Command line tool that checks how much a password is safe
Coded with π by edoardottt.
This tool doesn't store any information!!
Remember, never use personal(or related to you) info in your password!
- Use a password manager
- Don't use the same password for different services
- Enable 2FA when possible
Table of Contents π½
Example π
Get Started π
-
First of all, clone the repo locally
git clone https://github.com/edoardottt/pwdsafety.git
-
pwdsafety has external dependencies, so they need to be pulled in:
-
Linux (Requires high perms, run with sudo)
-
Windows (executable works only in pwdsafety folder. Alias?)
-
make windows
-
make unwindows
Description π¦
It reads from standard input the entered password.
First, it searches in known-pwd.txt file if there is the password or the password reversed.
Then, just do little calculations, checking if the basic rules are respected, like if there are UPPERCASE CHARS, lowercase chars, numb3rs and symbols.
It stores the length of the password and the ratio [ unique different chars / total chars].
It calculates then the entropy of a password.
Password entropy is a measurement of how unpredictable a password is.
The formula for entropy is:
Where E = password entropy
R = pool of unique characters
L = number of characters in your password
Then R^L = the number of possible passwords
When the score <= 68(reasonable) it generates a random password using a list of all english words.
Scoring π―
Max score: 100
Scores:
- Very weak: 0 - 35
- Weak: 36 - 59
- Reasonable: 60 - 68
- Strong: 69 - 80
- Very strong: 81 -100
Scoring parameters:
- Found in known password
- Found in known password reversed
- Password composition:
- numbers
- symbols
- uppercase
- lowercase
- Unique different characters
- Length
- Entropy
Contributing π
Just open an issue/pull request.
See also CONTRIBUTING.md and CODE OF CONDUCT.md
If you liked it drop a β
https://www.edoardoottavianelli.it for contact me.
Edoardo Ottavianelli