kdbxpasswordpwned

Check KeePass passwords against https://haveibeenpwned.com/Passwords

These details have not been verified by PyPI

Project links

Homepage

Project description

# kdbxpasswordpwned
Check keepass passwords against https://haveibeenpwned.com/Passwords

[![Build Status](https://travis-ci.org/fopina/kdbxpasswordpwned.svg?branch=master)](https://travis-ci.org/fopina/kdbxpasswordpwned)
[![Coverage Status](https://coveralls.io/repos/github/fopina/kdbxpasswordpwned/badge.svg?branch=master)](https://coveralls.io/github/fopina/kdbxpasswordpwned?branch=master)
[![Docker Version](https://images.microbadger.com/badges/version/fopina/kdbxpasswordpwned.svg)](https://microbadger.com/images/fopina/kdbxpasswordpwned)
[![Docker Image](https://images.microbadger.com/badges/image/fopina/kdbxpasswordpwned.svg)](https://microbadger.com/images/fopina/kdbxpasswordpwned)
[![PyPI Version](https://img.shields.io/pypi/v/kdbxpasswordpwned.svg)](https://pypi.python.org/pypi/kdbxpasswordpwned)
[![PyPI Python Versions](https://img.shields.io/pypi/pyversions/kdbxpasswordpwned.svg)](https://pypi.python.org/pypi/kdbxpasswordpwned)

### Disclosure

Even if Troy Hunt's API does provide some sense of privacy (as we don't share the password nor even the full SHA1), always review the tools you use with your KeePass files (such as this script which is small and you can easily see the password is not sent anywhere except HIBP API). I have reviewed libkeepass code (0.3.0, pinned in requirements) which is also small, and, as PyPI does not allow replacing existing versions, it is safe.

Also be sure to install tools you trust from places you trust or you might end up installing some shady version such as [this fork](https://github.com/fopina/kdbxpasswordpwned/compare/master...SlivTaMere:bea0f5c) which sends the full password (not the hash) to a different endpoint.

### Usage

Install using `pip`

```bash

p i p i n s t a l l k d b x p a s s w o r d p w n e d C o l l e c t i n g k d b x p a s s w o r d p w n e d S u c c e s s f u l l y i n s t a l l e d k d b x p a s s w o r d p w n e d - 0.3 ‘ ‘ ‘ A n d u s e t h e C L I ‘ ‘ ‘ b a s h

kdbxpasswordpwned -h
usage: kdbxpasswordpwned [-h] [-k KEYFILE] [-u] [-p] kdbx

positional arguments:
kdbx keepass file

optional arguments:
-h, --help show this help message and exit
-k KEYFILE, --keyfile KEYFILE
Keyfile if needed
-u, --show-user show username for found entries
-p, --show-password show password for found entries (high shoulders?)
```

```bash

k d b x p a s s w o r d p w n e d / p a t h / t o / t e s t_{a} s s e t s / s a m p l e . k d b x P a s s w o r d : P a s s w o r d f o r t i t l e 1 s e e n 1151 t i m e s b e f o r e P a s s w o r d f o r t i t l e 2 s e e n 61164 t i m e s b e f o r e ‘ ‘ ‘ O r s i m p l y u s e t h e d o c k e r i m a g e ‘ ‘ ‘ b a s h

docker run --rm -ti \
-v /path/to/test_assets/sample_with_key.kdbx:/tmp.kdbx:ro \
-v /path/to/test_assets/sample.key:/tmp.key:ro \
fopina/kdbxpasswordpwned -upk /tmp.key /tmp.kdbx
Password for title1 seen 1151 times before - testuser - testit
Password for title2 seen 61164 times before - None - blabla
```

Algorithm	Hash digest
SHA256	`42535e7d4db9582db80ee89916dfb5082127bc129e16e02d6bcc767ed24e9697`
MD5	`af7db0c10a50515fbd544ba542126a25`
BLAKE2b-256	`6875307ee3dc2da8cfe13130a7983a79b43ed4de9ee5a52eae21d4da842d7883`

kdbxpasswordpwned 0.5

Navigation

Verified details

Maintainers

Unverified details

Project links

Meta

Classifiers

Project description

Project details

Verified details

Maintainers

Unverified details

Project links

Meta

Classifiers

Release history Release notifications | RSS feed

Download files

Source Distribution

File details

File metadata

File hashes