Local pattern analysis
Password Strength Checker
Check password patterns, estimated guessing resistance, and practical improvement advice locally in your browser.
Password to check
Passwords are generated and evaluated locally in your browser using crypto.getRandomValues(). PwdGen does not upload or store generated values, and never includes password input in analytics. Strength and crack-time results are estimates, not guarantees.
Strength result
Enter a password to check its strength- Entropy
- —
- Attack scenarios
- —
What this checker evaluates
The checker looks for common passwords, dictionary words, keyboard paths, repeated text, dates, substitutions, and predictable combinations. It does not judge strength from length alone.
A high score is useful evidence, not a guarantee. Reuse, phishing, malware, unsafe storage, and exposed recovery channels can still compromise a strong password.
How to improve a weak result
Prefer a unique, randomly generated password or a multi-word passphrase. Add unpredictable length instead of relying on familiar substitutions such as replacing a with @.
Password Strength Checker FAQ
Does PwdGen upload the password I check?
No. Pattern analysis runs in this browser and the input is not placed in requests, storage, URLs, history, or analytics.
Is a long password always strong?
No. Long repeated text, quotations, personal details, and common phrases may still be guessed efficiently.
What score should I use?
Prefer the strongest result available, keep it unique, store it in a trusted password manager, and enable MFA or passkeys.