Skip to content

Latest commit

 

History

History
70 lines (56 loc) · 2.35 KB

README.md

File metadata and controls

70 lines (56 loc) · 2.35 KB

pwned-password-checker

Offline search into a pwned password list. Download the list of pwned passwords using pwned-password-downloader (from same author) or PwnedPasswordsDownloader (official tool).

Supports:

  • single password check
  • bulk password check:
  • KDBX format via rubeepass
  • 1Password vaults via op CLI - you must first authenticate with op signin <subdomain> before op signing works as expected without explicit arguments

Install (not done yet)

gem install pwned-password-checker

Usage

# built in help
pwned-password-checker --help
Usage:

pwned-password-checker                       checks a single password
pwned-password-checker --bulk kdbx           bulk check of a KDBX file
pwned-password-checker --bulk onepassword    bulk check of 1Password vaults

    -p, --pwn ~/.pwn                 Path to pwned passwords directory. Defaults to ~/.pwn
    -e, --echo                       Whether to turn on the password output in the prompt
    -b, --bulk kdbx|onepassword      Turns on bulk checking against supported backends: kdbx, onepassword
    -h, --help                       Show this help
# search single password
pwned-password-checker
password>
Hash: 0BEEC7B5EA3F0FDBC95D0DD47F3C5BC275DA8A33
This password has been seen 5396 times before
Seek time: 0.38 ms
# search single password using echo mode
pwned-password-checker --echo
password> foo
Hash: 0BEEC7B5EA3F0FDBC95D0DD47F3C5BC275DA8A33
This password has been seen 5396 times before
Seek time: 0.28 ms
# bulk search in KDBX file (KeePass 2.x KDBX v4 format)
# pwn.kdbx is a test file of pwned-password-checker with password 'pwn'
pwned-password-checker --bulk kdbx
KDBX path> spec/files/pwn.kdbx
KDBX password>
KDBX key file>
+-------+-------+----------+----------+-------+
|               Pwned passwords               |
+-------+-------+----------+----------+-------+
| Group | Title | Username | Password | Count |
+-------+-------+----------+----------+-------+
| foo   | bar   | baz      | qux      | 15    |
+-------+-------+----------+----------+-------+

TODO

  • Implement bulk mode: plaintext list of passwords
  • Publish as a gem