Memorable Passphrase Generator

Generate easy-to-remember 4–8 word passphrases joined by hyphens. Diceware-inspired, crypto-random word selection, strong against brute-force.

password

security

generator

random

secure

Word count: 4

Four-word passphrases give ~44 bits of entropy; five words give ~55 bits. Words are joined with hyphens and end with two random digits.

Generated Passwords

Click Generate to create passwords

About Memorable Passphrase

Memorable passphrases replace random character soup with 4–8 common English words joined by hyphens, ending in two random digits. The words are picked uniformly at random from a ~300-word list using crypto.getRandomValues — the same secure random source behind a strong password generator, just applied to a different alphabet. The result: something like "meadow-thunder-pencil-robot-42" that a human can hold in working memory long enough to type, but an attacker can't brute-force in any realistic time. The security math is better than it looks. With a 300-word list and uniform sampling, each word gives ~8 bits of entropy. A four-word passphrase has ~32 bits plus the trailing digits — about the security of a 6-character random ASCII password, cracked in minutes by a GPU. A five-word passphrase has ~44 bits, which takes months. Six words gets you to ~52 bits, essentially uncrackable by current hardware. For a password-manager master or device login, use at least five words — for anything disposable, four is fine. Why memorable beats random for humans: you actually type it correctly the first time on mobile, you can dictate it verbally (tech support, shared device setup), and you can reconstruct it from memory after a device wipe. The downside is length — a memorable passphrase runs 25–40 characters, which some legacy systems cap. Use strong random passwords with a manager everywhere else; save memorable for the handful of credentials you type by hand.

Features

Generate cryptographically secure random passwords
Customize password length and character types
Include uppercase, lowercase, numbers, and symbols
Generate multiple passwords at once

How to Use

Set your desired password length using the slider
Toggle character types (uppercase, lowercase, numbers, symbols)
Click "Generate" to create secure passwords
Click any password to copy it to your clipboard

Frequently Asked Questions

Is a four-word passphrase strong enough?

For most accounts with rate-limiting, yes — four words from a 300-word list give ~32 bits of entropy plus the trailing digits. For your password-manager master, device login, or anything that stores directly as a hash (no rate-limit), use five or six words. The security grows exponentially with word count.

How is this different from Diceware?

Diceware uses a specific 7776-word list generated by Arnold Reinhold in 1995 and picks words with physical dice. This tool uses a smaller curated list of 300 common English words picked with crypto.getRandomValues. Fewer words per pick means less entropy per word, so you need a few more words to match Diceware security.

Why are passphrases easier to type on mobile?

Autocorrect helps — it recognises and suggests common words after the first couple of letters. Swipe typing works well on recognisable words. Random character passwords disable autocorrect and force precision, which produces far more typos. Passphrases are the only practical option for accounts you log into regularly from a phone.

Should I add my own words to a generated passphrase?

No — inserting "personal touches" makes the passphrase guessable by anyone who knows you (pet names, birth years, favourite teams). The whole point of random word selection is no personal information leaks into the password. If you want a memorable anchor, add it as a prefix outside the generated words.