Pronounceable Password Generator

Secure passwords that are easier to type and say

Generate pronounceable passwords using alternating consonant-vowel syllables, so they are easier to remember, say, and type while staying random. Built on the Web Crypto API with optional digits and capitals, all in your browser. It runs free in your browser on Gera Tools, with nothing uploaded.

Last updated Source: Gera Tools

Why make a password pronounceable?

Alternating consonants and vowels form syllables your brain reads as fake words, which are far easier to type accurately and to read aloud over the phone than random character soup. The trade-off is a smaller character space per position, which you offset with extra length.

A pronounceable password trades a little raw randomness for a lot of usability. Instead of an unreadable jumble like xK9#qZ!2, it produces fake-word strings like tuvabo-ke that your eyes and fingers handle far more reliably — useful when a password must occasionally be typed by hand or read aloud. This generator builds them from alternating consonant-vowel syllables using the Web Crypto API, with optional digits and capitals so the result still satisfies common policies. Everything runs in your browser.

How it works

The generator assembles syllables and then decorates them to meet policy needs:

  1. For each syllable, pick a random consonant then a random vowel from curated sets (the consonant set drops awkward letters like q and x to keep syllables sayable).
  2. Repeat for the number of syllables you choose, concatenating them into a fake word.
  3. Optionally append digits and capitalise a random subset of letters to satisfy rules that demand numbers and uppercase.

Every choice — which consonant, which vowel, which letters to capitalise, which digits to append — uses crypto.getRandomValues with rejection sampling so the selection is unbiased and unpredictable. The tool shows an entropy estimate so you can judge strength honestly.

Example outputs

With 5 syllables, digits on, and capitalisation on, the generator might produce:

  • TuvaboKe83
  • MolirepaSa17
  • FekulaRiVo42

These read like invented words — your brain treats them as something you can say, which dramatically reduces typos when entering the password on an unfamiliar keyboard or dictating it.

With 4 syllables and a separator:

  • tu-va-bo-ke
  • mo-li-re-pa

These are even more typeable and still far more secure than any dictionary word or common substitution like P@ssw0rd.

Entropy per syllable and when length matters

A consonant drawn from roughly 18 usable letters and a vowel drawn from 5 gives about log2(18) + log2(5) ≈ 6.5 bits per syllable. That is meaningfully lower than a fully random character from the full printable ASCII set (~6.6 bits per character, but without the structure constraint).

To compensate, use more syllables rather than fewer. The entropy scales well:

SyllablesApprox. base entropyWith digits and capitals
4~26 bits~33+ bits
5~32 bits~39+ bits
6~39 bits~46+ bits
8~52 bits~59+ bits

For a password manager entry at a mid-value site, 5–6 syllables is a solid choice. For an email account or anything you cannot protect with multi-factor authentication, use 7–8.

When to choose this over a passphrase or random password

Choose pronounceable when you need to type the password on a device you do not own (a hotel kiosk, a friend’s computer, a work machine where paste is blocked) and must do so accurately by reading the password from your phone screen. The syllable structure eliminates most transcription errors.

Choose a passphrase (word-based) when memorability matters more than typability — passphrases are typically easier to remember after a single reading.

Choose fully random when the password lives entirely in a password manager and is always copy-pasted. There is no usability reason to constrain the character space if you never type it manually.

Policy compliance

Most sites require uppercase, lowercase, and a digit. The capitalise and digits options in this tool add those without breaking the pronounceability pattern — one or two letters are randomly capitalised within the word, and digits are appended at the end where they do not interrupt the flow of the syllables when reading.

No password generated here leaves your browser — it is created locally and held only until you copy it.