Check multiple passwords against the
Have I Been Pwned Passwords Database
service.
Report Bug
·
Request Feature
Table of Contents
This project allows users the ability to check their passwords against the HIBP platform, securely using using k-Anonymity. The current solution from HIBP only allows for once password check at a time.
The pwned password service by Troy Hunt and Team is a great way to find out if a password has been involved in a data breach. However many breach notifications are Combolists making it unclear which service would be affected. I agree with Troy's stance that providing the site alongside is a very bad thing to do as you become a target for malicious actors.
Here's what this tool can do:
- From a list of passwords it will highlight which have appeared in a breach
- It will react to rate limiting response automatically
- Node.js
- Axios
-
npm
npm install npm@latest -g
-
git
- Clone the repo
git clone https://github.com/danielaj28/hibp-password-batch.git
- Install NPM packages
npm install
- Export your passwords from wherever you keep them to "items.txt" placed in the root of this project with each password on a new line.
- Run the program
npm run start
Contributions are what make the open source community such an amazing place to learn, inspire, and create. Any contributions you make are greatly appreciated.
If you have a suggestion that would make this better, please fork the repo and create a pull request. You can also simply open an issue with the tag "enhancement". Don't forget to give the project a star! Thanks again!
- Fork the Project
- Create your Feature Branch (
git checkout -b feature/AmazingFeature) - Commit your Changes (
git commit -m 'Add some AmazingFeature') - Push to the Branch (
git push origin feature/AmazingFeature) - Open a Pull Request
Distributed under the MIT License. See LICENSE.txt for more information.
Project Link: https://github.com/danielaj28/danielaj28