Skip to content
Processing locally — files never leave your device

Security & Crypto

8 tools

Generate strong passwords, passphrases, PINs, API tokens, and one-time passcodes. Run encryption, hashing, and Caesar ciphers locally — secrets never leave your device.

Client-side security tools that keep secrets on your device

The tools in this category generate the small pieces of unpredictability that good security depends on: strong passwords, memorable passphrases, one-time codes, PINs, and random tokens. What sets them apart is where the work happens. Every value is produced in your own browser using your device's built-in cryptographic randomness, and nothing you generate is sent to a server. A password you create here has never travelled across the network, which is exactly the property you want from a secret.

Why randomness quality matters

A secret is only as strong as the randomness behind it. Humans are predictable — we reuse names, dates, and keyboard patterns — and so are weak software random generators, which is why attackers can guess passwords that "look" random to us. Proper tools draw from the browser's cryptographically secure generator, the same source used for encryption keys, so each character or word is genuinely unpredictable. A long passphrase of several random words is often both stronger and easier to remember than a short string of symbols, because its strength comes from length and true randomness rather than from being hard to type.

Secrets that never leave the device

Running entirely client-side means there is no upload, no logging, and no account behind these tools, so there is no copy of your secret sitting in someone else's database waiting to be breached. That said, the responsibility for what happens next is yours: once a value is generated, store it in a reputable password manager rather than a sticky note or a plain text file, and clear it from your clipboard when you're done. The tool can hand you a strong secret, but only careful handling keeps it secret.

A tool helps, but it is not the whole job

Generating strong credentials is one layer of defence, not a complete strategy. These tools do not replace turning on two-factor authentication, keeping software patched, being wary of phishing, and avoiding reused passwords across sites. Treat them as a reliable source of strong building blocks, and pair them with those everyday habits — that combination, not any single tool, is what actually keeps an account safe.

Popular security tools

Other categories