Random String Generator

Lowercase letters (a–z), uppercase letters (A–Z), digits (0–9), symbols (!@#$%^&*), alphanumeric, URL-safe (Base64URL characters), hex (0–9, a–f), and custom character sets. Combine sets to match your exact security or format requirements.

Yes. This tool uses crypto.getRandomValues (CSPRNG) for all generation — not Math.random(). A 32-character alphanumeric string has ~190 bits of entropy, exceeding the 128-bit standard for API tokens. For JWT secrets or signing keys, use the dedicated key generator tools.

Minimum 16 characters for session tokens (most apps). 32 characters for API keys (128+ bits with alphanumeric charset). 64 characters for high-security tokens or encryption key material. Longer is always safer and costs nothing in storage.