https://github.com/bitbar/owasp-unsafe-passwords
List of top unsafe passwords
https://github.com/bitbar/owasp-unsafe-passwords
bitbar owasp password passwords passwords-leaks security unsafe
Last synced: 11 months ago
JSON representation
List of top unsafe passwords
- Host: GitHub
- URL: https://github.com/bitbar/owasp-unsafe-passwords
- Owner: bitbar
- License: isc
- Created: 2019-07-09T11:56:23.000Z (almost 7 years ago)
- Default Branch: master
- Last Pushed: 2020-12-08T16:52:49.000Z (over 5 years ago)
- Last Synced: 2025-06-14T08:18:34.611Z (about 1 year ago)
- Topics: bitbar, owasp, password, passwords, passwords-leaks, security, unsafe
- Homepage:
- Size: 137 KB
- Stars: 4
- Watchers: 2
- Forks: 3
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# OWASP Unsafe Passwords
This repo contains JSON dictionaries with top unsafe passwords. Passwords has been taken from dictionaries found at
https://weakpass.com/. Those files can be used e.g. if you are implementing
[OWASP Application Security Verification Standard 4.0](https://github.com/OWASP/ASVS/raw/master/4.0/OWASP%20Application%20Security%20Verification%20Standard%204.0-en.pdf).
All passwords:
* are at least 12 characters in length (OWASP ASVS 4.0 - 2.1.1)
* are in lower case (you need to transform password to lower case before check)
## Usage
```sh
npm install --save @bitbar/owasp-unsafe-passwords
```
## License
This project is licensed under the ISC License - see the [LICENSE](LICENSE) file for details.