password-score - Password scoring library written in Javascript.

  •        34

Password Score is a javascript library for estimating password security in the means of entropy. Beneath using dictionaries, the library searches for common passwords or names and scans for patterns like dates in any format, sequences, repetitions or keyboard patterns. Based on the found patterns, the entropy may be used to estimate the average time needed to crack the password.Estimating the time to crack is still to be implemented. In addition there is still some work to do concerning documentation and the demonstration site.

https://github.com/davidstutz/password-score

Tags
Implementation
License
Platform

   




Related Projects

zxcvbn - Low-Budget Password Strength Estimation

  •    CoffeeScript

zxcvbn is a password strength estimator inspired by password crackers. Through pattern matching and conservative estimation, it recognizes and weighs 30k common passwords, common names and surnames according to US census data, popular English words from Wikipedia and US television and movies, and other common patterns like dates, repeats (aaa), sequences (abcd), keyboard patterns (qwertyuiop), and l33t speak.Consider using zxcvbn as an algorithmic alternative to password composition policy — it is more secure, flexible, and usable when sites require a minimal complexity score in place of annoying rules like "passwords must contain three of {lower, upper, numbers, symbols}".

vue-password-strength-meter - 🔐 Password strength meter based on zxcvbn in vue.js

  •    Javascript

You can customize the styling of the input field, badge and strength-meter by passing your own css classes to defaultClass, strengthMeterClass etc. For detailed explanation on how things work, checkout the guide and docs for vue-loader.

zxcvbn-php - Realistic PHP password strength estimate library based on Zxcvbn JS

  •    PHP

Zxcvbn-PHP is a password strength estimator using pattern matching and minimum entropy calculation. Zxcvbn-PHP is based on the Javascript zxcvbn project from Dropbox and @lowe. "zxcvbn" is bad password, just like "qwerty" and "123456". zxcvbn attempts to give sound password advice through pattern matching and conservative entropy calculations. It finds 10k common passwords, common American names and surnames, common English words, and common patterns like dates, repeats (aaa), sequences (abcd), and QWERTY patterns.

hsimp - How Secure is My Password for your own website

  •    HTML

Now you can use the howsecureismypassword.net password strength meter on your own sites. Rather than just saying a password is "weak" or "strong", How Secure is My Password? lets your users know how long it would take someone to crack their password. It also checks against the top 10,000 most common passwords as well as a number of other checks (such as repeated strings, telephone numbers, and words followed by numbers).

jquery

  •    Javascript

Websites have a responsibility to accurately inform users of password strength, both to better secure data, and to educate about users of what constitutes a good password. Complexify aims to provide a good measure of password complexity for websites to use both for giving hints to users in the form of strength bars, and for casually enforcing a minimum complexity for security reasons.


Notebook PEA - Text Editor with Password Encryption

  •    Java

Password encryption tool with built-in text editor, to protect private notes. The program offers some styling and editing functionality for the text, a password generator, a password-strength meter and a virtual keyboard. The text is protected using authenticated encryption.

cupp - Common User Passwords Profiler (CUPP)

  •    Python

The most common form of authentication is the combination of a username and a password or passphrase. If both match values stored within a locally stored table, the user is authenticated for a connection. Password strength is a measure of the difficulty involved in guessing or breaking the password through cryptographic techniques or library-based automated testing of alternate values. A weak password might be very short or only use alphanumberic characters, making decryption simple. A weak password can also be one that is easily guessed by someone profiling the user, such as a birthday, nickname, address, name of a pet or relative, or a common word such as God, love, money or password.

Strength

  •    Javascript

Strength.js provides a toggle feature for password input fields that allows the user to view or asterisk the password. It also features a strength indicator to show how secure a users password is.You must give your password input a unique ID.

Very Simple Password Generator

  •    

Simple password generator which has over 10,000 words and can do the following Capitilise the 1st letter Include random no Specify minimum length of word Use special charaters as part of the password. Reverse the password for greater strength.

buttercup-desktop - :key: Javascript Secrets Vault - Multi-Platform Desktop Application

  •    Javascript

Cross-platform, free and open-source password manager based on NodeJS. Buttercup is a password manager - an assistant for helping you store all of your login credentials. Buttercup helps you keep your accounts safe and assists you when you want to log in - all you need to do is remember just one password: your master password.

Titan - Command line password manager

  •    C

Titan is a command line password manager. Titan uses OpenSSL library to perform the encryption. AES encryption is used with 256 bit keys. Password database is also protected from tampering by using a keyed-hash message autentication code (HMAC). Unique, cryptographically random initialization vector is used during the encryption. New initialization vector is generated each time the password database is encrypted.

password-generator - Memorable password generator

  •    Javascript

Memorable password generator. For the command line, Node.js and browsers. Since v2.0.0 this library relies on cryptographic random values generated via crypto.getRandomValues. IE11 was the first IE version to include this method. Check caniuse.com for details.

KeypItSafe Password Vault

  •    

KeypItSafe Password Vault Easily and safely store your website passwords on your computer - or go mobile in just a few clicks! What is KeypItSafe? KeypItSafe is a free open source password manager that helps you store and manage all of your passwords securely on your ...

PassGAN - A Deep Learning Approach for Password Guessing (https://arxiv.org/abs/1709.00440)

  •    Python

This repository contains code for the PassGAN: A Deep Learning Approach for Password Guessing paper. Use the pretrained model to generate 1,000,000 passwords, saving them to gen_passwords.txt.

hashview - A web front-end for password cracking and analytics

  •    CSS

Hashview is a tool for security professionals to help organize and automate the repetitious tasks related to password cracking. Hashview is a web application that manages hashcat (https://hashcat.net) commands. Hashview strives to bring constiency in your hashcat tasks while delivering analytics with pretty pictures ready for ctrl+c, ctrl+v into your reports. Please see the Contribution Guide for how to develop and contribute. If you have any problems, please consult Issues page first. If you don't see a related issue, feel free to add one and we'll help.

otp - TOTP library for Go

  •    Go

One Time Passwords (OTPs) are an mechanism to improve security over passwords alone. When a Time-based OTP (TOTP) is stored on a user's phone, and combined with something the user knows (Password), you have an easy on-ramp to Multi-factor authentication without adding a dependency on a SMS provider. This Password and TOTP combination is used by many popular websites including Google, Github, Facebook, Salesforce and many others. The otp library enables you to easily add TOTPs to your own application, increasing your user's security against mass-password breaches and malware.

Passbolt - Password manager for the team

  •    PHP

Passbolt is an open source password manager for teams. It allows you to securely share and store credentials. For instance, the wifi password of your office, the administrator password of a router or your organisation's social media account passwords, all of them can be secured using passbolt.

NoKey - A distributed password manager without a master password

  •    Elm

NoKey is a distributed password manager that works without a master password. Instead, you can unlock your passwords by confirming from another device. E.g. if you need a password on your PC, you only have to confirm this on your phone. No need to remember any passwords.

Pwdhash Sharp

  •    DotNet

A variety of frontends for the PwdHash web-application. Using a domain name and "master password", PwdHash Sharp automatically create a hashed password that is strong, and cannot be used to reverse-engineer the master password.

pick - A secure and easy-to-use CLI password manager for macOS and Linux

  •    Go

A secure and easy-to-use password manager for macOS and Linux. Make your master password strong, unique, and don't forget it! You'll need your master password to access your safe. Without it your safe can not be unlocked.