@bitbar/owasp-unsafe-passwords

OWASP Unsafe Passwords

Usage no npm install needed!

<script type="module">
  import bitbarOwaspUnsafePasswords from 'https://cdn.skypack.dev/@bitbar/owasp-unsafe-passwords';
</script>

README

OWASP Unsafe Passwords

This repo contains JSON dictionaries with top unsafe passwords. Passwords has been taken from dictionaries found at https://weakpass.com/. Those files can be used e.g. if you are implementing OWASP Application Security Verification Standard 4.0.

All passwords:

  • are at least 12 characters in length (OWASP ASVS 4.0 - 2.1.1)
  • are in lower case (you need to transform password to lower case before check)

License

This project is licensed under the ISC License - see the LICENSE file for details.