Skip to content

Provides a simple interface (netstandard1.3 and .net461) to the I Have Been Pwned V2 breached password endpoint using the enhanced anonymity provided by the k-Anonymity method (/range endpoint). See Troy Hunt's blog for more details (https://www.troyhunt.com/ive-just-launched-pwned-passwords-version-2/)

License

Notifications You must be signed in to change notification settings

Philo/IsItPwned

Repository files navigation

IsItPwned

Provides a simple interface to the I Have Been Pwned V2 breached password endpoint using the enhanced anonymity provided by the k-Anonymity method (/range endpoint).

Clearly all the credit should goto Troy Hunt, I would encourage you to read his blog on regarding the release of the V2 API.

I've Just Launched "Pwned Passwords" V2 With Half a Billion Passwords for Download

The exact documentation for the API is also available on the Have I Been Pwned website.

Build Status

Build status

Install via NuGet

NuGet

Install-Package IsItPwned

Usage

Take a look at the unit tests for examples of the usage, there really isnt anything to it!

    // Create a client, optionally you can pass in your own HttpClient
    var client = new PwnedPasswordClient();

    var countOfPasswordInBreaches = await client.IsPwnedAsync(password);

    Assert.True(countOfPasswordInBreaches == 0, "Hooray, this password does not exist in half a billion breaches passwords");
    Assert.True(countOfPasswordInBreaches > 0, "Oh no, this password exists in at least one data breach");
    Assert.True(countOfPasswordInBreaches > 1000, "Oh dear, this really is a popular password!!");

As you can see, the .IsPwnedAsync() call simply returns the number of breaches found, you can then determine whether you would be accept or deny the use of the password based on your requirements.

Credit

Troy Hunt Website | Twitter

About

Provides a simple interface (netstandard1.3 and .net461) to the I Have Been Pwned V2 breached password endpoint using the enhanced anonymity provided by the k-Anonymity method (/range endpoint). See Troy Hunt's blog for more details (https://www.troyhunt.com/ive-just-launched-pwned-passwords-version-2/)

Topics

Resources

License

Stars

Watchers

Forks

Packages

No packages published