Secure Password & Passphrase Generator

Generate cryptographically secure passwords and memorable diceware passphrases that follow modern NIST SP 800-63B guidance — with entropy reported in bits for every result. Every secret is produced with Python's secrets CSPRNG (never the unsafe random module), so the output is suitable for real-world credential generation. Run it on demand, on a schedule, or via the Apify API and integrations.

What does Secure Password & Passphrase Generator do?

This Actor creates strong, ready-to-use credentials in two modes:

• Random characters — classic passwords mixing lowercase, uppercase, digits, and symbols, with optional exclusion of ambiguous characters (l, 1, O, 0, …).
• Passphrase (diceware) — memorable word-based passphrases built from the full EFF large wordlist (7,776 words, ~12.9 bits of entropy per word), with optional capitalization, custom separators, and an appended digit.

Each generated item includes its measured entropy in bits and a plain-language strength rating, so you know exactly how strong each credential is.

Why use this Actor?

• Security-first: uses a cryptographically secure random number generator and a Fisher–Yates shuffle. No predictable PRNGs.
• NIST-aligned: prioritizes length over forced complexity, supports lengths up to 256 characters, and reports entropy instead of relying on opaque "strength meters."
• Batch generation: create up to 1,000 credentials in a single run.
• Automatable: schedule rotations, call it from CI/CD, or integrate with Make, Zapier, and 1,000+ apps via the Apify API.

How to use Secure Password & Passphrase Generator

1. Click Try for free / Start.
2. Pick a mode — Random characters or Passphrase.
3. Adjust the options (length, word count, character classes, etc.).
4. Set count to how many credentials you want.
5. Run the Actor and read the results from the Output tab or download them.

Input

Configure the run from the Input tab or via JSON. All fields are optional and have sensible defaults.

{
  "mode": "passphrase",
  "count": 5,
  "wordCount": 6,
  "separator": "-",
  "capitalize": true,
  "includeNumber": true
}

Field	Type	Description
mode	string	random or passphrase. Default random.
count	integer	Number of credentials to generate (1–1000). Default 1.
length	integer	Character length for random mode (1–256). Default 16.
useLowercase / useUppercase / useDigits / useSymbols	boolean	Character classes for random mode. All default true.
excludeAmbiguous	boolean	Exclude easily-confused characters. Default false.
wordCount	integer	Words per passphrase (1–64). Default 5.
separator	string	Separator between words. Default -.
capitalize	boolean	Capitalize each word. Default false.
includeNumber	boolean	Append a random digit. Default false.

Output

Results are stored in the dataset. You can download the dataset in various formats such as JSON, HTML, CSV, or Excel.

{
  "password": "Buddy-Slightly-Shape-Cycle-Variable-Visor-0",
  "mode": "passphrase",
  "length": 43,
  "entropy_bits": 86.87,
  "strength": "strong",
  "charset_size": 0,
  "word_count": 6
}

Data table

Field	Description
password	The generated password or passphrase.
mode	random or passphrase.
length	Total character length.
entropy_bits	Shannon entropy in bits (higher is stronger).
strength	Human-readable rating: very weak → very strong.
charset_size	Size of the character pool (random mode).
word_count	Number of words (passphrase mode).

Pricing

This Actor uses the pay-per-event pricing model and charges a flat $0.01 per run, regardless of how many credentials you generate in that run. Generating 1 or 1,000 passwords costs the same single event. Apify platform compute usage for these tiny runs is negligible.

Tips

• For online accounts, aim for 60+ bits of entropy (≈ 4+ passphrase words or a 12+ char random password). For high-value secrets, target 100+ bits.
• Passphrases are easier to type and remember than random strings at equivalent strength — great for master passwords.
• Use excludeAmbiguous when a password may be read aloud or copied by hand.
• Generate a batch (count) once and store the surplus in your password manager.

Security & disclaimer

Credentials are generated in-memory during the run and written only to your own private dataset. Treat generated secrets as sensitive: download them over a secure channel and delete the run's dataset when you no longer need it. This Actor does not transmit generated passwords anywhere else.

Have a feature request or found an issue? Use the Issues tab on the Actor page.