Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket

password-benchmark

Package Overview
Dependencies
Maintainers
1
Versions
5
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

password-benchmark

A JavaScript library that uses an advanced algorithm for estimating the quality/strength of passwords.

  • 1.0.4
  • latest
  • npm
  • Socket score

Version published
Maintainers
1
Created
Source

PasswordBenchmark

A JavaScript library that uses an advanced algorithm for estimating the quality/strength of passwords.

Click here to the demo

中文文档

How to Use

For Browser

Add js script to your html file.

<script src="./PasswordBenchmark.js"></script>

<!-- [ optional ] list of about 10000 most common passwords, 86kb (gzip 32kb)  -->
<script src="./MostPopularPasswords.js"></script>

Calculate the security quality of passwords.

PasswordBenchmark('you password here');
// return the security quality of passwords.
For Node.JS, Webpack...

First download from npm.

npm install --save password-benchmark

Import and initialize the library.

import PasswordBenchmark from 'password-benchmark';

// [ optional ] list of about 10000 most common passwords, 86kb (gzip 32kb)
import MostPopularPasswords from 'password-benchmark/dist/MostPopularPasswords'

// Load the popular passwords list
PasswordBenchmark.PopularPasswords.load(MostPopularPasswords)

Calculate the security quality of passwords.

PasswordBenchmark('you password here');
// return the security quality of passwords.

Algorithm from KeePass

KeePass uses an advanced algorithm for estimating the quality/strength of passwords. It searches for patterns, like e.g. popular passwords (based on a built-in list of about 10000 most common passwords; variations by upper-/lower-case and L33t substitutions are detected), repeated sequences, numbers (consisting of multiple digits), constant difference sequences, etc. For each pattern combination covering the whole password, the cost (number of bits required to encode the data and the order of the pattern identifiers) is calculated. For encoding pattern identifiers, an optimal static entropy encoder is used. Each single password character forms a pattern of length 1 and is encoded using a character space-dependent damped static entropy encoder. The minimum pattern combination cost is used as the final quality estimation.

BitsStrength
0-64Very weak
64-80Weak
80-112Moderate
112-128Strong
≥ 128Very strong

https://keepass.info/help/kb/pw_quality_est.html

FAQs

Package last updated on 08 Jun 2019

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc