Password Generator

How to create password

Fill number of passwords you want to generate. Enter the length and pick at least one of the options. You can combine them to get stronger password. Generator always avoids similiar characters like iIl1Oo0. You can choose one of the output formats like JSON, Excel file, CSV file, PDF with QR codes, ...

Password length

It has to be a number. Max. length is limited to 100.

Uppercase

Characters like ABCDEF will be used.

Lowercase

Characters like abcdef will be used.

Numbers

Characters like 12345 will be used.

Symbols

Characters like !@$%^&* will be used.

Strong password examples

Strong password 8 characters, Strong password 12 characters, Strong password 15 characters

10 rules for a strong password

Passwords are an essential key to verify your identity online. Without them, anyone could visit any accounts, log into Facebook or email and pretend to be someone else - for example, completely manage content in the admin section of an online store, enter payment orders in a bank account or perform various actions on the company intranet. This ensures that your sensitive data, documents and, in many cases, authority are protected.

A weak, or easily guessed, password is a bit like the "popular" hiding your key under the doormat. It only secures your property until someone makes a minimal effort to violate your privacy. We'll show you how to come up with a strong password that no one else can crack. How to insure against password leaks or what two-factor authentication is.

Be creative

The first step is the most important of all: a password that no one but you can think of is the least likely to be guessed. When coming up with one, pay maximum attention to originality. Do you know a language less used than English? Use it when coming up with a password. You can also try inventing a completely new word, for example by using a switch, where you change the order of the letters in the original phrase.

Don't make up passwords based on your favourite people and things

When coming up with a slogan, people typically choose something they have a personal connection to. Often it's the first thing that comes to mind, other times they simply want to remember it more easily. So another important piece of advice is: never base your account key on things or people you like or dislike.

You should have no emotional attachment to good security. If you look at the list of the most common passwords in any language, you will find that the names of people and pets, but also the names of sports, games or companies are very abundant. Just as it is easy to come up with such passwords, it is not difficult to guess them either. A cybercriminal simply downloads a list of names and tests passwords against it. Adding a few digits or a special character in front of the name won't slow him down that much.

Come up with a long password

Generally speaking, long slogans are stronger than shorter ones. I recommend at least 12 characters as a minimum length. However, don't be limited by this number and feel free to come up with a password longer than 20 characters. If you follow the other steps in this article and the expected growth in computer performance, you could have your account secure for 100 years to come. Quite a nice idea, don't you think?

Choose from an extended character set

The strength of the password increases with the use of different characters from different character sets, such as:

  • Lowercase letters: a-z (26 characters)
  • Uppercase: A-Z (26 characters)
  • Digits: 0-9 (10 characters)
  • Special characters: !"#$%&'()*+,-./:;<=>?@[\]^_`{|}~ (32 characters)

Use characters from as many of these groups as possible to come up with passwords. Of course, cybercriminals know these character sets and can logically assume that your password consists of letters, for example. On the other hand, they don't know which of the 26 possible ones it should be. They probably also expect a special character. But even in this case they can't know which one it is. The more varied your use of different character sets, the less guessable your security becomes.

The character set generally affects the strength of a password more than its length. Imagine a security key that is 7 characters long and can contain a lowercase letter, an uppercase letter, a number, and a special character. There are a total of approximately 65 trillion possibilities for such a combination.

Now imagine a password that includes only digits and is approximately as strong. It would then have to be at least 14 characters long. There would be exactly 100 trillion possibilities for it. So, assuming a wide character set, a password can be approximately as strong at half the length. You can multiply the strength of the security even more if you use a completely unusual, special character such as ß or ţ.

Have a password generated

The human brain likes to repeat patterns all the time and can't handle chance very well. So any password you come up with on your own will never be very random. It's always better to use a random generator when creating one.

In the password generator, you set the length, the character sets used, or perhaps the preferred starting character. The application then generates a key for you that you probably wouldn't have figured out on your own.

Avoid substituting similar characters

Maybe you insist on making up a password in your head. You put in numbers or special characters and think it's more secure that way. The problem is, you're probably doing it in a pretty predictable way. For example, using numbers instead of similar letters is quite common. Imagine you want to increase the security of the "pass" access key. If you insert common substitutes, the result might look like this: "pa$$", where $ looks similar to S. Unfortunately, such substitutes are so common that cybercriminals already count on them and they don't add much strength to the password. So don't really use them.

Use each password just once

Many Internet users have the same access key for several different accounts. This is completely wrong. Each key should open just one door. Some simple maths offers an explanation - a password used for ten sites is ten times weaker than a similar password used for just one site. So by using the same word on multiple pages, you run a greater risk of one of them leaking. It's then easy for a cybercriminal to get into several of your accounts at once.

Use the password manager

You already know that it's useful to have a different passphrase for each account. But who can remember dozens or even hundreds of passwords? Fortunately, today's digital age offers a solution in the form of a password manager - an app that remembers logins and passwords for you on specific sites. The fact that you don't have to remember passwords allows you to create truly secure, random combinations for your accounts. For example, they might look something like this: zQMCuMeX8?]cAP5

Your web browser can also often remember your account access - the first time you enter your password on a page, just click "remember" in the window that pops up and you don't have to worry about it in the future. The downside in this case is that anyone who has access to your computer can get your passwords. Good password managers have their own security, and if no one unlocks them, they won't get any of the other access either.

Prefer two-step verification

Even stronger security for your password is provided by multi-factor authentication, where you receive an SMS or email with a generated code immediately after you log in. Only after you enter it will you finally access your account. The advantage is that the second factor is in no way related to the password, so guessing it is only the first and probably last successful step of a cybercriminal. The disadvantage may be that not every provider provides such a service. You can set the second factor for Google accounts, for example, otherwise you can use a password generator.

A more convenient and secure alternative is a mobile app that generates a six-digit verification PIN valid for up to 20 seconds. A good example is Google Authenticator, which can be set up for accounts with many providers. Such small authorization using the nine previous steps will essentially make your password unbreakable and your online security as secure as possible.

Don't underestimate security questions

Security questions that help protect your passwords are tricky enough. After reading this article, I recommend visiting the accesses to all your important accounts, clicking on "forgot password" and investigating how you can reset that password. If a cybercriminal can't crack the key itself, they can still try this route, which is sometimes much easier.

If a forgotten password is to be recoverable using security questions, at least make it impossible to find out the answer from public sources. Ideally, even those closest to you should not know the answer. Better not to think about how many people in the world secure access to their accounts with the names of popular shows like The Simpsons or Big Bang Theory. Guessing something like this is a simple matter for even the least imaginative cybercriminal layman. It's also better to avoid security questions about your mother's maiden name, the name of your favorite band/song/sports team, your first job, or your hometown.

Fortunately, inappropriate security questions are waived or at least not mandatory. In the best case, don't use them at all, and instead enable password reset by your email address or phone number.