Skip to content
BEAD

Password Generator

Strong, customizable passwords generated with crypto-secure randomness.

Weak

🔒 Generated with window.crypto in your browser. Never transmitted.

</>Use this tool programmaticallycurl · JavaScript · MCP

Same tool, callable from any HTTP client or from Claude (via MCP). Anonymous: 100 req/day per IP. Sign up for 1,000 req/day.

curl
curl https://api.b-e-a-d.com/tools/password-generator/run \
  -H "Content-Type: application/json" \
  -d '{
  "length": 20,
  "useLower": true,
  "useUpper": true,
  "useDigits": true,
  "useSymbols": true,
  "count": 1
}'
JavaScript (fetch)
const res = await fetch("https://api.b-e-a-d.com/tools/password-generator/run", {
  method: "POST",
  headers: { "Content-Type": "application/json" },
  body: JSON.stringify({
  "length": 20,
  "useLower": true,
  "useUpper": true,
  "useDigits": true,
  "useSymbols": true,
  "count": 1
}),
});
const data = await res.json();
console.log(data.result);
MCP (Claude Desktop / Claude Code)
# In Claude Desktop / Claude Code, add to your MCP config:
{
  "mcpServers": {
    "bead": {
      "command": "npx",
      "args": ["-y", "mcp-remote", "https://mcp.b-e-a-d.com"]
    }
  }
}

# Then ask Claude to call:
mcp__bead__bead_password_generator

Full reference: developer docs · OpenAPI spec

About this tool

Uses window.crypto.getRandomValues for cryptographically secure randomness. Passwords are never sent over the network.

Frequently asked

Is the randomness really random?

Yes — passwords are generated with crypto.getRandomValues(), the same cryptographic RNG that backs SSL, sessions, and SubtleCrypto. No external service is involved and no password is ever stored.

How long should my password be?

For most accounts, 16 characters of mixed alphanumeric + symbols is overkill in a good way. For a password manager master password, lean toward 20+ characters or 6+ words from a wordlist (a passphrase).

Why include symbols?

Symbols don't help much against a random brute-force search if you're already long enough, but they defeat naive dictionary attacks. The honest answer: length matters far more than symbol count.

You might also like