Back to tools

Password Generator

Generate a strong random password.

Character sets

Passwords are generated in this browser tab using your device's secure random source. Nothing is sent anywhere.

How it works

1. Pick a length

Choose how long the password should be. Anywhere from 4 to 128 characters.

2. Pick character sets

Toggle uppercase, lowercase, numbers, and symbols. Optionally exclude lookalike characters (0/O, 1/l).

3. Copy

Hit generate, copy the result, paste it where you need it. Generate again as many times as you like.

About the Password Generator tool

The Password Generator creates strong, random passwords using your browser's cryptographically secure random source (crypto.getRandomValues) — the same class of randomness used for real security work, not a predictable shortcut. Choose any length from 4 to 128 characters and toggle uppercase, lowercase, numbers, and symbols to match a site's rules. You can also exclude ambiguous lookalike characters such as 0/O and 1/l/I, which helps when a password has to be read aloud or typed from a printed page.

Use it whenever you need a unique password for a new account, a Wi-Fi network, a database, or a master password for your password manager. For most accounts, 16 characters with all four character sets is a strong default; 20 to 32 is sensible for high-value logins. Everything is generated locally — Onsilio never sends, stores, or logs the passwords it produces, so reloading the page wipes them. The tool is free with no limits, requires no account, and works offline after the first load.

Frequently asked questions

Is the random source secure?

Yes. Passwords are generated with the browser's cryptographically secure random source (`crypto.getRandomValues`). Nothing is sent over the network.

Does Onsilio see my password?

No. The generator never sends, stores, or logs the passwords it produces. Reload the page and it is gone.

How long should a password be?

16 characters with uppercase, lowercase, numbers, and symbols enabled is a strong default for most accounts. Go higher (20–32) for high-value accounts or master passwords.

What does "exclude ambiguous characters" do?

Excluding ambiguous characters drops 0/O, 1/l/I, and similar pairs. Useful when the password will be read aloud or typed from a printed page.

Does it work offline?

Yes. The page works offline once it has loaded.