pwned-search/pwned.py

54 lines
1.6 KiB
Python
Raw Normal View History

import hashlib
2019-03-12 22:41:07 +01:00
import sys
try:
import requests
except ModuleNotFoundError:
print("### pip install requests ###")
raise
2019-03-12 22:41:07 +01:00
def lookup_pwned_api(pwd):
"""Returns hash and number of times password was seen in pwned database.
Args:
pwd: password to check
Returns:
A (sha1, count) tuple where sha1 is SHA1 hash of pwd and count is number
of times the password was seen in the pwned database. count equal zero
indicates that password has not been found.
2019-03-12 22:41:07 +01:00
Raises:
RuntimeError: if there was an error trying to fetch data from pwned
database.
"""
sha1pwd = hashlib.sha1(pwd.encode('utf-8')).hexdigest().upper()
head, tail = sha1pwd[:5], sha1pwd[5:]
2019-03-13 02:23:20 +01:00
url = 'https://api.pwnedpasswords.com/range/' + head
res = requests.get(url)
if res.status_code != 200:
raise RuntimeError('Error fetching "{}": {}'.format(
url, res.status_code))
hashes = (line.split(':') for line in res.text.splitlines())
count = next((int(count) for t, count in hashes if t == tail), 0)
return sha1pwd, count
2019-03-12 22:41:07 +01:00
def main(args):
ec = 0
for pwd in args or sys.stdin:
pwd = pwd.strip()
sha1pwd, count = lookup_pwned_api(pwd)
if count:
print("{} was found".format(pwd))
print("Hash {0}, {1} occurrences".format(sha1pwd, count))
ec = 1
else:
print("{} was not found".format(pwd))
return ec
if __name__ == '__main__':
sys.exit(main(sys.argv[1:]))