š The Entropy Gauntlet
Most passwords get cracked in seconds. Can you build one that survives? 10 Rules. Infinite frustration. One bulletproof password.
š Mission Brief
- Objective: Reach 100% completion without rage-quitting.
- The Catch: Rules are cumulative. Fixing Rule 9 might break Rule 2.
- The Reward: A password mathematically proven to be uncrackable.
Progress
0 of 10 rules completedWhy This Game Matters
Most password strength checkers only look at length. The Entropy Gauntlet forces you to understand entropy - the mathematical measure of randomness - by making you feel it in real time.
Each of the 10 levels targets a real attack vector hackers use. Level 6 blocks dictionary words because 90% of cracked passwords contain real words. Level 7 blocks keyboard walks like qwerty and asdf because cracking tools try these patterns in the first seconds. Level 8 blocks leetspeak like P@ssw0rd because those substitutions are pre-loaded into every modern cracking dictionary.
The boss fight at Level 10 requires a valid 3-letter IATA airport code embedded inside your password. It sounds arbitrary. It is not. It forces a random, non-dictionary string that cracking tools have no template for. A password that survives all 10 levels has entropy above 60 bits - stronger than 99% of passwords currently in use.
What Each Level Teaches You
- Level 1 - The Warmup: Minimum length. 8 characters is the floor, not the goal.
- Level 2 - Speak Up: Uppercase letters expand the character pool from 26 to 52.
- Level 3 - Double Trouble: Two digits add another dimension of complexity.
- Level 4 - Get Fancy: Special symbols push the character pool to 94 printable ASCII characters.
- Level 5 - Chaos Theory: Raw entropy measurement. 50 bits minimum. This is where most people fail.
- Level 6 - Be Original: Dictionary attack simulation. If your password contains a word, it's vulnerable.
- Level 7 - Stop Mashing: Keyboard pattern detection. Cracking tools try these in the first pass.
- Level 8 - Too Easy: Leetspeak is not security. Hackers have tables for every common substitution.
- Level 9 - Math Class: Forces deliberate randomness. Your digits must sum to a specific target.
- Level 10 - The Jetsetter: IATA airport code requirement. Unpredictable, non-dictionary, uncrackable pattern.
Frequently Asked Questions
What is The Entropy Gauntlet?
The Entropy Gauntlet is a 10-level password security game that teaches you how hackers crack passwords by making you defend against real attack techniques. Each level adds a new constraint based on an actual vulnerability - dictionary attacks, keyboard patterns, entropy measurement, and leetspeak detection.
What is password entropy?
Password entropy is a mathematical measure of how unpredictable a password is. It is calculated based on the size of the character pool you draw from and the length of the password. A password with 50 bits of entropy has 2 to the power of 50 possible combinations - over a quadrillion possibilities. The Entropy Gauntlet requires at least 50 bits at Level 5.
Why does Level 10 require an airport code?
IATA airport codes are 3-letter strings that do not appear in standard dictionary attack wordlists. By requiring one inside your password, Level 10 forces a random, non-predictable string that modern cracking tools have no template for. It is a practical demonstration of why unpredictability matters more than complexity rules.
Is this game good for security training?
Yes. Security awareness trainers use games like this because experiential learning sticks better than policy documents. When you feel your password fail at Level 6 because it contained a dictionary word, you understand dictionary attacks better than any slide deck could explain.
What should I do after completing the game?
Store the password you built in a password manager. A password strong enough to survive all 10 levels is too complex to memorize. Use our free password generator to create similarly strong passwords for every account, and store them all in a manager like NordPass.