Generate strong, random passwords. Uses cryptographic randomness. Nothing leaves your browser.
At least 12 characters, ideally 16+. Each additional character makes the password exponentially harder to crack. A 16-character password with mixed characters would take billions of years to brute-force with current technology.
Yes. It uses crypto.getRandomValues() โ the same cryptographic random number generator used by password managers and security software. No passwords are transmitted anywhere.
Passphrases (like "correct-horse-battery-staple") are easier to remember and can be very secure if long enough. A 4-word passphrase has roughly the same entropy as a 10-character random password. For maximum security, use a password manager with generated passwords.