This is the first tip – Always make a passphrase rather than a password!!
I have had hundreds of passwords in my time, and about 2 years ago decided to move to passphrases instead.
Passwords can be difficult to remember if you have to make them complex as is required by network and website admins these days, and as a result a lot of people simply write them down on a post-it and stick it on the edge of their monitors.
Rather than using a password such as password123 or C3Tv8Bx? etc which are either too simple to guess, or too complex to remember, why not use a passphrase such as “why do we need these passwords anyway” .
It is near impossible to guess, and brute forcing it would take a supercomputer. By the time you cracked it, the data may not be worth anything anyway.