[dpayonk]

I use an internal (in my head) algorithm that bases (in part) on the domain name of the site I log into. For example, ycombinator.com could be z4O9999asdf Which represents

[1 letter after domain][c is 3rd letter of alphabet][numeric letter representation][last 4 SSN][pseudo counter] It might not be as high tech as software, but I think it offers a reasonable security / ease of use combo.

Note: This is nowhere near my algorithm and tokens have been made up for the purposes of this example.