My Tools Garage

Diceware Passphrase Generator

Memorable, high-entropy word passphrases.

in-browser

How to use

  1. 1 Choose how many words you want (4–6 is a good default).
  2. 2 Pick a separator and toggle capitalisation or a trailing digit.
  3. 3 Click Generate to draw a fresh passphrase.
  4. 4 Check the entropy estimate, then copy your passphrase.

About Diceware Passphrase Generator

The Diceware Passphrase Generator creates strong passwords you can actually remember by stringing together random common words, in the spirit of the classic Diceware method.

Instead of an unmemorable jumble like "x7!Qp2#z", you get something like "river-anchor-melon-tunnel-9" — far easier to type and recall, yet packed with entropy because each word is chosen at random from a sizeable wordlist.

You control the recipe: pick how many words to use (more words means more security), choose the separator between them, optionally capitalise each word, and optionally append a random digit for a little extra entropy.

The tool shows an estimate of the passphrase’s entropy in bits so you can judge its strength at a glance, and a quick label tells you whether it lands in the fair, strong or excellent range.

As a rule of thumb, four or five random words already give a passphrase that is extremely hard to brute-force.

Every passphrase is generated locally using your browser’s cryptographically secure random number generator (Web Crypto), so the words are unpredictable and nothing ever leaves your device.

There is no logging, no network call and no storage — refresh and the suggestion is gone.

That makes it safe for creating real passwords for email, password managers and disk encryption.

FAQ

How many words should I use?

Four words is a reasonable minimum; five or six gives a strong margin. Each extra word adds roughly nine to ten bits of entropy with this wordlist.

Is this real Diceware?

It follows the Diceware idea of choosing random words for a memorable passphrase, using your browser’s secure random source instead of physical dice and a curated wordlist.

Are the passphrases sent to a server?

No. Generation happens entirely in your browser with the Web Crypto API, so passphrases are never transmitted or stored.