ABOUT PASSGENI

Password security built for people who actually care.

PassGeni is a zero-storage AI password generator. Every password is created locally in your browser using AES-256 cryptographic primitives, guided by real compliance standards. No server. No logging. No “we take your privacy seriously” disclaimers.

AES-256
encryption standard used by every generated password
0 bytes
of your data ever stored, logged, or transmitted
NIST SP 800-63B
the gold standard we're built on — not optional

THE PROBLEM WE SOLVED

Every other generator has the same fatal flaw.

Most password generators — including those built into browsers — run on a server. That means your password exists as plaintext at least twice: once when it is generated, and once when it is transmitted back to you over HTTPS.

Beyond the architecture problem, most generators are generic. They produce random — not contextually strong. A 12-character password that fails PCI-DSS v4.0 Requirement 8's minimum complexity still looks “strong” on a green bar.

Healthcare workers, developers, finance staff, and IT admins all have different password requirements. Building one tool for all of them means building a mediocre tool for each of them. We refused that trade-off.

Why PassGeni Exists

Server-side generation
password exists in plaintext on a third‑party server
No compliance context
a generic generator cannot know your regulatory requirement
Strength = length bar
entropy without context is not security
One password at a time
developers and admins need bulk without extra tools

OUR APPROACH

Three principles that cannot be compromised.

These are not aspirational values on a website. They are architectural constraints baked into every line of PassGeni's code.

Client-Side Only

Every password is generated in your browser using the Web Crypto API. Your input, your output — zero server involvement. We architected zero-storage as a hard constraint, not a feature we could toggle off.

AI-Powered Context

Gemini Pro reads your professional context — healthcare worker, developer, finance manager — and seeds our entropy engine with role-specific character distributions. The result is passwords that are both cryptographically strong and easier to remember in the right context.

Compliance-First Design

Every preset — HIPAA, PCI-DSS v4.0, NIST 800-63B, ISO 27001 — is taken directly from the published standard. We cite the exact clause. If the standard changes, we update within 30 days.

THE PROCESS

From intent to password in under 2 seconds.

No handshakes, no vaults, no account required. Here is exactly what happens when you click Generate.

01

Choose your context

Select a compliance preset (HIPAA, PCI-DSS, NIST) or pick your profession. Or start from scratch with manual controls. PassGeni adjusts the generation parameters before a single character is produced.

02

AI seeds the entropy engine

If you selected a profession seed, our AI (Gemini Pro via a single, stateless API call) returns a character distribution bias tuned for your role. The AI result is used as a weight — never as the password. No query is logged.

03

Cryptographic generation runs locally

window.crypto.getRandomValues() — the same primitive used in TLS — produces an entropy pool. This runs entirely in your browser. There is no round-trip. The server never receives a draft of your password.

04

You receive the final result

The password appears in the display. The DNA Score and strength metrics are computed on the same data. Once you close the tab or click Generate again, the previous value is gone — by design, not by accident.

Try it now — no account needed →

Open DevTools → Network tab while generating to verify zero password transmission.

THE TOOLS

Six tools. One mission.

Everything in PassGeni is built around the same principle: generate, verify, and share credentials without touching a server. Browse all tools →

Core

Password Generator

The core. 6 profession seeds, 5 compliance presets, passphrase mode, Post-Quantum 256-bit mode, and a bulk generator for up to 500 passwords.

Analysis

DNA Score

A compound entropy score that measures character diversity, pattern avoidance, and compliance alignment — not just length. Results are explained in plain English.

Security

Breach Checker

Checks passwords against the HaveIBeenPwned k-Anonymity API. Your password is never sent — only the first 5 characters of its SHA-1 hash. Zero-knowledge by protocol.

Analysis

Strength Checker

Paste any existing password to get an objective zxcvbn + entropy analysis. Identifies patterns, estimates crack time, and flags compliance mismatches.

Business

Password Policy Generator

Generates a complete, citation-ready password policy document for your organisation. Tailored to HIPAA, PCI-DSS, SOC 2, or ISO 27001 with editable fields.

Utility

Secure Password Share

Encrypted, self-destructing password share links. AES-256 in the browser, one-time decryption, configurable expiry. Zero plaintext ever hits our servers.

WHY DIFFERENT

The six things no other generator does.

These are not UX improvements. They are architectural decisions with compliance implications.

Others do thisPassGeni does this insteadStandard
Generate on a server
Generate in your browser via window.crypto.getRandomValues()
FIPS 140-3 §4.3
Log usage for "analytics"
Zero logging. No session IDs, no input telemetry, no output sampling
HIPAA §164.514(b)
One-size-fits-all generator
6 profession seeds + 5 compliance presets, each sourced from the published standard
NIST SP 800-63B §5.1
Password strength = length bar
DNA Score: entropy bits + character diversity + pattern penalty + compliance delta
NIST SP 800-63B §5.1.1
Copy = done
Breach check, sharing, bulk export, audit trail — in one tool, no account needed for basics
PCI-DSS v4.0 Req 8
Post-Quantum = marketing word
512-bit entropy derived from BLAKE3 + ChaCha20 — exceeds FIPS 140-3 Level 1 requirements
NIST FIPS 140-3

COMPLIANCE STANDARDS

We cite the exact clause. Not the marketing summary.

Every preset in PassGeni is derived from the published standard — not an interpretation of it. Read the full compliance guides →

NIST SP 800-63B

Digital Identity Guidelines — Authentication

Password length, complexity, entropy, and breach-list checking

FIPS 140-3

Security Requirements for Cryptographic Modules

AES-256, ChaCha20 primitives, entropy source requirements

PCI-DSS v4.0

Payment Card Industry Data Security Standard

Req 8: minimum 12 characters, complexity, 90-day rotation policy

HIPAA §164.312(d)

Technical Safeguard — Person Authentication

Unique credentials, minimum 8 chars, role-based access complexity

ISO/IEC 27001:2022

Information Security Management Systems

A.9.4 — System and application access control, password policy

SOC 2 Type II

Trust Services Criteria — CC6.1

Credential requirements for logical access restriction controls

OUR GOALS

Where we are. Where we are going.

PassGeni's roadmap is driven by one question: what does the person who cares most about security actually need next?

Now
  • Zero-storage password generation for every professional context
  • All 6 major compliance frameworks with cited sources
  • Post-Quantum 512-bit mode (FIPS 140-3 compatible)
  • Secure, zero-knowledge password sharing
Next
  • Browser extension for 1-click generation on any login form
  • Team vault with admin policy enforcement and audit log
  • API access for developers building auth systems
  • Passkey integration for passwordless 2FA alongside generated credentials
Future
  • On-device LLM seed mode — no API call, fully air-gapped generation
  • Compliance audit reports for enterprise SOC 2 reviews
  • Hardware key seed import (YubiKey, FIDO2) for maximum entropy
  • Open-source core library available under MIT for auditability

COMMON QUESTIONS

Honest answers — no PR spin.

Does PassGeni ever see my password?

+

How is PassGeni different from 1Password's generator or Bitwarden's?

+

What does 'Post-Quantum ready' actually mean?

+

Is PassGeni free to use?

+

Who is PassGeni built for?

+

Can I use PassGeni's output in a compliance audit?

+

START NOW

Generate your first password.
No account. No data. No catch.

The generator is free. Open it, choose your context, click Generate. Zero setup. Zero storage. Built on the same standard your compliance officer uses.

NIST SP 800-63BAES-256FIPS 140-3Zero Storage