Hypothesis

14 Matching Annotations

Apr 2020
github.com github.com

philnash/pwned

3
1. TylerRick 24 Apr 2020
  
  in Public
  
  example of using this gem to show how many times the digits of Pi have been used as passwords and leaked.
  
  humor haveibeenpwned.com fun passwords: compromised passwords
2. TylerRick 20 Apr 2020
  
  in Public
  
  haveibeenpwned.com uses: data from online API network-accessible API
3. TylerRick 20 Apr 2020
  
  in Public
  
  haveibeenpwned.com ruby library
Visit annotations in context

Tags

ruby library

humor

haveibeenpwned.com

fun

network-accessible API

uses: data from online API

passwords: compromised passwords

Annotators

TylerRick

URL

github.com/philnash/pwned
github.com github.com

indirect/unpwn

1
1. TylerRick 22 Apr 2020
  
  in Public
  
  haveibeenpwned.com ruby library password validation/policy uses: offline dataset
Visit annotations in context

Tags

uses: offline dataset

haveibeenpwned.com

ruby library

password validation/policy

Annotators

TylerRick

URL

github.com/indirect/unpwn
github.com github.com

michaelbanfield/devise-pwned_password

1
1. TylerRick 21 Apr 2020
  
  in Public
  
  integration gem: devise haveibeenpwned.com passwords: automatically checking against list of compromised passwords password validation/policy
Visit annotations in context

Tags

password validation/policy

integration

gem: devise

haveibeenpwned.com

passwords: automatically checking against list of compromised passwords

Annotators

TylerRick

URL

github.com/michaelbanfield/devise-pwned_password
haveibeenpwned.com haveibeenpwned.com

Have I Been Pwned: API v3

1
1. TylerRick 21 Apr 2020
  
  in Public
  
  haveibeenpwned.com network-accessible API HTTP API uses: data from online API
Visit annotations in context

Tags

haveibeenpwned.com

network-accessible API

uses: data from online API

HTTP API

Annotators

TylerRick

URL

haveibeenpwned.com/API/v3
www.troyhunt.com www.troyhunt.com

Introducing 306 Million Freely Downloadable Pwned Passwords

1
1. TylerRick 21 Apr 2020
  
  in Public
  
  Perhaps, for example, a Pwned Password is only allowed if multi-step verification is enabled. Maybe there are certain features of the service that are not available if the password has a hit on the pwned list.
  
  limits/caps security haveibeenpwned.com
Visit annotations in context

Tags

haveibeenpwned.com

limits/caps

security

Annotators

TylerRick

URL

troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/
github.com github.com

mikasjp/HasMyPasswordLeaked

1
1. TylerRick 21 Apr 2020
  
  in Public
  
  haveibeenpwned.com command-line tools
Visit annotations in context

Tags

haveibeenpwned.com

command-line tools

Annotators

TylerRick

URL

github.com/mikasjp/HasMyPasswordLeaked
github.com github.com

k3integrations/hibp_check

1
1. TylerRick 21 Apr 2020
  
  in Public
  
  haveibeenpwned.com ruby library
Visit annotations in context

Tags

haveibeenpwned.com

ruby library

Annotators

TylerRick

URL

github.com/k3integrations/hibp_check
github.com github.com

Warshavski/hibp-client

1
1. TylerRick 21 Apr 2020
  
  in Public
  
  network-accessible API uses: data from online API HTTP client haveibeenpwned.com ruby library
Visit annotations in context

Tags

haveibeenpwned.com

HTTP client

ruby library

network-accessible API

uses: data from online API

Annotators

TylerRick

URL

github.com/Warshavski/hibp-client
github.com github.com

DanielHeath/has_unpublished_password

1
1. TylerRick 20 Apr 2020
  
  in Public
  
  uses: offline dataset haveibeenpwned.com
Visit annotations in context

Tags

uses: offline dataset

haveibeenpwned.com

Annotators

TylerRick

URL

github.com/DanielHeath/has_unpublished_password
github.com github.com

HTTP Error 403 · Issue #3 · michenriksen/hibp

1
1. TylerRick 20 Apr 2020
  
  in Public
  
  haveibeenpwned.com built in/on/with: Ruby unmaintained
Visit annotations in context

Tags

haveibeenpwned.com

built in/on/with:

unmaintained

Ruby

Annotators

TylerRick

URL

github.com/michenriksen/hibp
www.troyhunt.com www.troyhunt.com

I've Just Launched "Pwned Passwords" V2 With Half a Billion Passwords for Download

2
1. TylerRick 20 Apr 2020
  
  in Public
  
  This list is not perfect - it's not meant to be perfect - and there will be some junk due to input data quality and some missing passwords because they weren't in the source data sets. It's simply meant to be a list of strings that pose an elevated risk if used for passwords and for that purpose, it's enormously effective.
  
  haveibeenpwned.com doesn't need to be perfect
2. TylerRick 20 Apr 2020
  
  in Public
  
  When processing requests to establish and change memorized secrets, verifiers SHALL compare the prospective secrets against a list that contains values known to be commonly-used, expected, or compromised.
  
  best practices haveibeenpwned.com security
Visit annotations in context

Tags

best practices

doesn't need to be perfect

haveibeenpwned.com

security

Annotators

TylerRick

URL

troyhunt.com/ive-just-launched-pwned-passwords-version-2/