https://github.com/centminmod/checkpasswords
Modified shell script using Cloudflare example Pwned Passwords API from Have I Been Pwned database
https://github.com/centminmod/checkpasswords
Last synced: 5 months ago
JSON representation
Modified shell script using Cloudflare example Pwned Passwords API from Have I Been Pwned database
- Host: GitHub
- URL: https://github.com/centminmod/checkpasswords
- Owner: centminmod
- Created: 2018-03-07T07:37:35.000Z (over 8 years ago)
- Default Branch: master
- Last Pushed: 2018-03-21T17:42:43.000Z (over 8 years ago)
- Last Synced: 2024-12-31T01:41:33.922Z (over 1 year ago)
- Language: Shell
- Homepage:
- Size: 2.93 KB
- Stars: 0
- Watchers: 3
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: readme.md
Awesome Lists containing this project
README
Modified version of Cloudflare shell script example [here](https://blog.cloudflare.com/validating-leaked-passwords-with-k-anonymity/)
Just pass the password as an option to the script
i.e.
./checkpasswords.sh YOURPASSWORD
example of weak password found in breached database
./checkpasswords.sh 123
[unsafe] Password found in breached database.
or
./checkpasswords.sh 123 >/dev/null; echo $?
1
example of stronger unique password not found in breached databased
./checkpasswords.sh OVIgdv2Ttn9ep5zs1pM76
[safe] Password not found in breached database.
or
./checkpasswords.sh OVIgdv2Ttn9ep5zs1pM76 >/dev/null; echo $?
0
using pwgen generated passwords checking
./checkpasswords.sh $(pwgen -1cnys 21)
output
./checkpasswords.sh $(pwgen -1cnys 21)
[safe] Password not found in breached database.
or
./checkpasswords.sh $(pwgen -1cnys 21) >/dev/null; echo $?
0
## Links
* https://haveibeenpwned.com/
* https://www.troyhunt.com/the-legitimisation-of-have-i-been-pwned/