We review vendors based on rigorous testing and research but also take into account your feedback and our affiliate commission with providers. Some providers are owned by our parent company.
Learn more
vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.
Advertising Disclosure

vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.

Password Generator – Create Strong & Complex Passwords

Create strong, unique passwords quickly and easily using the password generator below. You can adjust the settings to customize each password and add labels and usernames to keep track when exporting.

Add labels and usernames

Add a label and username to each entry for easier tracking when exporting. You also have the option to generate a new username using the provided settings.
Off On
Number of Passwords
Strong Password Good Password Average Password Weak Password Bad Password No Password

Your password is strong

Your password is good

Your password is average

Your password is weak

Your password is bad

Length
Password type:

Password entropy measures the randomness of a password, indicating its strength. More bits of entropy means a stronger password. Note that your password length may change if you adjust entropy. You can only access this setting when in “Complex” mode.
Manually enter your email or username or generate a new username by adjusting the settings below and clicking the icon.
Length
Add a label for easier tracking when exporting as a CSV.
Add New Entry

Reset Settings

This will erase all entries and revert the password generator back to its default settings. Are you sure you want to reset all settings?

Delete current entry

Are you sure you want to delete this password entry?

This tool does not store any generated passwords or usernames. We also don’t share any information with third parties.

How to Use vpnMentor’s Password Generator

Generate Passwords

Our password generator will automatically generate a strong, complex password that’s difficult the crack. You can copy the password by clicking the icon  and then paste it where necessary.

However, you can also generate several passwords at once by clicking the  icon or adjusting the Number of Passwords slider  and export them as a CSV file, which you can then import into a password manager, spreadsheet, or database.

Customize Entries

Our tool includes a variety of customization options. You can change the length of your password, choose the variety of characters included, omit specific characters, adjust password entropy, add a specific word or phrase, and more.

You can customize your passwords by clicking the  icon and adjusting the settings.

From Advanced Settings, you can choose to generate either a complex or memorable password. A complex password includes an assortment of random characters. A memorable password is a combination of random words that are easy to remember.

Add Labels and Usernames

We’ve included an option to add labels and usernames to each entry, which makes it easier to track entries when exporting and importing to a password database. Simply switch on the toggle  to add labels and usernames.

You can also generate new usernames by clicking  the button and using the settings to customize your username.

What Are the Characteristics of a Strong Password?

1. Length

We believe a strong password should be at least 16 characters long. The longer the password, the more secure it is. Longer passwords are more difficult for an attacker to guess even if they are using advanced cracking tools.

2. Complexity

A strong password should include a combination of upper and lowercase letters, numbers, and special characters. This increases the number of possible combinations and makes the password more difficult to guess or crack. Technically speaking, you can also create strong, memorable passwords that only include lowercase letters, such as a combination of random words, but you must ensure the password is long enough.

3. Unpredictability

Each password should be unique and only used for one account. Reusing the same password for multiple accounts can increase the risk of a data breach, as a hacker can use compromised credentials to access multiple accounts.

4. Regularly updated

Regularly changing your passwords can further increase the security of your online accounts. The recommended time to change your password is every 3-6 months. However, you should change your credentials immediately after a breach or if you detect suspicious activity on your account.

5. High entropy

Passwords with high entropy are more difficult to guess or crack, as they have a large number of possible combinations. Both complex (e.g. DS%ty^dn$u48/*uD) and memorable passwords (e.g. Packet-Garden-Mountain-Firetruck) can have a high entropy score. You can adjust entropy in the Advanced settings of our tool.

6. No individual words or common phrases

Avoid using individual words, like “hello” or “password”, and short phrases, like “loveyou” or “chillout”. Hackers often use Dictionary Attacks, where they try to guess passwords using a database of words or phrases found in a dictionary.

7. No personal information

Never include personal information in your password, such as names, dates of birth, or payment card information. Attackers sometimes gather information about a target to have a better chance of guessing the password.

8. No consecutive characters

Avoid using consecutive letters or numbers, such as "abcd" or "1234", which can be easily cracked. Hackers using advanced password-cracking software will be able to guess consecutive characters within a matter of minutes.

What Can Happen If You Use a Weak Password?

If you use a weak password, it can leave you vulnerable to a variety of security threats. Here are a few examples of what can happen:

  • Your account can be easily hacked. Weak passwords can be easily guessed or cracked using specialized software. This means that someone could gain access to your account without your knowledge or consent.
  • Your personal information can be stolen. If a hacker is able to gain access to your account, they may be able to steal sensitive information such as your personal details, credit card information, or other private data.
  • Your account can be used for malicious activities. If a hacker is able to gain access to your account, they may use it to send spam or phishing emails to your contacts, or to engage in other malicious activities that can damage your reputation or cause other problems.
  • You may be a victim of financial loss. If your account is compromised, the hacker may use your credit card information to make unauthorized purchases.

It's important to use strong and unique passwords for all of your online accounts to protect yourself from these types of threats.

To create passwords that are difficult to crack, make sure each one is long (at least 16 characters), includes a mix of letters, numbers, and symbols (e.g. Dh%Fs2@£L0*&!1-<) OR uses a random combination of words (e.g. carrot-bowling-hydration-mountain).

Where Should You Store Your Generated Passwords?

It’s best to store generated passwords in a password manager — a tool that securely stores your login information. These tools use encryption to protect your information, so you can be sure that your passwords are safe and secure.

Once you’ve finished generating strong passwords using our tool, you can export them using the “Export as CSV” function. Once exported, you can import the CSV file into your password manager. Once imported, you should permanently delete the CSV file from your system.

Here are a few reasons why it’s worth using a password manager:

  • Convenience. With a password manager, you only need to remember one master password, and the password manager will automatically fill in your login information for you when you visit a website or app.
  • Security. Password managers use encryption to protect your login information and often include additional security features such as two-factor authentication. This means that unless someone has your master password (you should never share your master password with anyone) and your chosen form of two-factor authentication, they won't be able to access your stored credentials.
  • Multi-device support. Most password managers sync your login information across multiple devices, so you can easily access your passwords from your computer, phone, or tablet.
  • Store personal information. You can also securely store other information, such as payment card details and personal information like home addresses and phone numbers, which can also be automatically filled into web forms.

There are places where you should avoid storing your passwords, such as writing them down on paper or in a notebook, in an unencrypted file on your computer, in your email, in your browser, or using the same password for all accounts. These methods of storage are not secure and can leave your online accounts vulnerable to hacking and other security threats.

Overall, password managers are the most convenient, secure, and easy-to-use tool for storing your generated passwords. It's a great way to keep your online accounts safe and secure without having to remember a lot of different login information.

Frequently Asked Questions

What is a password generator?

A password generator is a tool that automatically creates strong and unique passwords. These passwords are typically designed to be strong and difficult to guess, and they may include a mix of letters, numbers, and special characters.

Some password generators also include options for customization, such as the ability to specify the length of the password or the types of characters included.

How do you create a strong password?

To create a strong password, you need to ensure it’s at least 16 characters long and includes a variety of characters (uppercase and lowercase letters, numbers, and special characters). Also, you should avoid using simple words or phrases — especially dictionary words and names — and known compromised passwords.

Using a password generator is the quickest and easiest way to create a strong password.

Is there an easy-to-remember password generator?

Some password generators include an option to create easy-to-remember passphrases, such as a random-yet-memorable combination of words e.g. HockeyWaterPhotogenicTelephone. Despite being easy to remember, this type of password has a high entropy (a measure of the randomness or unpredictability of a password) which makes it less likely to be guessed by an attacker.

However, it is important to keep memorable passphrases long. We recommend at least 16 characters or more.

Are my passwords weak?

If your passwords are short, simple, and reused, they’re most likely weak.

Additionally, if your passwords include easily guessable information, such as your name, birth date, or commonly used words, hackers have a better chance of cracking your password.

Here’s a list of criteria to help you determine if your passwords are weak or strong.

  • Password length. Are your passwords at least 16 characters long?
  • Password complexity. Do your passwords include a variety of characters, including uppercase and lowercase letters, numbers, and special characters?
  • Unique. Are you using unique passwords for all of your accounts?
  • Password age. How old are your passwords? Do you regularly change your passwords?
  • Storage. Have you securely stored your credentials using a password manager?
  • Compromised. Do any of your passwords appear on a database of compromised credentials?

Using a password generator is by far the quickest and easiest way to create strong passwords for all of your online accounts.

However, if you’re still unsure whether your current passwords are weak or compromised, you should use a password strength checker.