Força da Senha
Verificar a força da sua senha
Como usar Força da Senha
- 1Digite a senha no campo de entrada
- 2Revise o medidor de força em tempo real
- 3Leia as recomendações específicas
Sobre Força da Senha
O verificador de força de senha analisa senhas e avalia o nível de segurança com base em comprimento, complexidade e padrões comuns. Nenhum dado é enviado para servidores.
Principais recursos de Força da Senha
- Real-time strength analysis as you type
- Strength rating: Weak, Fair, Good, or Strong
- Estimated crack time displayed in human-readable format
- Specific feedback on what makes the password weak
- Detects dictionary words, keyboard patterns, and common substitutions
- Character class analysis: lowercase, uppercase, numbers, symbols
- Works entirely in-browser — password is never transmitted
- Visual strength indicator for instant at-a-glance assessment
Exemplos
Check a commonly used weak password
See why passwords that seem complex are actually weak due to predictable patterns.
Entrada
P@ssw0rd
Saída
Strength: Weak — common pattern detected, crack time: less than 1 second
Check a strong random passphrase
Verify that a longer, random passphrase achieves a high strength score.
Entrada
correct-horse-battery-staple-42
Saída
Strength: Strong — estimated crack time: centuries
Casos de uso comuns
- Checking passwords before setting them for personal accounts
- Verifying that organization-wide passwords meet minimum security standards
- Teaching employees about password security in security awareness training
- Testing passwords generated by password managers before adoption
- Auditing existing passwords to identify those that need to be changed
- Demonstrating the difference between length-based and entropy-based strength to security audiences
Solução de problemas
A long password still scores as Weak
Solução
Length alone is not enough. Passwords consisting of dictionary words, repeated characters, or predictable patterns (like 123456789) score poorly regardless of length. Add uppercase letters, numbers, and symbols.
Adding symbols like @ for a does not improve the score much
Solução
Common substitutions (a→@, e→3, o→0) are well-known to attackers and are factored out in modern strength analysis. Use truly random symbols in unpredictable positions instead.
Score seems too strict for my organization's policy
Solução
Strength checkers use different scoring models. This tool uses entropy-based scoring which is more strict than simple length+character-type checks. Consider using a password manager to generate and store strong passwords.
Perguntas frequentes
Is my password stored or sent anywhere?
No. Analysis happens entirely in your browser using JavaScript. Your password is never transmitted to any server, not logged, and not stored in any form.
What makes a password strong?
Strong passwords are long (12+ characters), contain a mix of uppercase, lowercase, numbers, and symbols, are not based on dictionary words or personal information, and do not use predictable patterns or keyboard sequences.
Why does my complex-looking password still score low?
Common substitutions (@ for a, 3 for e) and dictionary words with added numbers at the end are well-known attack patterns. The checker identifies these patterns and reduces the score accordingly. Truly random passwords score highest.
What does "crack time" mean?
Crack time is an estimate of how long a modern computer or GPU cluster would take to guess the password through a brute-force attack. It assumes an offline attack using current hardware. Online attacks (per website) are much slower due to rate limiting.
Is a 12-character password long enough?
12 characters with full character variety (upper, lower, numbers, symbols) is considered strong against current brute-force capabilities. 16+ characters is recommended for sensitive accounts. Length is one of the most effective ways to increase password strength.
Should I use a passphrase instead of a password?
Yes, passphrases (multiple random words like "correct-horse-battery-staple") can be both strong and memorable. A 4–5 word passphrase from a large dictionary typically achieves high entropy and is easier to remember than random character strings.
How does this differ from the password strength meters on websites?
Many website strength meters use simple rules (length, character types) and give misleadingly high scores to weak passwords like "Password1!". This tool uses entropy-based analysis that accounts for common patterns and dictionary matches.
What should I do if my password scores weak?
Use the Password Generator tool to create a strong, random password. Alternatively, create a passphrase of 4+ random unrelated words. Enable two-factor authentication wherever possible as a complementary security layer.