Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/dionysio/haveibeenpwned_lastpass

Check if your lastpass passwords have been pwned by someone
https://github.com/dionysio/haveibeenpwned_lastpass

haveibeenpwned lastpass password-manager python security

Last synced: 3 months ago
JSON representation

Check if your lastpass passwords have been pwned by someone

Awesome Lists containing this project

README 

        
# haveibeenpwned_lastpass



Passwords are not sent from your host machine. [This article](https://www.troyhunt.com/ive-just-launched-pwned-passwords-version-2#cloudflareprivacyandkanonymity) explains the process by which the passwords are checked 



Website https://haveibeenpwned.com provides a way for you to check whether some of your passwords/usernames were leaked during one of the many breaches of online services.

If you are like me, you have a LastPass account with way too many random passwords to check them manually. 

What this script does:



1. logs into LastPass and retrieves its vault

2. goes through your entries and checks passwords through the haveibeenpwned API ([actual plain passwords are not sent anywhere](https://www.troyhunt.com/ive-just-launched-pwned-passwords-version-2#cloudflareprivacyandkanonymity))

3. compiles the results into a report for you to see if you actually were pwned



## Getting Started



1. install Python 3

2. install all the dependencies with `pip install -r requirements.txt`

3. run `python have_i_though.py` and go through the interactive prompt



## Acknowledgments



* [Have I Been Pwned](https://haveibeenpwned.com) service and its author Troy Hunt

* [lastpass-python](https://github.com/konomae/lastpass-python) with his unofficial API around LastPass