Passphrase Generator
Create a memorable, strong passphrase from random common words, with control over word count, separator, capitals, and an optional number.
Passphrase
Strong ~65 bits
Generated on your device. Nothing is sent or stored.
Separator
Options
Words are chosen at random from a large list of common words, like correct-horse-battery-staple. More words means a stronger, longer passphrase.
How to generate a memorable passphrase online
Get a passphrase instantly
A passphrase built from several random words appears as soon as the page loads, so you can copy one straight away.
Set the word count
Drag the slider to pick anywhere from 3 to 8 words; more words means a stronger passphrase, and the result rerolls with every change.
Choose a separator and extras
Join the words with a space, a hyphen, a dot, or nothing, then optionally capitalize each word or add a number for sites that demand one.
Copy the passphrase
Copy the result with one click, or press Regenerate to roll a fresh set of words without touching your settings.
Why use this tool
Memorable by design
You get something like correct-horse-battery-staple, several ordinary words that are far easier to remember and to type than a dense string of symbols, while still being hard to guess.
Word count and separator control
Choose 3 to 8 words and join them with a space, a hyphen, a dot, or nothing at all, so the passphrase fits whatever a site or device will accept.
Capitals and an optional number
Capitalize each word for a cleaner look, and append a number to satisfy the forms that insist a password contain a digit.
Entropy-based strength meter
The readout shows the estimated bits of entropy for your current settings and rates the passphrase from Weak to Very strong.
Large curated word list
Words are drawn uniformly at random from a curated list of 7,776 common words chosen to be easy to read, spell, and recall.
Generated on your device
Every passphrase is created locally from a cryptographically secure random source. It is never sent, stored, or logged anywhere.
About this tool
This passphrase generator builds memorable, strong passphrases on your device from a curated list of 7,776 common words, the diceware style word list favoured for master phrases. Instead of a wall of symbols, you get something like correct-horse-battery-staple: several ordinary words picked uniformly at random and joined together. Each word is drawn from a cryptographically secure random source, so the result is genuinely unpredictable rather than merely random-looking. A passphrase like this is far easier to remember, and to type on a phone, than a dense string of characters, while still being very hard to guess.
Strength is measured in bits of entropy. Every word you add multiplies the number of guesses an attacker needs by nearly eight thousand, so a four word phrase is already strong and a six word phrase is very strong. You decide how the words are joined, with a space, a hyphen, a dot, or nothing, and you can capitalize each word or append a number for sites that insist on one. The readout under the passphrase shows the estimated bits for your current settings and rates it from Weak to Very strong, so you can see exactly what one more word is worth.
Because everything runs in your browser, no server ever sees the passphrase, which is the property you want from anything that guards an account. Generate one for a device login, a disk, or a password manager's master phrase, then save it in that manager rather than reusing it anywhere. When you need a fully random character string instead, use the password generator; for unique identifiers, there is the uuid generator.
Frequently asked questions
- How does this passphrase generator work?
- Each word is chosen uniformly at random from a curated list of 7,776 common words, using your browser's cryptographically secure random source, the same quality of randomness used for encryption keys. The chosen words are then joined with the separator you pick, and any capitals or number you enable are applied on top.
- Why use a passphrase instead of a password?
- A passphrase is several real words joined together, like correct-horse-battery-staple. It is much easier to remember and to type than a string of symbols while still being hard to guess, because the words are picked at random from a large list. Use one for logins you type often, such as a device or a password manager master phrase.
- How many words should I use?
- Four words is already strong for most accounts, and five or six words is very strong. The slider runs from 3 to 8 words, and the strength readout shows the estimated bits of entropy so you can pick a length that matches how sensitive the account is.
- What does the strength rating mean?
- It is an estimate of entropy, measured in bits, for your current settings. Each random word adds roughly 13 bits, and every bit doubles the number of guesses required. Around 65 bits rates as Strong and 100 or more as Very strong; add a word to raise it.
- Are the passphrases sent or stored anywhere?
- No. Passphrases are generated entirely on your device and never leave your browser. Nothing is uploaded, logged, or saved; once you leave the page, the value is gone unless you copied it.
- Should I still use a password manager?
- Yes. This tool creates strong, memorable passphrases, but a manager is what stores them safely and lets you keep a different one for every account. Generate here, save it in your manager, and never reuse a passphrase across sites.
Related tools
Password Generator
Create strong random passwords or memorable passphrases, with control over length, characters, word count, and bulk output.
UUID Generator
Generate version 4 and version 7 UUIDs in bulk, with case and format options.
Hash Generator
Hash text or any file to MD5, SHA-1, SHA-256, and SHA-512, and verify a checksum.
API Key Generator
Generate cryptographically random API keys and tokens in hex, base62, or base64url, with control over length, an optional prefix, and bulk output.
ASCII Table Reference
The full ASCII character set with decimal, hex, octal, binary, and HTML codes. Search by code, character, or name.
Atbash Cipher
Mirror the alphabet so A swaps with Z, B with Y, and so on. Atbash is its own inverse, so one field both encodes and decodes as you type.