Strong password examples for every length requirement β from 6-character minimums to 15+ character fortress passwords. Find examples, compare strength ratings, and generate your own.
Every service has different password length requirements β some allow as few as 6 characters, while others demand 8, 10, or more. But meeting the minimum is not the same as being secure. This guide provides password examples by length, shows you exactly how long each takes to crack, and helps you choose the right length for every account.
Password length is the single most important factor in password security. Here's why:
Length beats complexity every time. A 16-character lowercase-only password is stronger than an 8-character password with every character type. But combining length and complexity gives you the best protection.
These estimates assume a brute-force attack using modern hardware capable of 100 billion guesses per second against a properly hashed password, with all four character types (95 possible characters per position):
| Password Length | Possible Combinations | Time to Crack | Security Rating |
|---|---|---|---|
| 6 characters | 735 billion | Seconds | Very Weak |
| 8 characters | 6.6 quadrillion | Hours to days | Weak |
| 10 characters | 60 quintillion | Months to years | Moderate |
| 12 characters | 540 sextillion | Thousands of years | Strong |
| 14 characters | 4.9 octillion | Millions of years | Very Strong |
| 15 characters | 463 octillion | Tens of millions of years | Very Strong |
| 20 characters | 3.6 x 1039 | Trillions of years | Fortress |
These times assume truly random passwords. Dictionary words, patterns, or personal information can be cracked far faster regardless of length.
Some older services and PINs still only require 6-character passwords. These meet the minimum but provide minimal security. Do not use these for important accounts.
| 6-Character Example | Character Types | Strength |
|---|---|---|
Kp7!mW | Upper, lower, number, symbol | Very Weak |
Rv2@nQ | Upper, lower, number, symbol | Very Weak |
Jw5#tL | Upper, lower, number, symbol | Very Weak |
Bx4&mH | Upper, lower, number, symbol | Very Weak |
Eight characters is the most common minimum requirement across services like Apple ID, Google, Facebook, and most banking apps. Here are strong 8-character password examples that maximise security within this length constraint.
| 8-Character Example | Character Types | Strength |
|---|---|---|
Tn7!qR3x | Upper, lower, number, symbol | Minimum |
Bp4@wK8f | Upper, lower, number, symbol | Minimum |
Hy6#mJ2v | Upper, lower, number, symbol | Minimum |
Wz9&cL5n | Upper, lower, number, symbol | Minimum |
Fx3$rN7q | Upper, lower, number, symbol | Minimum |
Mv8!pT2k | Upper, lower, number, symbol | Minimum |
While these 8-character password examples are far better than common passwords like Password1, they can still be cracked within hours to days by determined attackers. If your service allows longer passwords, always go longer. Use our password strength checker to test yours.
NordPass generates strong passwords of any length and remembers them all for you. One master password, every device, every account.
Get NordPass with 50% discount βSome links on this page are affiliate links. We may earn a commission if you make a purchase, at no extra cost to you.
Ten-character passwords offer a meaningful step up from the 8-character minimum. Some services, particularly banking and enterprise platforms, require 10 characters as a minimum.
| 10-Character Example | Character Types | Strength |
|---|---|---|
Vp7#kTw9!L | Upper, lower, number, symbol | Moderate |
Rx4$nHb8@W | Upper, lower, number, symbol | Moderate |
Jm5!cYp2&K | Upper, lower, number, symbol | Moderate |
Qw8#fLn3!X | Upper, lower, number, symbol | Moderate |
Gt6@zNr4$H | Upper, lower, number, symbol | Moderate |
Dk2&mFx7#P | Upper, lower, number, symbol | Moderate |
At 10 characters, brute-force cracking takes months to years. This is acceptable for low-risk accounts but not sufficient for email, banking, or your primary Apple/Google account.
Twelve characters is where passwords start becoming genuinely strong. Many security professionals consider 12 characters the new minimum for any important account.
| 12-Character Example | Character Types | Strength |
|---|---|---|
Vp7#kTw9!Lm2 | Upper, lower, number, symbol | Strong |
Rx4$nHb8@Wz3 | Upper, lower, number, symbol | Strong |
Nc6@rKp4*Vz8 | Upper, lower, number, symbol | Strong |
Hy8#tJw5&Bm9 | Upper, lower, number, symbol | Strong |
Wq3!nPx7@Rv2 | Upper, lower, number, symbol | Strong |
Sf1$gMz6#Kt4 | Upper, lower, number, symbol | Strong |
A random 12-character password with mixed character types would take thousands of years to brute-force. This is a solid choice for most personal accounts. For your most critical accounts (email, banking, Apple ID), consider going to 16+.
Fourteen-character passwords provide very strong security suitable for important accounts like email, cloud storage, and social media.
| 14-Character Example | Character Types | Strength |
|---|---|---|
Jm5!cYp2&Kv7rT | Upper, lower, number, symbol | Very Strong |
Bk8*jHv3!wRt6L | Upper, lower, number, symbol | Very Strong |
Gz4!xNw3@Hp8$C | Upper, lower, number, symbol | Very Strong |
Dx2$mFv7#Jt5@L | Upper, lower, number, symbol | Very Strong |
Qn9&rWk6!Yp3#F | Upper, lower, number, symbol | Very Strong |
Xt7@hBz4$Mc8!N | Upper, lower, number, symbol | Very Strong |
At 14 characters, a brute-force attack would take millions of years. 14-character passwords are an excellent choice for email accounts, cloud storage, and financial services.
Some enterprise services and security-conscious platforms specifically require 15-character passwords. Here are examples that exceed all common requirements.
| 15-Character Example | Character Types | Strength |
|---|---|---|
Qw8#fLn3!Xz6@Gp | Upper, lower, number, symbol | Very Strong |
Wq3!nPx7@Rv2$kM | Upper, lower, number, symbol | Very Strong |
Hy8#tJw5&Bm9!fL | Upper, lower, number, symbol | Very Strong |
Nc6@rKp4*Vz8!wQ | Upper, lower, number, symbol | Very Strong |
Fk3!xNv7@Rq2$wM | Upper, lower, number, symbol | Very Strong |
Gz8#pLw5&Jm9!tR | Upper, lower, number, symbol | Very Strong |
A random 15-character password is effectively uncrackable through brute force. The only realistic threats are phishing, keylogging, or data breaches β which is why you should never reuse passwords and always store them in a password manager.
For maximum security β banking, primary email, Apple ID, or enterprise accounts β use 20+ character passwords. These are fortress-level passwords that no brute-force attack can touch.
Sw2$fJx7#Mn5@Tp9Lk4v β 20 characters
Dq4!rWz3@Hv8$Nk6&Yf2x β 21 characters
Lm7*pQx2!Jv5#Rn8@Tw4Gc β 22 characters
Bt6#nYv4@Cw9!Jq8$Mf3LxRk β 24 characters
Uw5&zHr8!Km2@Nv7#Tp4$GxWf9 β 26 characters
These are published examples β do not use them directly. Generate your own unique password.
At this length, the only way to remember your password is with a password manager. That's not a drawback β it's the entire point. You should only ever need to remember one master password.
Here's a practical guide to choosing password length based on the type of account:
| Account Type | Recommended Length | Why |
|---|---|---|
| Throwaway/temporary accounts | 12+ characters | Even low-risk accounts shouldn't be easily cracked |
| Social media (Instagram, Snapchat, TikTok) | 14+ characters | Contains personal photos, messages, and identity |
| Email (Gmail, Outlook) | 16+ characters | Email is the recovery method for everything else |
| Apple ID / Google Account | 16+ characters | Controls your entire ecosystem β photos, payments, devices |
| Banking / financial | 16-20+ characters | Direct access to your money |
| Password manager master password | 20+ characters or passphrase | The one password that protects all others |
The simplest approach: use 16+ characters for everything and store them all in a password manager. You'll never need to remember any of them except your master password.
Instead of copying examples from the internet (which hackers can also find), generate a unique password of any length:
Our Strong Password Generator lets you choose your exact length and character types. Generate 8-character minimums for restrictive services or 20+ character fortress passwords for your critical accounts. Then use our password complexity checker to verify the strength.
NordPass remembers every password so you don't have to. Generate 20+ character passwords for every account and access them instantly across all your devices.
Get NordPass with 50% discount βSome links on this page are affiliate links. We may earn a commission if you make a purchase, at no extra cost to you.
The longer your password, the less likely you are to remember it β and that's fine. Here are your storage options, ranked:
| Storage Method | Security | Convenience | Verdict |
|---|---|---|---|
| Written on a sticky note | Very low | Low | Avoid |
| Notes app on your phone | Low | Medium | Avoid |
| Saved in your browser | Medium | High | Acceptable |
| Apple Keychain / Google Password Manager | Good | High (ecosystem-locked) | Good |
| Dedicated password manager | Excellent | High (all devices) | Best |
A dedicated password manager like NordPass encrypts your passwords with XChaCha20 encryption and works across all your devices β iPhone, Android, Mac, Windows, and browser extensions. It also generates strong passwords of any length automatically, so you never have to think about character counts again.
Tn7!qR3x or Bp4@wK8f. However, 8 characters is the absolute minimum for most services β security experts recommend 16+ characters for real protection. Use a password generator to create one instantly.
Need a password for a specific service? Check out our Apple ID Password Generator, Google Password Generator, or browse our full password generator directory.
