A fast, simple, and powerful open-source utility for generating cryptographically secure passwords. Supports three password types: strong (complex), base64-encoded, and memorable word-based passwords.
Requirements: Node.js 18+
# Install and generate your first password instantly
npx @sebastienrousseau/password-generatorThe interactive setup guides you through creating your first secure password.
# Strong password for important accounts
npx @sebastienrousseau/password-generator -t strong -l 12 -i 3 -s '-'
# Output: aB3dEf+/gH1i-Kl2MnOpQr3s-tU4vWxYz5A
# Memorable password for daily use
npx @sebastienrousseau/password-generator -t memorable -i 4 -s '-'
# Output: Apple-Breeze-Castle-DiamondUse in Your Code:
import PasswordGenerator from "@sebastienrousseau/password-generator";
const password = await PasswordGenerator({
type: "strong", length: 12, iteration: 3, separator: "-"
});Important: Store these passwords securely and hash them properly.
When storing user passwords in a database, NEVER store them in plain text. Use a secure Key Derivation Function (KDF):
- Recommended: Argon2id with NIST SP 800-132 parameters
- Alternative: scrypt or PBKDF2 with high iteration counts
- Avoid: MD5, SHA-1, or plain SHA-256 for password hashing
- OWASP Password Storage Cheat Sheet
- NIST SP 800-63B - Digital Identity Guidelines
✅ Cryptographically secure passwords using Node.js crypto module ✅ Interactive guided setup for first-time users ✅ Three password types: strong, memorable, base64 ✅ Instant clipboard copy option ✅ Zero configuration required to start
When you run npx @sebastienrousseau/password-generator without options, you enter a 4-step setup:
Step 1: Choose Password Type → Pick from strong, memorable, or base64 Step 2: Security Level → Select quick, secure, memorable, or custom Step 3: Clipboard Settings → Auto-copy or display only Step 4: Generate → Get your password plus the command-line command to recreate it
Navigation: Use arrow keys, numbers (1-3), Space for examples, ESC to go back
Example Experience:
🔐 Welcome to Password Generator!
●○○○ (1/4)
📋 Choose your password type:
▶ 1. 🔐 strong - Maximum security for important accounts
2. 🧠 memorable - Easy to remember for daily use
3. ⚙️ base64 - For API keys and system integration
Controls: Arrow Keys: Navigate • Enter: Select • Space: Show examples
The onboarding shows examples, explains security implications, and teaches the command-line commands for future use.
| Type | Description | Use Case | Example Output |
|---|---|---|---|
| strong | Complex passwords with uppercase, lowercase, numbers, symbols | High-security accounts | aB3dEf+/gH1i-Kl2MnOp |
| base64 | Base64-encoded character combinations | API keys, tokens | YWJjZGVm.ZGhpamts |
| memorable | Dictionary words for easy recall | Personal accounts, shared passwords | Apple-Castle-River-Moon |
| quantum-resistant | Enhanced entropy with quantum-safe algorithms | Post-quantum security | QR$v9K#mF2@x7L&nE8!p |
Password Generator includes quantum-resistant password generation that withstands both classical and quantum computational attacks.
Quantum-resistant mode generates passwords with enhanced entropy using quantum-safe algorithms and follows NIST Post-Quantum Cryptography standards:
- Enhanced Character Sets: Expanded symbol alphabet (94 printable ASCII characters)
- Quantum-Safe Entropy: Minimum 256-bit entropy threshold
- NIST SP 800-132 Compliance: Key derivation using Argon2id with recommended parameters
- Post-Quantum Ready: Resists quantum computing threats
- Not a silver bullet: Still requires proper storage and handling
- Not immune to social engineering: Human factors remain critical
- Not backwards compatible: May not work with legacy systems requiring simple passwords
- Not performance optimized: Generation takes longer due to enhanced security
Quantum-resistant mode applies the following defaults:
# Default quantum-resistant configuration
Type: quantum-resistant
Length: 32 characters per chunk
Iterations: 4 chunks
Separator: '' (concatenated for maximum entropy)
Minimum Entropy: 256 bits
KDF: Argon2id (memory=65536, time=3, parallelism=4)Basic Quantum-Resistant Password:
npx @sebastienrousseau/password-generator -t quantum-resistant
# Output: QR$v9K#mF2@x7L&nE8!pX3@T5w$nM9&bE8!tZ7%L4@nF6#mR2$wHigh-Security Enterprise Use:
npx @sebastienrousseau/password-generator -t quantum-resistant -l 48 -i 6 -s ''
# Output: 288-bit entropy password suitable for post-quantum securityQuantum-Resistant with Separators (Readable):
npx @sebastienrousseau/password-generator -t quantum-resistant -l 24 -i 4 -s '-'
# Output: QR$v9K#mF2@x7L&nE8!p-X3@T5w$nM9&bE8!tZ7%-L4@nF6#mR2$w-M8&vE2#rT9$Maximum Security Configuration:
npx @sebastienrousseau/password-generator -t quantum-resistant -l 64 -i 8 -s ''
# Output: 512-bit entropy for ultimate protectionNode.js Implementation:
import PasswordGenerator from "@sebastienrousseau/password-generator";
// Standard quantum-resistant password
const qrPassword = await PasswordGenerator({
type: "quantum-resistant",
length: 32,
iteration: 4,
separator: ""
});
// Enterprise-grade with custom KDF
const enterprisePassword = await PasswordGenerator({
type: "quantum-resistant",
length: 48,
iteration: 6,
separator: "",
kdf: {
algorithm: "argon2id",
memory: 131072, // 128MB
time: 5, // 5 iterations
parallelism: 8 // 8 threads
}
});Browser Implementation:
import { createQuickService } from '@password-generator/core';
import { BrowserQuantumRandom } from './adapters/browser/quantum-random.js';
// Create service with quantum-safe random generator
const service = createQuickService(new BrowserQuantumRandom());
const qrPassword = await service.generate({
type: 'quantum-resistant',
length: 32,
iteration: 4,
separator: ''
});Password Generator uses Argon2id as the recommended key derivation function for quantum-resistant passwords, following NIST SP 800-132 guidelines.
Minimum Parameters (NIST Compliance):
Algorithm: Argon2id
Memory: 65536 KB (64 MB)
Time Cost: 3 iterations
Parallelism: 4 threads
Salt: 128-bit random salt
Output: 256-bit derived key
Recommended Parameters (High Security):
Algorithm: Argon2id
Memory: 131072 KB (128 MB)
Time Cost: 5 iterations
Parallelism: 8 threads
Salt: 128-bit random salt
Output: 512-bit derived key
Enterprise Parameters (Maximum Security):
Algorithm: Argon2id
Memory: 262144 KB (256 MB)
Time Cost: 10 iterations
Parallelism: 16 threads
Salt: 256-bit random salt
Output: 512-bit derived key
command-line with Custom KDF Parameters:
npx @sebastienrousseau/password-generator \
-t quantum-resistant \
--kdf-memory 131072 \
--kdf-time 5 \
--kdf-parallelism 8JavaScript with KDF Configuration:
const password = await PasswordGenerator({
type: "quantum-resistant",
kdf: {
algorithm: "argon2id",
memory: 131072, // 128 MB
time: 5, // 5 iterations
parallelism: 8, // 8 threads
saltLength: 16 // 128-bit salt
}
});- Memory Parameter: Use at least 64 MB, prefer 128 MB or higher
- Time Parameter: Minimum 3 iterations, prefer 5+ for sensitive applications
- Parallelism: Match your CPU cores (4-16 typical)
- Salt: Always use random salts, minimum 128-bit
- Output Length: 256-bit minimum, 512-bit for quantum-resistant applications
- NIST SP 800-132: Recommendation for Password-Based Key Derivation
- NIST Post-Quantum Cryptography: Post-Quantum Cryptography Standards
- Argon2 RFC: RFC 9106 - The Argon2 Memory-Hard Function
Basic syntax:
npx @sebastienrousseau/password-generator [options]Options:
-t, --type <type> Password type: strong, base64, memorable
-l, --length <number> Length of each password chunk (not applicable to memorable)
-i, --iteration <number> Number of chunks or words
-s, --separator <char> Separator between chunks/words
-c, --clipboard Copy generated password to clipboard
-h, --help Show help
Enterprise & High-Security:
# Banking/financial (maximum security)
npx @sebastienrousseau/password-generator -t strong -l 20 -i 4 -s '' --clipboard
# Database connections (strong, readable chunks)
npx @sebastienrousseau/password-generator -t strong -l 12 -i 3 -s '-'API Keys & Tokens:
# OAuth bearer token
npx @sebastienrousseau/password-generator -t base64 -l 32 -i 1 -s ''
# Multi-part API key
npx @sebastienrousseau/password-generator -t base64 -l 16 -i 3 -s '.'Team & Shared Access:
# Shared development accounts (memorable)
npx @sebastienrousseau/password-generator -t memorable -i 4 -s '-'
# Temporary contractor access
npx @sebastienrousseau/password-generator -t memorable -i 3 -s '.'Compliance-Ready:
# PCI-DSS compliant (24+ chars, high entropy)
npx @sebastienrousseau/password-generator -t strong -l 12 -i 2 -s ''
# HIPAA-friendly (readable for healthcare staff)
npx @sebastienrousseau/password-generator -t strong -l 12 -i 3 -s '-'JavaScript Integration:
// Automated user provisioning
const password = await PasswordGenerator({
type: "strong", length: 16, iteration: 3, separator: ""
});
// API key generation service
const apiKey = await PasswordGenerator({
type: "base64", length: 32, iteration: 1, separator: ""
});import PasswordGenerator from "@sebastienrousseau/password-generator";
const password = await PasswordGenerator({
type: "strong", // "strong" | "base64" | "memorable"
length: 12, // chunk length (not for memorable)
iteration: 3, // number of chunks/words
separator: "-" // separator character(s)
});Security: Cryptographically secure using Node.js crypto.randomInt(). No predictable patterns. Configure entropy via length × iteration.
For programmatic usage in Node.js or browser environments, use the platform-agnostic core package:
import { createQuickService } from '@password-generator/core';
import { NodeCryptoRandom } from './src/adapters/node/crypto-random.js';
// Create service with a random generator adapter
const service = createQuickService(new NodeCryptoRandom());
// Generate passwords
const strongPassword = await service.generate({
type: 'strong',
length: 16,
iteration: 3,
separator: '-'
});
const memorablePassword = await service.generate({
type: 'memorable',
iteration: 4,
separator: '-'
});
// Calculate entropy before generating
const entropy = service.calculateEntropy({
type: 'strong',
length: 16,
iteration: 3
});
console.log(`Entropy: ${entropy.totalBits} bits (${entropy.securityLevel})`);The core package has zero dependencies and uses a port/adapter pattern for I/O, making it suitable for any JavaScript runtime. See packages/core/README.md for details.
Experience the password generator through our modern web interface with real-time feedback and accessibility features.
- Modern Interface - Clean, responsive design with dark/light theme support
- Accessibility - WCAG 2.1 AA compliant with screen reader support
- Smart Presets - Quick, Secure, and Memorable password configurations
- Real-time Feedback - Visual entropy calculation and strength indicators
- Keyboard Shortcuts - Ctrl/Cmd+Enter to generate, Ctrl/Cmd+C to copy
- Cross-platform - Runs on all modern browsers
Option 1: Local Development Server (Recommended)
# Clone and setup
git clone https://github.com/sebastienrousseau/password-generator.git
cd password-generator
# Start development server (typically serves on port 4173)
npx serve src/ui/web/demo
# or
npm install -g http-server && http-server src/ui/web/demo -p 4173Option 2: Platform-Specific Static Server
macOS/Linux:
# Using Python 3
python3 -m http.server 4173 --directory src/ui/web/demo
# Using Python 2 (if available)
python -m SimpleHTTPServer 4173
cd src/ui/web/demo
# Using Node.js
npx serve src/ui/web/demo --listen 4173Windows:
REM Using Python
python -m http.server 4173 --directory src/ui/web/demo
REM Then open: http://localhost:4173
REM Using PowerShell (Windows 10+)
cd src/ui/web/demo
python -m http.server 4173Option 3: PHP Development Server
php -S localhost:4173 -t src/ui/web/demoOpen http://localhost:4173 in your browser.
Prerequisites:
- Node.js 18+
- Modern browser with Web Crypto API support
Architecture Overview:
src/ui/web/
├── demo/ # Standalone web demo
│ ├── index.html # Main interface
│ ├── styles/ # CSS modules (tokens, components, utilities)
│ └── scripts/ # JavaScript modules (main.js, theme.js)
├── controllers/ # Web UI controllers (thin adapters)
├── state/ # State management
├── view-models/ # UI state models
└── adapters/ # Browser adapters (crypto, clipboard)
Integration Pattern:
import { createWebUIController } from '../controllers/WebUIController.js';
import { FormState } from '../state/FormState.js';
// Create controller (browser adapters + core engine)
const controller = createWebUIController();
// Generate password
const formState = new FormState({
type: 'strong',
length: 16,
iteration: 4,
separator: '-'
});
const result = await controller.generate(formState);
console.log(result.password); // aB3dEf+/gH1i-Kl2MnOpQr3sBrowser Compatibility:
- Chrome 90+ | Firefox 88+ | Safari 14+ | Edge 90+
- Requires JavaScript and Web Crypto API
Development Commands:
# Lint web UI code
npm run lint:web
# Run web UI tests
npm run test:web
# Development workflow
npm install
npm run lint:web
npm run test:webThe web UI uses CSS custom properties for easy theming:
- Design tokens:
src/ui/web/demo/styles/tokens.css - Component styles:
src/ui/web/demo/styles/components.css - Theme switching: Automatic dark/light mode with manual toggle
password-generator/
├── packages/
│ └── core/ # Platform-agnostic core (zero dependencies)
├── src/
│ ├── adapters/ # Node.js adapters (crypto, clipboard)
│ ├── cli/ # command-line controller (thin adapter)
│ └── ui/web/ # Web UI (thin adapter)
├── benchmarks/ # Performance benchmarks
└── docs/ # Documentation
Setup:
git clone https://github.com/sebastienrousseau/password-generator.git
cd password-generator
npm installAvailable Scripts:
npm run build # Build distribution files
npm run test # Run tests and coverage
npm run lint # Check code style
npm run lint:fix # Fix code style issuesWe welcome contributions! Please see our Contributing Guidelines for details.
Quick contribution checklist:
- Fork the repository
- Create a feature branch
- Write tests for new features
- Ensure all tests pass
- Follow the existing code style
- Submit a pull request
This project is licensed under the MIT License - see the LICENSE file for details.
- 📖 Documentation: API Reference
- 🐛 Bug Reports: GitHub Issues
- 💬 Questions: GitHub Discussions
- 📦 Releases: GitHub Releases
Designed by Sebastien Rousseau — Engineered with Euxis