Simple .net core command line utility for checking your pwned passwords against Troy Hunt's Have I Been Pwned? service.
Clone this repository and compile with dotnet tooling. (or visual studio code)
Download from AppVeyor continuous integration. Latest build
Export your passwords to csv file, with structure
Account | LoginName | Password | WebSite |
---|---|---|---|
My favourite service | your_account@your_domain.com | password | www.myfavouriteservice.nowhere |
This is default export from KeePass. |
There are two parameters
Paremeter | Long Name | Description |
---|---|---|
p | path | Path to your csv file |
l | layout | Layout |
Currently only layout implemented is KeePass layout
Command line
dotnet pwned-password-check-net.dll -p path_to_csv -l KeePass
This tool will group output according to your logins and for each login tries if password was compromised.
Login: your_login@your_domain.com, Breaches: breach1, breach2
Possible pwned password - Account: My Favourite Page, Password: abcd123
....
....
Login: your_another_login@your_another_domain.com, Breaches: breach3, breach4
Possible pwned password - Account: Some Page, Password: 123abcd
....
....
This tool uses c# implementation of Troy's Hunt pwned api SharpPwned.NET.
Mathematical property called k-Anonymity is used to check if the password was compromised.
- None of your passwords ever leaves your computer.
- We can't say if combination of your account and the password was compromised. If account is listed in the output, we are sure that account was compromised. If password was listed, we are sure that this password was compromised.
If you have pretty unique password and is listed as compromised, there is quite a chance, it is your account.
Act accordingly.
And always use password manager.
Please report issues. Pull Requests are welcomed !