QuickUse Generator

WiFi Password Generator

Strong WiFi passwords with native QR code login and a printable poster — generated entirely in your browser.

Editorial guide

About this generator

An honest technical read on what is happening behind the Generate button.

Your home network is the single point of failure for every connected device — phone, laptop, smart TV, doorbell, baby monitor. A weak WiFi password puts all of that at risk. The generator above runs three trade-offs so you can pick the right one without doing the math by hand.

The three WiFi password modes

Secure is the default: five common words from a curated easy-to-dictate list, joined with a hyphen, and a trailing digit. About 61 bits of entropy with a 3,000-word list — strong enough for any home or small office, easy enough to read aloud to a guest. Strong random emits twenty characters from the full ASCII set with ambiguous glyphs filtered out; ~130 bits, designed for password managers and QR scans, not for typing manually. Quick share is the party mode: three curated words, ~35 bits, fine for the gardener's phone, not for bank-level security. The UI flags the trade-off explicitly so nobody confuses the two.

WPA2 vs WPA3 vs WEP — what to pick

WEP can be cracked in under a minute by a modern laptop. The Pychkine–Tews–Weinmann (PTW) attack published in 2007 reduced the number of intercepted packets needed to break a WEP key from millions to 20,000–50,000 — combined with an ARP-replay flood the whole break takes 60 seconds, start to finish. Don't ship WEP anywhere unless your router is genuinely too old to do anything else. WPA2-PSK has been the industry standard since 2004 (IEEE 802.11i). It is still secure when the password is strong — but the KRACK disclosure in 2017 (Vanhoef & Piessens, ACM CCS '17) showed why the handshake itself matters. KRACK forces nonce reuse in step 3 of the 4-way handshake; firmware patches are now ubiquitous, but only on devices that received updates. WPA3 arrived in 2018 with the SAE (Simultaneous Authentication of Equals) handshake — the dragonfly key exchange — which provides forward secrecy and resistance to offline dictionary attacks. The Dragonblood side-channel flaws (CVE-2019-9494, Vanhoef & Ronen 2019) were patched in WPA3 revisions. Use WPA3 if your router supports it; otherwise WPA2 with a strong password is fine.

How the QR-code login works

The Wi-Fi QR format is a small text payload — WIFI:T:WPA;S:Network;P:password;; — that iOS 11+ and Android 10+ read natively in the camera app. Tap the notification, the phone joins the network. That's the entire spec. Print it on a card by the door, stick it inside the menu at the café, paste it into the Airbnb welcome book.

Printing the poster

The poster button opens an A4 layout with the QR code at the top, network name and password below it, and a one-line "scan to connect" instruction. The window triggers window.print() automatically. We test the dialog opens on Chrome, Firefox and Safari — and Mobile Safari on iOS — so the poster prints regardless of which device generated it.

WiFi password mistakes

The classic failure mode is the factory default. Many ISPs ship routers with passwords derived from the SSID or serial number; tools that recover those defaults have been public for over a decade. The second failure mode is reusing the email password as the WiFi password — anyone who guesses one walks into both. The third is the family WhatsApp screenshot. If the password is in a chat group, every contact's contacts have a path to it. And the fourth, which nobody mentions: change the password when staff turnover happens. The cleaner you hired last year still has it cached.

Frequently asked questions

How often should I change my WiFi password?

When you change ISP, when staff with access leave, or when you suspect compromise. A calendar-based schedule doesn’t help — strong passwords don’t age out.

Can someone hack my WiFi from outside?

With WPA2 or WPA3 and a strong password, no — not without physical proximity and a multi-day attack on captured handshakes. Without those, yes, trivially.

Should I hide my SSID?

Security theatre. Any tool that can read encrypted WiFi traffic can recover a hidden SSID. Hide only if you want to clean up the neighbour’s network list.

My router only supports WPA2 — am I safe?

Yes, with a strong password. KRACK has been patched in every shipping firmware for years. Audit when your router’s last firmware update was — if 2019 or earlier, replace it.

What length should I aim for?

WPA2/WPA3 accept 8–63 characters for the passphrase. 14+ from a full charset comfortably exceeds the 64-bit threshold where offline cracking becomes infeasible for a one-rig attacker over a year. Memorable mode uses curated dictionary words and reaches that bar at 4–5 words.

Is the QR-code WiFi format safe to print on a poster?

For guest networks, yes — that’s a normal use case. The QR encodes SSID + password + auth type in plain text, so anyone with line-of-sight to the poster can scan and join. Treat the QR as if you wrote the password on the wall. For staff/private networks, share the QR privately instead.

Does the page see my password?

No. Generation happens entirely in your browser via `crypto.getRandomValues()`. We don’t ship anything to a server — you can confirm by opening the network tab and clicking Regenerate (zero requests fire).