GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → JoshuaMart → PwnedPasswordsChecker

JoshuaMart / PwnedPasswordsChecker

Licence: other
Search (offline) if your password (NTLM or SHA1 format) has been leaked (HIBP passwords list v8)

Programming Languages

go
31211 projects - #10 most used programming language

Labels

osintpasswordntlmsha1leakhibpredteamcrypta

Projects that are alternatives of or similar to PwnedPasswordsChecker

H8mail
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Stars: ✭ 2,163 (+4059.62%)
Mutual labels:  osint, password, leak, hibp
Oblivion
Data leak checker & OSINT Tool
Stars: ✭ 237 (+355.77%)
Mutual labels:  osint, password, leak
Leakscraper
LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.
Stars: ✭ 227 (+336.54%)
Mutual labels:  osint, leak, redteam
Theharvester
E-mails, subdomains and names Harvester - OSINT
Stars: ✭ 6,175 (+11775%)
Mutual labels:  osint, redteam
linkedinscraper
LinkedinScraper is an another information gathering tool written in python. You can scrape employees of companies on Linkedin.com and then create these employee names, titles and emails.
Stars: ✭ 22 (-57.69%)
Mutual labels:  osint, redteam
Osint tips
OSINT
Stars: ✭ 322 (+519.23%)
Mutual labels:  osint, redteam
Mysql Unsha1
Authenticate against a MySQL server without knowing the cleartext password
Stars: ✭ 191 (+267.31%)
Mutual labels:  password, sha1
Gitgraber
gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
Stars: ✭ 1,164 (+2138.46%)
Mutual labels:  osint, redteam
Snoop
Snoop — инструмент разведки на основе открытых данных (OSINT world)
Stars: ✭ 886 (+1603.85%)
Mutual labels:  osint, redteam
Information Security Tasks
This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions
Stars: ✭ 108 (+107.69%)
Mutual labels:  osint, redteam
Karma
Find leaked emails with your passwords
Stars: ✭ 154 (+196.15%)
Mutual labels:  osint, password
sherlock
🔎 Find usernames across social networks
Stars: ✭ 52 (+0%)
Mutual labels:  osint, redteam
burp-ntlm-challenge-decoder
Burp extension to decode NTLM SSP headers and extract domain/host information
Stars: ✭ 28 (-46.15%)
Mutual labels:  osint, ntlm
Sherlock
🔎 Hunt down social media accounts by username across social networks
Stars: ✭ 28,569 (+54840.38%)
Mutual labels:  osint, redteam
OSINTBookmarks
OSINT Bookmarks for Firefox / Chrome / Edge / Safari
Stars: ✭ 34 (-34.62%)
Mutual labels:  osint, redteam
Pentesting Bible
Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
Stars: ✭ 8,981 (+17171.15%)
Mutual labels:  osint, redteam
evildork
Evildork targeting your fiancee👁️
Stars: ✭ 46 (-11.54%)
Mutual labels:  password, leak
Pwcrack Framework
Password Crack Framework
Stars: ✭ 72 (+38.46%)
Mutual labels:  password, sha1
Leakfa.com
A simple way to know if you are on the list of major security breaches like "HIBP", but it is specific for Iran.
Stars: ✭ 106 (+103.85%)
Mutual labels:  osint, leak
I See You
ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.
Stars: ✭ 246 (+373.08%)
Mutual labels:  osint, redteam
View All Similar Projects ➔

PwnedPasswordsChecker

bannerMaintenance made-with-go MIT license

PwnedPasswordsChecker is a tool that checks if the hash of a known password (in SHA1 or NTLM format) is present in the list of I Have Been Pwned leaks and the number of occurrences.

You can download the hash-coded version for SHA1 here or the hash-coded version for NTLM here

Once the list is downloaded it is then necessary to convert it to binary by using my other tool HIBP PasswordList Slimmer

This script only works with the HIBP version sorted by hash and entry hashes must be in lowercase and preferably ordered by hashs

Usage :

./PwnedPasswordsChecker {InputHashList} {HashType} {OutputFile} {CompressedHIBPHashList}
./PwnedPasswordsChecker .\NTLM_LIST.txt NTLM .\Output.txt .\ntlm_hibp_compressed.bin

Output format : {hash}:{occurence}

Installation :

Download the compiled version for Windows or Linux from release page

If you wish to compile it yourself, you will need to have golang installed on your system and perform the following commands:

git clone https://github.com/JoshuaMart/PwnedPasswordsChecker && cd PwnedPasswordsChecker
go build main.go

Screenshots

Thanks to the use of a "compressed" format the tool has largely gained in performance, example of use between the old version and the new one with a list of 20,000 hashes (Intel Core I7 8565U) :

Screenshot

Improvements

Feel free to contact me on Twitter or do a PR to improve the script.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].