Remove these Ads


Powered by HTML5 and JavaScript

Technically, a man-in-the-middle attack (not likely, though if it's happening, your use of this tool is the least of your problems) could inject additional code to capture the passwords generated here, just like any other site.

However, like some of those other sites, all passwords generated here are generated via JavaScript. In other words, they don't travel the internet. Your computer makes 'em locally, so as long as your computer isn't compromised, you're safe.

Plus, if you have any doubts and you know your way around JavaScript, feel free to take a look. It's all client-side code. Most of it I borrowed from other folks, since my own JavaScript skills aren't as solid as some of the other guys out there... Why reinvent the wheel?

Check out another of my handy-for-developers tools:, an easy way to get a specific HTTP status code