Generador de Contraseñas
Las palabras de este campo reemplazan la lista de palabras predeterminada. Puede ingresar palabras en cualquier idioma.
Introducción
El Generador de Contraseñas Toollect es una herramienta de seguridad basada en navegador que crea contraseñas y frases de contraseña fuertes y criptográficamente aleatorias. Sirve a cualquier persona que necesite credenciales seguras.
Weak passwords remain the leading cause of account compromise. The Toollect Password Generator eliminates human bias from password creation by using the Web Crypto API's cryptographically secure random number generator. Every password is produced from true entropy, not predictable algorithms or human patterns.
Unlike server-based password tools that transmit your potential credentials over the network, the Toollect Password Generator operates entirely within your browser. No data is sent to any server, stored in any database, or logged in any session. This privacy-first approach ensures that your generated passwords remain known only to you.
Cómo funciona
The Password Generator operates in two distinct modes, each powered by cryptographically secure random number generation.
Modo Aleatorio
El generador construye una contraseña carácter por carácter a partir de los conjuntos de caracteres seleccionados. Cada carácter se selecciona usando crypto.getRandomValues(). Después del ensamblaje, se aplica un mezclado Fisher-Yates.
In Random mode, the generator builds a password character by character from your selected character sets:
-
Character selection pool: The generator combines your chosen sets — uppercase letters (A-Z), lowercase letters (a-z), digits (0-9), and symbols (!@#$%^&*). You may also enable the "Exclude ambiguous" option to remove characters that are easily confused (i, l, 1, L, o, 0, O).
-
Guaranteed coverage: The generator ensures at least one character from each selected set appears in the final password. This prevents passwords like "AAAAAAAA12" when you selected uppercase, lowercase, and digits — even random selection must include each type.
-
Cryptographic randomness: Each character is selected using
crypto.getRandomValues(), which draws from the operating system's entropy sources. This is the same source used by TLS/SSL and disk encryption systems. -
Fisher-Yates shuffle: After assembly, the password undergoes a unbiased Fisher-Yates shuffle to randomize character order, eliminating any positional bias from the guaranteed-coverage step.
Modo Frase de Contraseña
Utiliza la lista corta de palabras EFF #1 (1296 palabras comunes en inglés). Cada palabra aporta aproximadamente 10,3 bits de entropía. También puede proporcionar sus propias palabras.
Passphrase mode uses a curated word list rather than individual characters:
-
Word list: The built-in list is the EFF Short Word List #1 (1296 short, common English words). Each word contributes approximately 10.3 bits of entropy (log2(1296)).
-
Custom words: You may supply your own words via the custom words field. The generator uses your words instead of the default list, enabling passphrases in any language.
-
Assembly: The generator randomly selects the requested number of words, optionally capitalizes each, joins them with your chosen separator, and appends a random digit and/or symbol if configured.
Cálculo de Fortaleza
La fortaleza se mide en bits de entropía: Débil (0-29), Regular (30-49), Buena (50-69), Fuerte (70-99), Muy fuerte (100+).
Password strength is measured in bits of entropy:
- Random passwords: entropy = length × log2(charset size)
- Passphrases: entropy = word count × log2(word list size)
The strength indicator maps entropy ranges to descriptive labels: Weak (0-29 bits), Fair (30-49), Good (50-69), Strong (70-99), Very Strong (100+).
Uso
- Seleccionar modo — Aleatorio o Frase de Contraseña
- Configurar Aleatorio — Ajustar longitud, seleccionar conjuntos de caracteres
- Configurar Frase — Ajustar número de palabras, separador, opciones
- Generar — Hacer clic en Generar
- Copiar — Al portapapeles
Using the Toollect Password Generator requires no setup or registration. Follow these steps:
-
Choose your mode — Select either Random or Passphrase using the tabs at the top of the tool.
-
Random mode configuration:
- Adjust the length slider (8-128 characters)
- Check or uncheck character sets: Uppercase, Lowercase, Numbers, Symbols
- Optionally enable "Exclude ambiguous characters" to remove easily confused characters
-
Passphrase mode configuration:
- Adjust the word count slider (3-12 words)
- Select a word separator (Space, Hyphen, Underscore, Dot, or None)
- Optionally enable Capitalize, Add a random number, or Add a random symbol
- Optionally enter custom words in the text area to replace the default word list
-
Generate — Click the Generate button. A password or passphrase appears in the output area.
-
Check strength — Review the strength indicator below the password to evaluate its security level.
-
Copy your password — Click Copy to copy the password to your clipboard, then paste it into your account registration or password manager.
-
Clear to reset — Click Clear to reset the output and start over.
Tutorial
Escenario 1: Contraseña aleatoria para redes sociales
Abra el generador. Longitud 16. Active mayúsculas, minúsculas, números. Excluya ambiguos. Genere. Copie.
-
Open the Password Generator. The tool opens in Random mode by default.
-
Set the length to 16 by dragging the slider. The current value displays next to the Length label.
-
Ensure the following checkboxes are checked: A-Z (Uppercase), a-z (Lowercase), 0-9 (Numbers). Leave Symbols unchecked — many social media platforms accept alphanumeric passwords.
-
Check "Exclude ambiguous characters" to prevent confusion between similar-looking characters like
1(one) andl(lowercase L). -
Click Generate. A 16-character password appears in the output area. The strength indicator should display "Strong" or "Very Strong".
-
Click Copy to copy the password. Paste it into your social media account's password field.
-
Click Clear to reset when you are satisfied.
Escenario 2: Frase de contraseña para correo electrónico
Cambie a modo Frase. 5 palabras. Espacio como separador. Active capitalización y número. Genere.
-
Switch to Passphrase mode by clicking the Passphrase tab.
-
Set the word count to 5. A 5-word passphrase from the EFF word list provides approximately 51 bits of entropy.
-
Select "Space" as the word separator for the classic xkcd-style passphrase format.
-
Check "Capitalize each word" and "Add a random number". Leave "Add a random symbol" unchecked — most email services accept alphanumeric passwords with spaces.
-
Click Generate. A passphrase like "Plank Lunch Quilt Ivory Sunset7" appears.
-
Review the strength — it should show at least "Strong" for 5 words.
-
Click Copy and use the passphrase for your email account. The spaces and capitalization make it easier to type correctly on both desktop and mobile devices.
Consejos profesionales
-
Use frases de 6-7 palabras para la contraseña maestra: El administrador de contraseñas es la credencial más importante que gestionas. Usa el modo Frase con 6-7 palabras para una contraseña maestra segura y memorable.
-
Match password length to account sensitivity: Use 8-12 characters for low-risk accounts (forum registrations, newsletters), 14-20 characters for standard accounts (social media, shopping), and 24+ characters for high-value accounts (email, banking, password manager).
-
Combine modes for Wi-Fi passwords: Generate a random password of 20+ characters for your Wi-Fi network. Wi-Fi passwords are entered once and stored on devices, so memorability is not important — maximum entropy is.
-
Use palabras personalizadas para frases inolvidables: En modo Frase, introduce palabras de tu propia vida (nombres de mascotas, calles, hobbies) en el campo de palabras personalizadas. El generador crea una frase con palabras que ya conoces, haciéndola casi imposible de olvidar.
-
Generate multiple passwords at once: Click Generate repeatedly to produce several candidate passwords. Compare them and pick the one that is easiest for you to use while maintaining the desired strength level.
-
Use the strength indicator as a minimum threshold: Aim for at least "Strong" (70+ bits of entropy) for any password protecting sensitive data. "Very Strong" (100+ bits) is appropriate for encryption keys and master passwords.
Alternativas
| Herramienta | Mejor para | Limitaciones |
|---|---|---|
| Toollect Generador | Navegador, frases, privacidad | Internet para carga inicial |
| Gestor de contraseñas integrado | Sincronización entre dispositivos | Vinculado a ecosistema |
| Diceware manual | Entornos aislados | Requiere dados físicos |
| Built-in Password Manager (iCloud Keychain, Google, Bitwarden) | Auto-fill and sync across devices | Tied to specific ecosystem, varying password generation options |
| Command-line tools (openssl rand, pwgen) | Scripted generation in development environments | No GUI, requires terminal access, no strength visualization |
| xkcd-style method | Creating memorable passphrases manually | Relies on human randomness, which is predictable and biased |
| Online password generators | Quick generation without installation | Privacy risk — passwords are transmitted over the network |
Solución de problemas
| Problema | Causa | Solución |
|---|---|---|
| Caracteres ambiguos | Opción desactivada | Activar exclusión |
| Débil en corta | Longitud < 10 | Aumentar longitud |
| Copia no funciona | Permisos | Usar Ctrl+C |
| Passphrase uses unexpected words | Custom words field is empty, defaulting to EFF word list | The tool defaults to the English EFF list. Fill in the custom words field with your own words |
| Cannot type in the output field | The output field is read-only by design | Click Generate to create a password, then use the Copy button |
| Generated password is rejected by a website | Website has specific character restrictions | Check the website's password policy and adjust character sets accordingly. Try disabling Symbols |
| Passphrase exceeds maximum length allowed by a service | Word count or separator choices produce a very long string | Reduce word count, use "None" separator, or switch to Random mode with a shorter length |
| The tool does not work offline | The page must be loaded first while online | Load the page while connected to the internet. Once loaded, it works offline for that session |
Especificaciones técnicas
The Toollect Password Generator is engineered for security, performance, and broad compatibility.
Performance Benchmarks
| Password Length | Generation Time | Memory Usage |
|---|---|---|
| 16 characters | < 1 ms | < 1 MB |
| 64 characters | < 1 ms | < 1 MB |
| 128 characters | < 2 ms | < 1 MB |
Detalles técnicos
- Generador aleatorio:
crypto.getRandomValues()(Web Crypto API) - Lista de palabras: EFF Short Word List #1 (1296 palabras)
- Algoritmo de mezcla: Fisher-Yates
- Cálculo de fortaleza: Basado en entropía
- Umbrales: Débil 0-29, Regular 30-49, Buena 50-69, Fuerte 70-99, Muy fuerte 100+
- Clipboard API:
navigator.clipboard.writeText()with visual feedback - Event Model: Button click triggers generation; slider inputs update configuration in real-time
Compatibilidad con navegadores
| Browser | Minimum Version | Status |
|---|---|---|
| Google Chrome | 80+ | Full support |
| Mozilla Firefox | 75+ | Full support |
| Apple Safari | 13+ | Full support |
| Microsoft Edge | 80+ | Full support |
| Samsung Internet | 13+ | Full support |
| Opera | 67+ | Full support |
Privacidad y seguridad
- Zero data transmission: all password generation occurs in the browser's memory
- No cookies, localStorage, or sessionStorage used
- No analytics or tracking scripts on the tool page
- Fully functional in offline mode after initial page load
- No registration, login, or API keys required
- Uses cryptographically secure random number generation (not Math.random())
Características
- Generación de contraseñas aleatorias con longitud configurable (8-128) y conjuntos de caracteres
- Modo frase de contraseña con lista de palabras EFF para contraseñas memorables y seguras
- Soporte para palabras personalizadas en cualquier idioma
- Indicador de fortaleza en tiempo real basado en cálculo de entropía
- Generación aleatoria criptográficamente segura (crypto.getRandomValues)
- 100% procesamiento del lado del cliente sin subida de datos