Free random password generator.

01The problem with passwords

Roughly 80% of usernames and passwords have been exposed somewhere, at some point, and now sit in massive files that get passed around like candy by people with bad intentions. That's a fact.

A complicated, fully random password limits that exposure to a single site — if that site happens to have sloppy code that exposes sensitive data. Reuse that password elsewhere and the damage spreads to every account that shares it.

02Use a password manager — today

A password manager does what it sounds like: it stores your complicated, random passwords in an encrypted form so only you can retrieve them, and it auto-fills credentials on the sites you visit.

The encryption is essentially uncrackable — on the order of 10,000+ years for a conventional attacker against AES-256, and roughly five years even for a quantum machine. Compared to remembering 80 unique passwords yourself, it isn't close.

Suggested password managers to review *

* We weren't paid to list these. They're in the order of popularity.

03Want to see if you've already been breached?

Check whether your credentials are already public at Breach Directory. It only takes a moment, and the answer is rarely "no."

04The golden rules of passwords

• Never reuse the same password anywhere, even if you think your password style is "complicated."
• Never use a password whose start or end resembles your other passwords. Random is best.
• Always use at least eight (8) characters — preferably more.
• Never store passwords in any file on your computer, except inside a password manager.
• Don't use kids' names plus birthdays, phone numbers, or anything personal. Those crack first.
• Assume all of your non-random passwords are already known and tied to your email address.
• Always have a good paid antivirus running on your desktop and your mobile devices.