Random PIN Generator
Generate cryptographically secure random PINs for bank cards, door locks, phone unlock codes, and two-factor authentication. All PINs are generated locally in your browser.
Password Generator
Generate strong, cryptographically secure random passwords.
How it works
- Passwords are generated using the
crypto.getRandomValues()Web Crypto API for cryptographic randomness. - Everything runs in your browser — no passwords are sent over the network.
- Strength is estimated from entropy (password length × log₂ of character pool size).
PIN security by length
A 4-digit PIN has 10,000 possible combinations — easily brute-forced but standard for bank cards (which have attempt limits). A 6-digit PIN has 1,000,000 combinations — used by most 2FA apps. An 8-digit PIN has 100,000,000 combinations. Always rely on attempt limits and lockouts in addition to PIN length.
PINs to avoid
Avoid sequential PINs (1234, 4321), repeated digits (0000, 1111), dates (birth year, anniversary), and common patterns (2580 — middle column on a keypad). Researchers found that just 20 common PINs account for 27% of all 4-digit PINs in use.
Frequently Asked Questions
Is a 4-digit PIN secure?
On its own, no — 10,000 combinations can be brute-forced quickly. But systems using 4-digit PINs (bank cards, phones) add lockouts after failed attempts, making the PIN effective. For unrestricted systems, use 6+ digits.
What is the most common PIN?
1234 is the most commonly used 4-digit PIN, followed by 1111, 0000, and 1212. These should always be avoided. A randomly generated PIN avoids these predictable patterns.