Documentation
How to use this tool, practical use cases, and technical notes.
The Random Strong Password Generator is designed for speed. A default-strength password can be generated in under 5 seconds from first page load. Here is the complete step-by-step guide to using every feature effectively.
Step 1 ā Set the Password Length
Use the Length slider to select a value between 8 and 128 characters. The default is set to 16 characters, which provides 104.9 bits of entropy with all character sets enabled ā well above the 72-bit threshold considered "strong" by most modern security frameworks.
Length recommendations by use case:
Use Case | Recommended Length | Entropy (all chars) | Notes |
|---|---|---|---|
Low-stakes personal account | 12 | 78.7 bits | Use with MFA |
Standard business account | 16 | 104.9 bits | Default; suitable for most use cases |
Admin / privileged account | 20 | 131.1 bits | Recommended for elevated access |
Service account / API key | 32 | 209.8 bits | Store in secrets manager; never share |
Encryption passphrase | 40+ | 262+ bits | For GPG keys, VeraCrypt volumes |
Master password (password manager) | 20ā28 | 131ā184 bits | Memorable phrase may be better |
Database root credential | 32 | 209.8 bits | Rotate on schedule; vault-stored |
JWT secret / HMAC key | 64 | 419.6 bits | Matches SHA-256 internal block size |
Step 2 ā Select Character Sets
Check or uncheck the four character set options to define what characters can appear in your generated password. All four are enabled by default for maximum strength.
When to restrict character sets:
Scenario | Restriction | Reason |
|---|---|---|
Password must be typed on mobile | Disable symbols | Special chars harder to type on mobile keyboards |
System doesn't accept certain symbols | Disable symbols | Legacy systems often reject |
Password must be URL-safe | Use alphanumeric only | Avoids encoding issues in query strings |
Compliance policy requires mixed case + numbers only | Uncheck symbols | Match specific policy requirements |
Shared with non-technical user via phone | Exclude symbols + ambiguous chars | Reduce transcription errors |
Never disable all four character sets simultaneously ā the tool requires at least one to be active in order to generate a password.
Step 3 ā Toggle "Exclude Similar Characters"
Enable this option by checking "Exclude similar characters (il1Lo0O)" to remove the following characters from the generation pool:
Character | Looks Similar To | Font-Dependent? |
|---|---|---|
|
| Yes ā especially in sans-serif fonts |
|
| Yes |
|
| Yes |
|
| In some fonts |
|
| Yes |
|
| Yes |
|
| Yes |
When to enable this option:
Passwords will be read aloud or dictated over the phone
Passwords will be handwritten then manually entered
Passwords will be shared via printed document or displayed on screen
Users are non-technical and likely to make transcription errors
The password will be used during system recovery where copy-paste may not be available
When to leave it disabled:
Passwords are generated and immediately pasted into a password manager or secret store
The password will never need to be read or typed manually
Step 4 ā Set the Number of Passwords
Use the "Number of Passwords" control to generate between 1 and 20 passwords in a single click. The default is 1.
When batch generation is useful:
Scenario | Batch Size | Purpose |
|---|---|---|
Onboarding multiple new employees | 5ā20 | One credential per user |
Creating test user accounts for staging | 10ā20 | Populate test environments |
Rotating credentials for multiple services | 3ā10 | Replace multiple secrets at once |
Generating options to choose from | 3ā5 | Pick the most readable one |
Provisioning database users | 5ā20 | One per microservice or tenant |
Step 5 ā Click "Generate Password"
Click the Generate Password button. Results appear instantly in the output area. Each password in the batch is displayed on a separate line and is individually selectable for copy-paste.
Step 6 ā Copy and Use Your Password
Select the generated password(s) and copy to clipboard. Best practice after copying:
Immediately paste into your password manager, secrets vault, or the target system's password field
Do not store the password in plaintext in a note, chat, or email
Clear your clipboard after use ā on macOS with
pbcopy < /dev/null, on Windows by copying a blank character, or by using a clipboard manager with auto-clear
Quick Reference: Settings for Common Scenarios
Scenario | Length | Uppercase | Lowercase | Numbers | Symbols | Exclude Similar | Batch |
|---|---|---|---|---|---|---|---|
Standard account | 16 | ā | ā | ā | ā | ā | 1 |
Mobile-friendly | 16 | ā | ā | ā | ā | ā | 1 |
Admin credential | 24 | ā | ā | ā | ā | ā | 1 |
API secret | 32 | ā | ā | ā | ā | ā | 1 |
Employee onboarding | 16 | ā | ā | ā | ā | ā | 10 |
Database password | 32 | ā | ā | ā | ā | ā | 1 |
URL-safe token | 32 | ā | ā | ā | ā | ā | 1 |
The Random Strong Password Generator is designed for speed. A default-strength password can be generated in under 5 seconds from first page load. Here is the complete step-by-step guide to using every feature effectively.
Step 1 ā Set the Password Length
Use the Length slider to select a value between 8 and 128 characters. The default is set to 16 characters, which provides 104.9 bits of entropy with all character sets enabled ā well above the 72-bit threshold considered "strong" by most modern security frameworks.
Length recommendations by use case:
Use Case | Recommended Length | Entropy (all chars) | Notes |
|---|---|---|---|
Low-stakes personal account | 12 | 78.7 bits | Use with MFA |
Standard business account | 16 | 104.9 bits | Default; suitable for most use cases |
Admin / privileged account | 20 | 131.1 bits | Recommended for elevated access |
Service account / API key | 32 | 209.8 bits | Store in secrets manager; never share |
Encryption passphrase | 40+ | 262+ bits | For GPG keys, VeraCrypt volumes |
Master password (password manager) | 20ā28 | 131ā184 bits | Memorable phrase may be better |
Database root credential | 32 | 209.8 bits | Rotate on schedule; vault-stored |
JWT secret / HMAC key | 64 | 419.6 bits | Matches SHA-256 internal block size |
Step 2 ā Select Character Sets
Check or uncheck the four character set options to define what characters can appear in your generated password. All four are enabled by default for maximum strength.
When to restrict character sets:
Scenario | Restriction | Reason |
|---|---|---|
Password must be typed on mobile | Disable symbols | Special chars harder to type on mobile keyboards |
System doesn't accept certain symbols | Disable symbols | Legacy systems often reject |
Password must be URL-safe | Use alphanumeric only | Avoids encoding issues in query strings |
Compliance policy requires mixed case + numbers only | Uncheck symbols | Match specific policy requirements |
Shared with non-technical user via phone | Exclude symbols + ambiguous chars | Reduce transcription errors |
Never disable all four character sets simultaneously ā the tool requires at least one to be active in order to generate a password.
Step 3 ā Toggle "Exclude Similar Characters"
Enable this option by checking "Exclude similar characters (il1Lo0O)" to remove the following characters from the generation pool:
Character | Looks Similar To | Font-Dependent? |
|---|---|---|
|
| Yes ā especially in sans-serif fonts |
|
| Yes |
|
| Yes |
|
| In some fonts |
|
| Yes |
|
| Yes |
|
| Yes |
When to enable this option:
Passwords will be read aloud or dictated over the phone
Passwords will be handwritten then manually entered
Passwords will be shared via printed document or displayed on screen
Users are non-technical and likely to make transcription errors
The password will be used during system recovery where copy-paste may not be available
When to leave it disabled:
Passwords are generated and immediately pasted into a password manager or secret store
The password will never need to be read or typed manually
Step 4 ā Set the Number of Passwords
Use the "Number of Passwords" control to generate between 1 and 20 passwords in a single click. The default is 1.
When batch generation is useful:
Scenario | Batch Size | Purpose |
|---|---|---|
Onboarding multiple new employees | 5ā20 | One credential per user |
Creating test user accounts for staging | 10ā20 | Populate test environments |
Rotating credentials for multiple services | 3ā10 | Replace multiple secrets at once |
Generating options to choose from | 3ā5 | Pick the most readable one |
Provisioning database users | 5ā20 | One per microservice or tenant |
Step 5 ā Click "Generate Password"
Click the Generate Password button. Results appear instantly in the output area. Each password in the batch is displayed on a separate line and is individually selectable for copy-paste.
Step 6 ā Copy and Use Your Password
Select the generated password(s) and copy to clipboard. Best practice after copying:
Immediately paste into your password manager, secrets vault, or the target system's password field
Do not store the password in plaintext in a note, chat, or email
Clear your clipboard after use ā on macOS with
pbcopy < /dev/null, on Windows by copying a blank character, or by using a clipboard manager with auto-clear
Quick Reference: Settings for Common Scenarios
Scenario | Length | Uppercase | Lowercase | Numbers | Symbols | Exclude Similar | Batch |
|---|---|---|---|---|---|---|---|
Standard account | 16 | ā | ā | ā | ā | ā | 1 |
Mobile-friendly | 16 | ā | ā | ā | ā | ā | 1 |
Admin credential | 24 | ā | ā | ā | ā | ā | 1 |
API secret | 32 | ā | ā | ā | ā | ā | 1 |
Employee onboarding | 16 | ā | ā | ā | ā | ā | 10 |
Database password | 32 | ā | ā | ā | ā | ā | 1 |
URL-safe token | 32 | ā | ā | ā | ā | ā | 1 |