In [1]:
!pip install bcrypt nltk


Defaulting to user installation because normal site-packages is not writeable


In [3]:
import re
import bcrypt
import random
import string
from nltk.corpus import words

# Download the word list (if not already downloaded)
import nltk
nltk.download('words')

# Load English words to prevent dictionary passwords
ENGLISH_WORDS = set(words.words())

# Common weak passwords list
COMMON_PASSWORDS = ["password", "123456", "qwerty", "abc123", "password1"]


[nltk_data] Downloading package words to
[nltk_data]     C:\Users\baida\AppData\Roaming\nltk_data...
[nltk_data]   Package words is already up-to-date!


In [5]:
def check_password_strength(password):
    """Checks if a password is strong based on defined security criteria."""
    if len(password) < 12:
        return "Weak: Password should be at least 12 characters long."

    if re.search(r'(.)\1{3,}', password):  # Avoid repeated characters (aaa, 1111)
        return "Weak: Avoid repeated characters."

    if not re.search(r'[A-Z]', password):
        return "Weak: Password should contain at least one uppercase letter."

    if not re.search(r'[a-z]', password):
        return "Weak: Password should contain at least one lowercase letter."

    if not re.search(r'\d', password):
        return "Weak: Password should contain at least one number."

    if not re.search(r'[!@#$%^&*(),.?":{}|<>]', password):
        return "Weak: Password should contain at least one special character."

    if password.lower() in COMMON_PASSWORDS:
        return "Weak: This is a commonly used password, choose another one."

    if password.lower() in ENGLISH_WORDS:
        return "Weak: Avoid using dictionary words."

    return "Strong: Your password is highly secure!"


In [7]:
def hash_password(password):
    """Hashes a password using bcrypt for secure storage."""
    salt = bcrypt.gensalt()
    hashed_password = bcrypt.hashpw(password.encode(), salt)
    return hashed_password

def verify_password(stored_hash, password):
    """Verifies if the entered password matches the stored hash."""
    return bcrypt.checkpw(password.encode(), stored_hash)


In [9]:
def generate_password(length=16):
    """Generates a strong password with uppercase, lowercase, numbers, and symbols."""
    all_chars = string.ascii_letters + string.digits + string.punctuation
    return ''.join(random.choice(all_chars) for _ in range(length))

# Example usage:
print("Generated Strong Password:", generate_password(16))


Generated Strong Password: ~c?DWJ9>eZ&1_)Ee


In [11]:
password = input("Enter a password to check its strength: ")
result = check_password_strength(password)
print(result)

if "Strong" in result:
    hashed_pw = hash_password(password)
    print(f"Hashed Password (bcrypt): {hashed_pw.decode()}")  # Decoding for readability


Enter a password to check its strength:  123!Weschju6%


Strong: Your password is highly secure!
Hashed Password (bcrypt): $2b$12$DM2PBkvVdg3v.c3rih/Etu2iDOrNcF1WrWCcM6e3bXWJvsC1J9QnC
