Password strength checker
Estimate password entropy, crack time and concrete weaknesses — locally, in your browser.
Related tools
Password strength checker
Type or paste a password — or several at once, one per line — and get an instant strength report. For each password you see a verdict from very weak to very strong, the estimated entropy in bits, the size of the character set it actually draws from, its length, and how long an offline attacker guessing ten billion passwords per second would need to search the whole keyspace.
Instead of a bare score, the checker names concrete weaknesses. It flags passwords built only from lowercase letters, missing digits or symbols, common passwords and keyboard walks such as qwerty or asdf, repeated characters like aaa, sequences such as abc or 123, and the classic year tacked onto the end. Every detected pattern lowers the entropy estimate, because real attackers try exactly these shortcuts long before brute force.
Turn off Show details for a compact one-line summary per password — useful when you are comparing candidates or auditing a whole list at once. The tally under the output counts the passwords checked and shows their average entropy, updating live as you type.
Typing a password into a website normally feels wrong, and the instinct is a healthy one. Here the analysis runs entirely in your browser: the page makes no network requests, nothing is logged or stored, and the password never leaves your device — you can verify that in your browser's developer tools. If something scores weak, open the password generator next door and create a stronger replacement in one click.