Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/dionysio/haveibeenpwned_lastpass

Check if your lastpass passwords have been pwned by someone
https://github.com/dionysio/haveibeenpwned_lastpass

haveibeenpwned lastpass password-manager python security

Last synced: about 1 month ago
JSON representation

Check if your lastpass passwords have been pwned by someone

Awesome Lists containing this project

README

        

# haveibeenpwned_lastpass

Passwords are not sent from your host machine. [This article](https://www.troyhunt.com/ive-just-launched-pwned-passwords-version-2#cloudflareprivacyandkanonymity) explains the process by which the passwords are checked

Website https://haveibeenpwned.com provides a way for you to check whether some of your passwords/usernames were leaked during one of the many breaches of online services.
If you are like me, you have a LastPass account with way too many random passwords to check them manually.
What this script does:

1. logs into LastPass and retrieves its vault
2. goes through your entries and checks passwords through the haveibeenpwned API ([actual plain passwords are not sent anywhere](https://www.troyhunt.com/ive-just-launched-pwned-passwords-version-2#cloudflareprivacyandkanonymity))
3. compiles the results into a report for you to see if you actually were pwned

## Getting Started

1. install Python 3
2. install all the dependencies with `pip install -r requirements.txt`
3. run `python have_i_though.py` and go through the interactive prompt

## Acknowledgments

* [Have I Been Pwned](https://haveibeenpwned.com) service and its author Troy Hunt
* [lastpass-python](https://github.com/konomae/lastpass-python) with his unofficial API around LastPass