CrateX.app logo

CrateX.app

Password Generator

Generate secure passwords with customizable rules and strength options

Usage Instructions

🚀 Quick Start

  • Set length (recommended 12–16)
  • Select character types (uppercase/lowercase/digits/symbols)
  • Or choose a template (Basic/Strong/High Security/Readable)
  • Click Generate, then copy and save (refresh clears)

📌 Common Scenarios

  • Sign‑up/reset: generate unique strong passwords per site to reduce stuffing risk
  • Admin/production: prefer length ≥16, include symbols, exclude confusables for better typing
  • VPN/remote access: use longer passwords (20+), store in a password manager
  • Router/Wi‑Fi: use the Readable template for easier input and sharing
  • Temporary access: one‑time password; rotate or disable after use

📊 Strength Assessment & Principles

  • Uses zxcvbn: entropy analysis, dictionary checks, pattern recognition, crack‑time estimate
  • Scoring: 0–1 weak, 2 fair, 3 strong, 4 very strong
  • Crack time: estimated under common attack models; actual depends on attacker and hardware
  • Smart detection: flags common passwords, repeats, dictionary‑like patterns

🧭 Usage Advice

  • ✅ Recommended: 12+ characters with all 4 types; avoid common passwords and patterns
  • ❌ Avoid: personal info (birthdays, names, emails), common passwords, keyboard sequences (qwe, 123, abc)
  • Check crack time/strength before adopting
  • When typing by hand, prefer “Readable Password”
  • Use different passwords per site to prevent credential stuffing
  • Use a password manager: generate and store complex passwords securely

⚠️ Limitations & Compatibility

  • Batch limit: up to 5 per run
  • Length: 8–64; if N types selected, length must be ≥ N
  • Excluding similar/ambiguous characters reduces the pool and may affect variety
  • Guess rate assumptions: online (rate‑limited) vs offline (high‑throughput) differ greatly; strength estimates depend on this — defer to the actual environment

🔒 Privacy & Security

  • All processing happens in your browser; data never leaves your device
  • Copy and store immediately after generation; consider a password manager

❓ FAQ

What’s the impact of excluding similar/ambiguous characters?

It improves readability and reduces input errors but shrinks the character set, which can slightly reduce randomness or variety. If symbols become fully excluded by rules, the app will ask you to adjust options

Why do some websites show a different strength?

Sites use different checks (complexity rules, dictionaries, scoring, attempt rate). We estimate with zxcvbn under an “online 10 attempts/sec” scenario, so results may differ—follow the site’s guidance

Password Generation - Secure Random Password Generator - CrateX.app