Generate secure, memorable passphrases using random words. The "correct horse battery staple" method - stronger than complex passwords and easier to remember.
Time estimates: Single GPU = RTX 4090 (164 billion hashes/sec). Nation-state = 1 quadrillion hashes/sec. Based on fast hashes (MD5). Slow hashes like bcrypt are ~1 million times harder to crack.
Saved Presets is a Supporter feature.
Tool History is a Supporter feature.
Tool Notes is a Supporter feature.
Why passphrases? Random word combinations are both more secure AND easier to remember than complex character passwords. This is the "correct horse battery staple" method popularized by XKCD.
Entropy explained: Entropy measures password strength in bits. Each word from a 7,776-word list adds ~12.9 bits. 4 words = ~52 bits, 6 words = ~78 bits. 80+ bits is considered very strong.
Security note: All generation happens locally in your browser. Your passphrases are never sent to any server.
Choose which word lists to use. The EFF Diceware list is recommended. Combine lists for a larger word pool and higher entropy.
Choose 4-10 words. More words = more security. 4 words (~52 bits) is good for most accounts. Use 6+ for sensitive accounts.
Select separators (spaces, hyphens, etc.), enable first-letter capitalization, or add a random number to meet password requirements.
Click Generate to create passphrases. Check the entropy display to verify security level. Copy to clipboard and store in a password manager.
Words are selected using cryptographically secure random numbers built into your browser. Each word is independently chosen from the combined word pool with uniform probability.
Base entropy = Number of words x log2(word pool size). Example: 4 words from 7,772 words = 4 x 12.9 = 51.6 bits. Random numbers add log2(range) bits based on your min/max settings. Note: Entropy estimates shown are conservative and assume attackers know your exact configuration.
When you select multiple dictionaries, words are combined and deduplicated. The larger pool increases entropy per word, meaning you need fewer words for the same security level. Our combined lists offer 10,000+ unique words.
If you set a minimum character length, the generator adds additional words until the requirement is met. This ensures the passphrase is at least as long as specified while maintaining randomness.
Use at least 4 words for general accounts, 6+ for sensitive ones. Store passphrases in a password manager. Use a unique passphrase for each important account. The security comes from randomness, not secrecy of the word list.
This refers to XKCD comic #936, which showed that a passphrase of 4 random common words ("correct horse battery staple") is both more secure AND easier to remember than a complex password like "Tr0ub4dor&3". Random word combinations provide high entropy while being human-friendly.
