Free Security Tools

Generate & Check
Secure Passwords

Create strong, cryptographically random passwords in seconds. Check if your password has appeared in a data breach, analyze its strength, and build memorable passphrases — all processed entirely in your browser. Nothing is ever stored or transmitted.

100% Client-Side No Account Needed Breach Detection PIN Generator Passphrase Builder
Password Generator
Move the slider to generate a password…
Copied! Copy Password
New Password
20
1 char128 chars
Character Sets
— / 4
Estimated Crack Time
Entropy
Data Breach Checker

Uses the HaveIBeenPwned k-anonymity API — your actual password never leaves your browser.

How it works: Your password is hashed with SHA-1. Only the first 5 characters of that hash are sent to the API. The full hash and your password are never transmitted — this is called k-anonymity.

Memorable Password

Type any word or phrase — converted into a stronger password using letter substitutions like a→@, o→0, i→!, e→3.

— / 4
Estimated Crack Time
Entropy

Substitution Map

a@
e3
i!
o0
s$
t7
l1
g9
b8
z2
h#
x*
A4
E3
I1
O0
Password Strength Checker
Estimated Time to Crack
Online 100/hour
Online 10/sec
Offline Fast Hash
Offline Slow Hash
Entropy
Guesses
PIN Generator

Generates cryptographically random PINs of 4, 6, 8 and custom lengths. Useful for bank PINs, device lock codes and access codes.

6
4 digits16 digits
Drag slider to generate custom PIN…
Copied! Copy PIN
Regenerate All

Security note: All PINs are generated using crypto.getRandomValues() — the same cryptographic API used by your browser for secure operations. No patterns, no repetition.

Passphrase Generator
Move the slider to generate a passphrase…
Copied! Copy Passphrase
New Passphrase
5
3 words10 words
Capitalize first letter of each word
— / 4
Estimated Crack Time
Entropy

How to Use

  1. Drag the slider to set your desired password length. A new password generates automatically.
  2. Toggle character sets using the chips: A–Z, a–z, 0–9, and !@#$%^&*. At least one must stay active.
  3. The strength meter and estimated crack time update instantly below the password.
  4. Click the copy icon — a "Copied!" tooltip appears. Click the refresh icon to regenerate.
Tip: Use 16+ characters with all four character sets for maximum security.
  1. Type or paste the password you want to check. Use the eye icon to show or hide it.
  2. Press Enter or click the Check for Data Breaches button.
  3. Results show whether the password was found in breaches and exactly how many times.
Privacy: Only 5 characters of the SHA-1 hash are sent — your actual password is never transmitted.
  1. Type your word, name or phrase in the input — for example your pet's name or a phrase you remember.
  2. Choose a Substitution Level: Basic or Full, and optionally append random digits or a symbol.
  3. The converted password appears instantly. Click the copy icon to copy it.
Tip: Use a longer phrase like myfluffy dog for a result that is memorable and strong.
  1. Type or paste any password — the analysis updates in real time as you type.
  2. The strength bar and score give you an instant visual summary.
  3. The crack time grid shows estimates across four attack scenarios.
  4. If the password is weak, improvement suggestions appear automatically.
Note: The analysis accounts for dictionary words, common patterns and keyboard sequences — not just length.
  1. Four preset PINs (4, 6, 8, 10 digits) are generated automatically when you open the tab.
  2. Drag the slider to set a custom PIN length from 4 to 16 digits.
  3. Click the copy icon next to any PIN card, or use the main copy button for your custom PIN.
  4. Click the refresh icon to regenerate all PINs at once.
Tip: Use 6+ digit PINs wherever possible. A 4-digit PIN has only 10,000 possible combinations.
  1. Drag the slider to choose 3–10 words. More words = more security.
  2. Choose a Word Separator such as a dash, dot or symbol.
  3. Set Append Numbers to add random digits at the end.
  4. Toggle Capitalize to make the first letter of each word uppercase.
Tip: A 5-word passphrase like Tiger-Cloud-River-Boot-42 is easier to remember than a random password and typically has 60–80 bits of entropy.
Copied!