CyduckEST. 2026 Open the dashboard Dashboard
Section I · 04 — Password Generator

A new password, built to last.

Long, random, never the same twice. Adjust the length and character set, then generate. Everything happens in your browser — we never see what we make.

FIG. I — your password
strength
820324864
Generated locally · never sent · never stored
FIG. II

What this password resists

brute force

At a billion guesses per second, a random password of this length would take an unreasonable amount of time to crack. The longer it is, the better.

dictionary attack

No dictionary words, no birth years, no password123. Random characters resist any wordlist-based attack.

credential stuffing

Used only here. Even if another site you use gets breached, this password is safe. Always pair generation with unique-per-site use.

Section III 03 — what to do next

Three habits. Lock them in.

  • № 01
    Use a password manager. Generate a unique password for every account, store them in a manager, never type one again. Bitwarden, 1Password, and your browser's built-in are all solid.
  • № 02
    Pair this password with two-factor. Even the strongest password can leak. Two-factor authentication adds a second layer that doesn't depend on the password itself. Turn it on for email, banking, social.
  • № 03
    Check whether your old passwords have been leaked. Generated passwords are safe by design. The ones you've been reusing for years probably aren't. Check them, then replace the leaked ones. Open Password Breach Checker →
FIG. IV — how this works

Cryptographic randomness, generated in your browser.

  1. 01
    Browser-native crypto. We use window.crypto.getRandomValues(), your browser's built-in cryptographically secure random number generator. The same one banks and password managers use. No JavaScript shortcuts.
  2. 02
    Sampled from your character set. We map random bytes to the characters you've enabled (lowercase, uppercase, numbers, symbols), filtering out anything you've chosen to exclude. Each character is independently random.
  3. 03
    Never sent, never stored. The password exists only on your screen and in your clipboard if you copy it. Refresh the page and it's gone forever. Generate again whenever you want — there's no quota.

A 20-character password from this set has roughly 130 bits of entropy. That's stronger than most encryption keys. Pair it with a password manager and you're set.

While you're here, strengthen the rest.

Three tools, all browser-only. No accounts. The same instruments behind the Scorer.

№ 05 Passphrase Generator Word-based, memorable, strong. № 06 Password Strength Checker How long would yours actually hold? № 02 Password Breach Checker See if your password is on a leak list.