How secret is your password? beta
Use this tool to verify the uniqueness of your password - or in other words - check to see if anyone else has used that same password before.
This is useful to know, because a typical strategy for hackers using brute force attacks is to first check your hashed password against the list of previously hacked passwords to find a match, before moving on to a pure brute-force attack which simply tries every imaginable letter/number combination which could be trillions and trillions in size even for the most basic 8 letter passwords thus taking much longer time to crack.
⚠️ We do not collect or store your passwords..
Only the first three characters of your password are sent to our servers - the rest of the search is done on your end by your own web-browser. Check the developers console to verify this for yourself.
This application is for entertainment and educational purposes only. If you see your password on the list, you should change it right away, and never use it again.
Where is the data coming from?
All the data is sourced from "Breached Compilation List" - which is a giant dataset containing over 1.4 billion credentials combined from various data hacks that was leaked back in December of 2017. It contains over 400,000 unique passwords that is used when checking for exact/partial matches against your password, because most certainly hackers do the same, given how relatively quickly such list can be searched even with limited resources.
✔️ To-do list
Incorporate data from more recent data leaks such as Combination of Many Breaches (COMB) - which includes more than 3.2 billion records compared to just 1.4 billion used by this tool at the moment. The "COMB" dataset is also more recent - it was leaked to public on February of 2021 versus December 2017 for this older "Breach Compilation List" dataset.