Tool — 100% Client-Side · Nothing Leaves Your Device

Password Strength Meter

Data breaches expose billions of passwords every year — then corporations sell them to each other and to data brokers. Check yours against the full breach database and find out how long it would realistically take an attacker to crack it.

Test Your Password

How strong is it, really?

Type or paste below. Analysis is instant. Nothing is transmitted — not even to us.

Enter a password to begin
How It Works

What the numbers actually mean

Entropy Score
Entropy measures unpredictability in bits. Calculated from length × log₂(character pool size). 60+ bits is the practical minimum against modern offline attacks. 80+ bits is strong.
Crack Time
Modelled against a 10 billion guess/second offline attack — a realistic GPU rig cracking an unsalted fast hash like MD5. Real times vary significantly based on how the site stores passwords.
Breach Check
Uses HaveIBeenPwned's k-anonymity API. Only the first 5 hex characters of your password's SHA-1 hash are sent. Your actual password never leaves your browser. The match is done locally.
Zero Transmission
By the way, all analysis runs in JavaScript inside your tab. There is no server receiving keystrokes. No analytics on what you type. Close the tab and it's gone. We built it this way intentionally.
Why does this matter?

Why unique passwords are important

Using a password manager is one of the smartest things you can do to protect yourself online — and here's why unique passwords matter so much. Imagine you use the same password for your email, your bank, and your favorite shopping site. If that shopping site gets hacked (and these things happen all the time, even to big companies!), criminals now have your password — and they'll immediately try it on your email and bank accounts too. This is called "credential stuffing," and it works shockingly often. A password manager solves this by creating a long, random, totally unique password for every single site you use, so if one gets compromised, the rest of your accounts stay completely safe. The best part? You only have to remember one master password, and the manager handles everything else. Think of it like a super-secure keychain that holds a different key for every door in your life.