Inspired by XKCD #936
How this password generator works
This password generator uses AI to create random, nonsensical English phrases — the kind of passphrases recommended by security experts. Each time you click Generate, a new set of random words is combined into a phrase that's easy to remember but extremely hard to crack. You get six variants: plain words, camelCase, lowercase, special characters, numbers, and a fully obfuscated "strongest" option.
Why use a passphrase instead of a password?
As XKCD famously illustrated, a passphrase like purple clouds dance quietly is both easier to remember and harder to brute-force than a traditional password like Tr0ub4dor&3. A four-word passphrase has roughly 1015 possible combinations — enough to resist most attacks while remaining something you can actually type from memory.
Frequently asked questions
Is this password generator secure?
Yes. Each passphrase is generated fresh on request with a random seed. Passwords are never stored, logged, or saved on our servers. They exist only in your browser until you copy them.
How many words should my passphrase have?
Four words is a good default for most accounts. Use five or more for high-security accounts like banking or email. Each additional word multiplies the number of possible combinations exponentially.
Which password variant should I use?
If the site allows spaces, use the "xkcd" variant — it's the easiest to type and remember. If the site requires special characters or numbers, use "spec!alch@r$" or "numb3rs". The "strongest" variant combines everything for maximum security.
Is a passphrase better than a random character password?
For most people, yes. A random character password like x7#mQ9!p has high entropy per character but is nearly impossible to memorize. A four-word passphrase has comparable total entropy and is far easier to remember and type correctly.