Password Audit & Policy Generator

Strength checker, entropy, NIST 2024 · 100% in browser

Password Generator

Check password strength

Paste a password below. Nothing is sent to any server; all math runs in your browser.

Runs in your browser — nothing is sent to any server. NIST 2024–aligned.

Password Audit & Policy Generator

Two modes. Personal: paste a password to get entropy score, crack time estimate, pattern detection (keyboard walks, leet speak, years), and improvement suggestions. Developer: build a password policy with live regex and code export in JavaScript, Python, Go, Java, and PHP. All math runs in your browser; nothing is sent to any server.

Generate strong passwords →

Frequently Asked Questions

Is it safe to paste my password into the strength checker?
Yes. All checking runs in your browser. Nothing is sent to any server; no password is stored.
What is password entropy?
Entropy (in bits) measures how unpredictable a password is. Higher entropy means longer time to crack. The tool estimates it from character set and length.
What are NIST 2024 password guidelines?
NIST recommends longer passphrases or complexity, and avoiding predictable patterns. The policy generator helps you enforce min length, character types, and optional rules.
Can I export the password policy as code?
Yes. In Developer mode you get a live regex and can export validation code in JavaScript, Python, Go, Java, and PHP.