Password Entropy Calculator
How long would it take to crack a password?
| Hash Algorithm Attacker GPUs | Est. Cost | 1 GPU | 10 GPUs | 100 GPUs | 1k GPUs | 10k GPUs | Nation State |
|---|---|---|---|---|---|---|---|
| MD5 | <$1 | Instant | Instant | Instant | Instant | Instant | Instant |
| SHA-1 | <$1 | Instant | Instant | Instant | Instant | Instant | Instant |
| SHA-512 | <$1 | Instant | Instant | Instant | Instant | Instant | Instant |
| PBKDF2 | <$1 | Instant | Instant | Instant | Instant | Instant | Instant |
| bcrypt | <$1 | Instant | Instant | Instant | Instant | Instant | Instant |
| scrypt | <$1 | Instant | Instant | Instant | Instant | Instant | Instant |
| Argon2id | <$1 | Instant | Instant | Instant | Instant | Instant | Instant |
How to read this table
Each cell shows the estimated time to crack the password. Rows represent different password hashing algorithms (stronger ones like Argon2id take longer to crack). Columns represent the attacker's computing power (more GPUs = faster cracking). Hash rates are based on RTX 5090 benchmarks with recommended hash parameters. The cost column is a lower-bound estimate of the total GPU time an attacker would pay for, at $0.20 per GPU-hour on the rental market, and is the same regardless of how many GPUs they use. We use haveibeenpwned.com to securely check for password breaches and zxcvbn to estimate entropy. Built by Liam Gray and sponsored by Upon's secure digital inheritance vaults.