Generate strong random passphrases entirely in your browser using the EFF Large Wordlist. Configurable word count, separator, capitalisation, and complexity rules — passphrases never leave your device.
Generate strong passphrases entirely in your browser using the EFF Large Wordlist. Nothing is sent to the server.
- . _ (space)Pick one. Copy. Move on. Passphrases regenerate every time you change a setting.
Words are picked using window.crypto.getRandomValues with rejection sampling
against the EFF Large Wordlist. Passphrases are never sent to or stored on the server.
Practical reference for picking a passphrase length (assumes the full 7776-word pool).
| Words | Entropy | Suggested use |
|---|---|---|
| 3 | ~38 bits | Throwaway accounts only. Vulnerable to motivated attackers. |
| 4 | ~52 bits | Acceptable behind rate limits. Not for offline-attacked hashes. |
| 5 | ~65 bits | Reasonable for everyday accounts. |
| 6 | ~77 bits | Recommended baseline. EFF's default suggestion. |
| 7 | ~90 bits | Strong. Suitable for sensitive accounts. |
| 8+ | ~103+ bits | Master passwords, vault keys, admin access. |
Read before relying on a passphrase.
Passphrases are easier to memorise than random-character passwords while staying mathematically strong. Six random words give comparable entropy to a 12-character mixed password.
Using uppercase, digits, and symbols adds only a few extra bits. Adding more words is the cheapest way to gain real strength.
Wordlist: EFF Large Wordlist , licensed under CC BY 3.0 US .