What This Checker Does
This is the simplest possible password strength meter. It evaluates only two things: how long is the password, and how many different character classes does it use.
Scoring Rules
The score is out of 100 and is calculated as follows:
Length points (max 50) — Each character adds 3.3 points, capping at 15 characters. Passwords under 8 characters are capped at "Weak" regardless of other factors.
Character class points (max 50) — Each class present adds 12.5 points: lowercase (a-z), uppercase (A-Z), digits (0-9), symbols/special characters.
What It Checks
Length ≥ 8 characters, presence of lowercase, uppercase, digits, and symbols. That's it — nothing else.
Known Weaknesses
This meter considers Password1! to be "Strong" because it has length 10 and all four character classes — despite being one of the most commonly breached passwords in existence.
It has no dictionary, no pattern detection, and no concept of entropy. It cannot tell the difference between aB3$aB3$aB (patterned garbage) and kX9#mW2&pL (genuinely random).
This is roughly how many real-world "password requirement" systems work — and why NIST recommends against them.