Your Keys, Your Control

Generate secure, cryptographically strong passwords locally on your device. No data is ever sent to a server.

Generate Password
0 bits
Weak
16

Characters

Options

Why PassVault.io?

100% Client-Side

Your passwords are generated in your browser. Nothing is ever sent to or stored on a server. Your privacy is paramount.

Cryptographically Secure

We use the built-in `crypto.getRandomValues()` API for truly random, unpredictable password generation.

Fully Customizable

From length to character types and ambiguous exclusions, you have full control over your password's structure.

Instant Strength Check

See the strength of your password in real-time with our entropy (bits) calculation and visual strength meter.

Modern & Clean

A beautiful, responsive, and accessible interface with light and dark modes that works perfectly on any device.

Open Source

Trust through transparency. Our code is open source for anyone to review, audit, and contribute to.

How It Works: Security First

PassVault.io is fundamentally different from online generators that might log your activity. Our process is simple and transparent:

1. You set your preferences. You choose the length, characters, and options.

2. JavaScript runs locally. All code executes *only* on your computer, inside your browser.

3. We use `crypto.getRandomValues()`. This is a browser-native function that provides cryptographically secure random numbers, far more secure than standard math-based random functions.

4. Your password appears. It's displayed on your screen and never transmitted over the internet. When you close the tab, it's gone (unless you use the local-only history).

Your passwords are generated locally and never leave your device.

Frequently Asked Questions

Is PassVault.io truly safe to use?

Yes. The entire application runs on your device (client-side). There is no "backend" or server that we send data to. We cannot see, store, or access the passwords you generate. The code is also open source for public auditing.

What does "entropy" mean?

Entropy, measured in "bits," is a way to quantify the randomness and unpredictability of your password. A higher bit count means an exponentially harder password to guess or "brute-force." For example, a 128-bit password is considered secure against all known classical computing attacks.

What are ambiguous characters?

These are characters that look similar and can be confusing to read, such as the number '0' and the letter 'O', or the number '1' and the letter 'l' or 'I'. Excluding them makes passwords easier to read and type manually if needed.

Where is my password history stored?

Your history is stored in your browser's `localStorage`. This is a small database on your computer that only this website can access. It is *not* sent over the internet. You can clear this history at any time by unchecking "Save Preferences" or clearing your browser's site data for PassVault.io.