Novalissoide This one I had issues with for almost two years before, as my first activity on Github, telling the developer about it, they then fixed it near instantainiously.
https://github.com/v4lpt/PWG/releases
I've tested an obscene number of 'simple password generators', none but this one solves my biggest concern with the 'Horse Battery Staple'-approach.(https://web.archive.org/web/20130821074348/http://xkcd.com/936/)
That is, in pursuit of human friendly passphrases of enough lenght, generating actual words opens up for dictionary attack. The one above generates human friendly made up words!
Cool! Yes, indeed, dictionary attacks are very common as well as the bruteforcing of fairly short passwords.
Lenght and randomization are indeed extremely important, the longer and more random the password, the higher the entropy.
This app is a great solution indeed, as you mentioned it created random words rather than common ones that can be guessed by dictionary attacks. (Because they are indeed in the dictionary)
I myself have a different method, I use completely random and long passwords generated by KeepassDX/XC. I use the magic keyboard with its build-in encrypted dictionary to "type" them in the text inputfield without using the clipboard. (Clipboards can leak) This way I can use insanely long and complex passwords without having to remember anything.
Of course I use the URL-feature in Keepass to go to that specific webservice otherwise I run the risk of entering a fake website.
Which of these two methods people choose, you can't go wrong either way. (Please, correct me if I'm wrong, I am no security expert, so don't take my word on this)