https://github.com/kevcui/password-meter
:lock_with_ink_pen: A password meter evaluates the strength of passwords
https://github.com/kevcui/password-meter
password password-meter password-safety password-strength security security-tools
Last synced: 6 months ago
JSON representation
:lock_with_ink_pen: A password meter evaluates the strength of passwords
- Host: GitHub
- URL: https://github.com/kevcui/password-meter
- Owner: KevCui
- License: mit
- Created: 2020-08-25T08:20:24.000Z (about 5 years ago)
- Default Branch: master
- Last Pushed: 2021-05-10T10:25:53.000Z (over 4 years ago)
- Last Synced: 2025-03-26T17:40:16.338Z (7 months ago)
- Topics: password, password-meter, password-safety, password-strength, security, security-tools
- Language: Python
- Homepage:
- Size: 37.1 KB
- Stars: 4
- Watchers: 1
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Passmeter
> A password meter evaluates the strength of passwords.
## Table of Contents
- [Features](#features)
- [Dependency](#dependency)
- [Usage](#usage)
- [Example](#example)
- [Common password list](#common-password-list)
- [Credits](#credits)
- [One more thing](#one-more-thing)
## Features
- Offline, no worry about your password collected by certain evil web service
- Simple and colorful output for better result analysis
- Flexible to adjust password rules/requirements in script
- Easy to be integrated into any CI processes because of CLI script
## Dependency
- [Rich](https://github.com/willmcgugan/rich)
```bash
$ pip install rich
```
## Usage
```
usage: passmeter.py [-h] [-p PASSWORD] [-s] [-c]
optional arguments:
-h, --help show this help message and exit
-p PASSWORD, --password PASSWORD
Password
-s, --score-only Only show score number as output
-c, --complexity-only
Only show complexity text as output
```
### Example
```
$ ./passmeter.py -p thisismypassword
Very Weak
Score: 15%
Complexity: Very Weak
+--------------------------------------------------------------+
| | Rate | Count | Bonus |
|-------------------------------+--------------+-------+-------|
| Number of Characters | +(n*4) | 16 | +64 |
| Uppercase Letters | +((len-n)*2) | 0 | 0 |
| Lowercase Letters | +((len-n)*2) | 16 | 0 |
| Numbers | +(n*4) | 0 | 0 |
| Symbols | +(n*6) | 0 | 0 |
| Middle Numbers of Symbols | +(n*2) | 0 | 0 |
| Requirements | +(n*2) | 2 | 0 |
| Letters Only | -n | 16 | -16 |
| Numbers Only | -n | 0 | 0 |
| Repeat Characters | -? | 6 | -3 |
| Consecutive Uppercase Letters | -(n*2) | 0 | 0 |
| Consecutive Lowercase Letters | -(n*2) | 15 | -30 |
| Consecutive Numbers | -(n*2) | 0 | 0 |
| Sequential Letters (3+) | -(n*3) | 0 | 0 |
| Sequential Numbers (3+) | -(n*3) | 0 | 0 |
| Sequential Symbols (3+) | -(n*3) | 0 | 0 |
+--------------------------------------------------------------+
```
Although `-p` exists as an option, it's recommended to avoid using it with your real password. The reason is that Shell commands including all paraders are logged in Shell command execution history, which might cause the trouble to expose your real password. Instead, run `./passmeter.py` and enter password in prompt:
```bash
$ ./passmeter.py
Password:
```
### Common password list
`./passmeter.py` checks password against `./commonpassword.list`. Once the entered password is found in the list, all other checks will be aborted. The default integrated list is fetched from [danielmiessler/SecLists](https://github.com/danielmiessler/SecLists/blob/master/Passwords/Common-Credentials/10-million-password-list-top-1000.txt). Feel free to customize `./commonpassword.list` according to your needs, put any passwords in the list one per line.
```bash
$ ./passmeter.py -p 123456
Common password in ./commonpassword.list
```
## Credits
The original code of this project is ported from web app [Password Meter](http://www.passwordmeter.com/)
## One more thing
Want to generate very strong passwords? Check this project :point_right: [passgen](https://github.com/KevCui/passgen)