ToolKit

Security

WiFi Password Generator

Generate a strong, random WiFi password instantly. WPA2/WPA3 supports up to 63 characters — use all types for maximum security. Free, browser-based, no signup.

About this wifi password generator

A WiFi password is one of the most important passwords in your home or office — it controls access to your entire network and every device on it. WPA2 and WPA3, the current wireless security standards, support passwords up to 63 characters. Unlike account passwords that need to be typed daily, a WiFi password is entered once per device, which means you can make it as long and random as possible without any usability penalty. This generator defaults to 20 characters with all character types enabled — the recommended setting for a residential or small business router. Avoid common mistakes like using your address, phone number, or a simple word. A strong WiFi password prevents unauthorized access, protects your bandwidth, and stops attackers from using your network as a vector for other attacks.

WPA2 and WPA3 password requirements

The Wi-Fi Protected Access protocols — WPA2 and WPA3 — define the rules for wireless network passwords. Both standards accept passwords between 8 and 63 characters using any printable ASCII character. WPA2 uses the PSK (Pre-Shared Key) method where the password is combined with the network name (SSID) to derive the actual encryption key through PBKDF2 with 4,096 iterations of SHA-1. WPA3 replaces this with SAE (Simultaneous Authentication of Equals), which provides stronger protection against offline dictionary attacks even if the password is relatively short. Regardless of which protocol your router uses, a longer and more random password directly increases the computational cost of any brute-force attempt. The 63-character upper limit exists because the standard encodes the password as a sequence of ASCII bytes, and 63 bytes is the maximum the protocol frame can carry.

How to change your WiFi password safely

Changing your WiFi password is straightforward but requires a few precautions to avoid locking yourself out. First, connect to your router via Ethernet cable or note the current WiFi password before changing it. Access your router admin panel — usually at 192.168.0.1 or 192.168.1.1 — and navigate to the wireless security section. Generate a new password using this tool, paste it into the router settings, and save. Then reconnect each device using the new password. Start with the device you are currently using to confirm the new password works before updating phones, tablets, smart home devices, and guest devices. For smart home devices (thermostats, cameras, speakers), you may need to run their setup process again. Keep the new password in your password manager — not on a sticky note attached to the router.

Common WiFi password mistakes to avoid

The most common WiFi password mistake is using personally identifiable information: your street address, apartment number, phone number, or family name followed by a year. Wardrivers — people who scan for WiFi networks from their car — specifically target networks with SSIDs like "SmithFamily" and try predictable passwords first. The second mistake is using the default password printed on the router. While these look random, manufacturers often generate them from limited character sets or patterns that have been reverse-engineered. The third mistake is sharing your main WiFi password with guests instead of setting up a guest network. Most modern routers support a separate guest network with its own password and isolated access — guests get internet but cannot reach your local devices, printers, or file shares.

WiFi password security by the numbers

The strength of a WiFi password depends entirely on its length and randomness. An 8-character password using only lowercase letters has roughly 26^8 (about 209 billion) possible combinations — a modern GPU can test these in under an hour against a captured WPA2 handshake. Increase to 12 characters with mixed types and the combinations jump to 95^12 (about 5.4 × 10^23), requiring thousands of years to exhaust. At 20 characters with all types, you reach approximately 131 bits of entropy — a number so large that brute force is not a viable attack vector with any known or foreseeable technology. The key takeaway: for WiFi passwords, length matters more than complexity. A 20-character password using only letters and numbers is stronger than a 10-character password using every symbol on the keyboard.

Setting up a guest WiFi network

A guest network is a separate WiFi access point that shares your internet connection but isolates guests from your primary network. Visitors can browse the web and check email without accessing your computers, printers, NAS drives, or smart home devices. Most routers manufactured after 2015 support guest networks — check your router admin panel under "Guest Network" or "Guest Access." Set a different password for the guest network and change it periodically, especially after hosting events. Some routers allow you to set bandwidth limits on the guest network to prevent guests from consuming all your bandwidth. For businesses, a guest network is essential — it satisfies the common requirement of providing customer WiFi while keeping business systems on an isolated network segment.

Related presets

20 Character Password GeneratorBank Account Password GeneratorPassword Generator Without Special CharactersPassword Generator for Testing & Development

FAQ

Common questions

How long should a WiFi password be?

WPA2 and WPA3 support 8–63 characters. Use at least 16 characters for a home network and 20+ for a business network. Longer is always better — you only need to type it once per device.

What characters are allowed in a WiFi password?

WPA2/WPA3 passwords can include uppercase letters, lowercase letters, digits, and most special characters. Avoid characters that may cause issues on some devices: single quotes, double quotes, and backslashes.

Do I need to change my WiFi password regularly?

Only if you suspect a breach — for example, after a guest has used it and you want to revoke access, or after a device has been compromised. Unlike account passwords, WiFi passwords do not need routine rotation.

What is the difference between WPA2 and WPA3?

WPA3 is the newer standard with stronger encryption (SAE instead of PSK) and protection against brute-force attacks. If your router supports WPA3, enable it. If not, WPA2-AES is still considered secure with a strong password.

Can my neighbors crack my WiFi password?

A 16+ character random password with mixed character types would take billions of years to crack with current hardware. The real risk is password reuse or easy-to-guess passwords — not brute force against a strong random one.

Should I use the same WiFi password for 2.4GHz and 5GHz bands?

You can, but using separate passwords adds a layer of control. If you share the 2.4GHz password with guests, your 5GHz network remains isolated. Alternatively, set up a dedicated guest network on most modern routers.

Is hiding my SSID a good security measure?

Hiding your network name (SSID) provides negligible security — any WiFi scanning tool can detect hidden networks. A strong random password is far more effective than a hidden SSID. Focus your effort on password strength and WPA3 if your router supports it.

What is the best WiFi password for a small business?

Use at least 20 characters with all character types. Set up a separate guest network for customers and visitors. For employees, consider WPA3-Enterprise with individual credentials per person rather than a shared password.

More in Security

Hash Generator
SHA-1, SHA-256, SHA-384, SHA-512 hashes
Live
Bcrypt Generator
Hash and verify passwords with bcrypt
Live
JWT Decoder
Decode and inspect JWT tokens
Live
Password Strength Checker
Analyse password strength and entropy
Live