due to data leaks and hacker attacks. These passwords can now be used by attackers for dictionary attacks. Our password generator therefore warns you if the password has become public in the past due to a data leak or hacker attack.

Frequently Asked Questions

How long should a secure password be?
According to the National Institute of Standards and Technology, a secure password should be at least 8 characters long and all available characters should be used.

Why should I use a random password?
Data breaches and hacker attacks regularly cause the access data of millions of users to become public. If you use the same password for each service, an attacker can simply use the public data from Website A to log in to Website B with your account data. You can prevent this by generating a new random password for each account.

How can I remember a random password?
We recommend the use of a password manager. With this you generate an individual password for each account. The Password Manager stores all these passwords so you only have to remember one master password.

Data Protection

Since passwords are security-critical data, we take data protection very seriously. The following measures ensure that generating your password does not pose any additional risk.

Local generation
We generate the password directly in your browser. The password is not sent to our server and cannot be intercepted.

k-anonymity Model
To check if your password is affected by a data leak, we query the Have I Been Pwned database. We do not transfer your password to the server, but use a k-anonymity model to determine whether your password is contained in the database. To do this, we form the SHA-1 hash of your password, but only transmit the first 5 characters of this hash. The server then responds with about 500 possible matches, which we then check in your browser. Further information about this procedure can be found here.

Other languages:
Deutsch Italiano