Is this safe to use on a real password?

Yes — the analysis is 100% local. The password never leaves your browser. We never see or store it.

What "crack time" do you assume?

A motivated attacker running offline on a single high-end GPU at ~10 billion guesses per second. Online attacks against a service are typically much slower thanks to rate-limiting.

Why is a long sentence stronger than a short complex password?

Length dominates strength because each extra character multiplies the search space. A 5-word passphrase typically beats a random 8-char password.

SnapTools

Files never leave your device

Password Strength Meter

Estimate password strength using entropy and common-password heuristics. See an approximate crack time. All checks run in your browser.

Password

How to use Password Strength

Type a password.
Read off the bit-entropy, crack-time estimate, and weakness flags.

How to use Password Strength

Frequently asked questions

Is this safe to use on a real password?

What "crack time" do you assume?

Why is a long sentence stronger than a short complex password?