Local generation with Web Crypto

Website Password Requirements Generator

Translate a signup form's password rules into exact generator settings and create passwords designed to pass validation.

Password settings

Website Requirement Mode

Enter a site's rules and generate passwords that are built to pass them.

Rule assistant

Paste the visible password rules from a signup form. The assistant fills the settings without sending the text anywhere.

Rule templates

Apply a common rule set or save the current settings for this browser.

Site rules

Allowed and banned characters
Check a rejected password

Paste a password only if you want to check it against these rules. The check stays in this browser and is not saved.

The link stores only rule settings, never generated passwords.

Generated passwords

0

Security notes

  • Passwords are generated locally in your browser.
  • We do not store, send, or log generated passwords.
  • Uses the Web Crypto API for secure randomness.
  • Longer passwords are usually stronger than short complex passwords.

Requirement mode

Turn visible password rules into generator settings

Password forms often fail because one rule was missed: a maximum length, an unsupported symbol, or a required character group. Requirement mode is designed to model those visible rules directly.

Start with minimum and maximum length

Enter both values if the form provides them. If only a minimum is shown, choose a length that is comfortably above the minimum but still reasonable for the service.

Map each required character type

Enable uppercase, lowercase, number, and symbol requirements only when the site asks for them. This keeps the generated password aligned with the stated policy.

Use allowed and banned character fields

Allowed symbols and banned characters are different. Allowed symbols define what punctuation can appear; banned characters remove values the form refuses.

Expect unpublished checks

Some sites also block breached passwords, recently used passwords, or account-related words. If a valid-looking password fails, regenerate and check for extra form messages.

Example

A form with exact visible requirements

If a form says “12-20 characters, uppercase, lowercase, number, and one symbol; allowed symbols ! @ # _ -”, paste the rule text into Rule Assistant, then verify the detected limits and symbol list before generating.

Troubleshooting

The visible rules match, but the form still fails

Look for a message about password history, breached passwords, account-related words, or an unlisted character restriction. Generate a new result rather than editing the rejected one, then update the settings only when the form reveals another rule.

Rule matching checklist

  • Enter maximum length when one is shown.
  • Limit symbols to the list the site accepts.
  • Add banned characters if the form names them.
  • Regenerate rather than editing the password into a predictable pattern.

FAQ

Can I enter a website's minimum and maximum length?

Yes. Website Requirement Mode supports both minimum and maximum password lengths.

Can I allow only certain symbols?

Yes. Enter the exact symbols accepted by the website and list any banned characters separately.

Does this guarantee every website will accept the result?

It matches the rules you enter, but a website may apply additional unpublished checks such as password history or breached-password detection.