🔐 PWDGenerator — Secure Password Generator (Client Guide)

Entropy-first, quantum-safe design philosophy

This guide explains how clients should use PWDGenerator, our high-security password generator that uses Windows’ native CSPRNG (BCryptGenRandom) and produces UTF-8 passwords with customizable character sets.

🚀 1. What PWDGenerator Does

PWDGenerator creates cryptographically strong passwords, combining:

  • 🧪 True CSPRNG randomness (BCryptGenRandom)

  • 🔣 Customizable character classes

  • 🧩 Guaranteed inclusion of each selected character category

  • 🔀 Secure Fisher-Yates shuffle

  • 🌍 UTF-8 accented characters support

Perfect for:

  • Account creation

  • Master passwords

  • Key generation

  • Enterprise credential policies

🔤 2. Available Character Classes

Flag Meaning Example
-L Uppercase letters A–Z
-l Lowercase letters a–z
-n Digits 0–9
-a Accented UTF-8 letters á é î õ ü Ç Ñ
-e Extended symbols ! @ # $ % ^ & * ( ) …
-z N Length Number of characters

If the user does not specify any flags, the generator defaults to:
✔ uppercase + lowercase + digits + symbols.

📦 3. Basic Usage Examples

Generate a 16-character password (default mix)

 
PWDGenerator.exe

Generate a 44-character password (full entropy)

 
PWDGenerator.exe -Llne -z44

Only uppercase + digits, length 20

 
PWDGenerator.exe -Ln -z20

Accented-only 10-character passphrase

 
PWDGenerator.exe -a -z10

🛠️ 4. How the Randomness Works

Your client may want assurance about security. Here is the breakdown:

  • ✔ Random values generated via BCryptGenRandom, the highest-security PRNG available in Windows

  • ✔ No bias: modulo correction is used

  • ✔ UTF-8 safe

  • ✔ Cryptographically correct entropy per selection

  • ✔ Each selected class contributes at least 1 guaranteed character

  • ✔ Final output shuffled with secure Fisher–Yates using secure RNG

In short:
Passwords are unpredictable, uniform, and resistant to both classical and quantum preimage attacks.

🧭 5. Client Workflow

Step 1 — Choose character classes

Based on company policy or application needs.

Step 2 — Choose length

Minimum recommended:

  • Normal security → 16+

  • Admin accounts → 32+

  • Cryptographic master keys → 44–64

Step 3 — Run the generator

Use the flags described above.

Step 4 — Copy the generated password safely

Never store in plain text.

Step 5 — Store using a hardened vault

Example: PQVault or enterprise-approved password manager.

🧨 6. Password Policy Recommendations

For your clients, the recommended high-security settings:

🔒 Ultimate-security preset

 
PWDGenerator.exe -Llne -z44

  • Post-quantum safe

  • Large entropy surface

  • UTF-8 + symbols + digits

  • Enterprise-grade randomness

🛡️ Balanced preset

 
PWDGenerator.exe -Lln -z24

🌍 Multilingual preset (UTF-8 included)

 
PWDGenerator.exe -Llae -z32

📝 7. Example Outputs

Here are realistic samples (not reused):

  • Ïg4¡ÁkT{r2fNÓ9à*ÜVyqP7

  • Aü%gQm4zN#JçH12Bxô!K

  • L8àkå9CüfÝ7Gæw!T3@Dd

Each one contains:

  • Mixed character classes

  • Uniform randomness

  • UTF-8 preserved

🛡️ 8. Security Notes for Clients

  • Never reuse passwords across systems

  • Never email passwords

  • Never store passwords unencrypted

  • Use PQVault or enterprise cryptographic vaults

  • Prefer lengths ≥ 32 if used as encryption keys

🎯 9. Quick Summary for Customers

  • ✔ You choose character classes

  • ✔ You choose length

  • ✔ PWDGenerator produces a secure password

  • ✔ Every selected category is guaranteed to appear

  • ✔ Output is shuffled & unbiased

  • ✔ Safe for enterprise use and cryptographic workflows