In [1]:
#Password Strength Analyzer - Cybersecurity Project

In [3]:
#import lib

import hashlib
import requests
import re
import getpass
import sys

In [5]:
# Download the top 10,000 passwords (RockYou-subset) once
PASSWORD_LIST_URL = "https://raw.githubusercontent.com/danielmiessler/SecLists/master/Passwords/Common-Credentials/10k-most-common.txt"


In [7]:
def download_common_passwords():
    print("Downloading list of 10,000 common passwords...")
    try:
        response = requests.get(PASSWORD_LIST_URL)
        response.raise_for_status()
        passwords = response.text.splitlines()
        print(f"Downloaded {len(passwords):,} common passwords.\n")
        return passwords
    except Exception as e:
        print(f"Could not download password list: {e}")
        return []

In [9]:
def check_pwned(password):
    """Safely check Have I Been Pwned using k-anonymity"""
    sha1 = hashlib.sha1(password.encode('utf-8')).hexdigest().upper()
    prefix, suffix = sha1[:5], sha1[5:]
    try:
        url = f"https://api.pwnedpasswords.com/range/{prefix}"
        response = requests.get(url, timeout=5)
        for line in response.text.splitlines():
            hash_suffix, count = line.split(':')
            if hash_suffix == suffix:
                return int(count)
    except:
        pass
    return 0

In [None]:
def analyze_password(password):
    print(f"Analyzing password: {'*' * len(password)}\n")

    # Length
    if len(password) < 8:
        print("Too short (minimum 8 characters)")
    elif len(password) < 12:
        print("Weak length (8–11 characters)")
    else:
        print("Good length (12+ characters)")

    # Character diversity
    has_upper   = bool(re.search(r'[A-Z]', password))
    has_lower   = bool(re.search(r'[a-z]', password))
    has_digit   = bool(re.search(r'\d', password))
    has_special = bool(re.search(r'[!@#$%^&*(),.?":{}|<>]', password))

    diversity = sum([has_upper, has_lower, has_digit, has_special])
    if diversity >= 3:
        print("Good character variety")
    else:
        print("Add uppercase, lowercase, numbers, and symbols")

    # Common password
    if password in common_passwords:
        print("EXTREMELY WEAK: This is a very common password!")

    # Pwned check
    pwned_count = check_pwned(password)
    if pwned_count > 0:
        print(f"BREACHED! Found in {pwned_count:,} data breaches!")
    else:
        print("Not found in known breaches")

    # Score calculation
    score = 0
    if len(password) >= 12: score += 2
    if len(password) >= 16: score += 2
    if diversity >= 3:     score += 3
    if diversity == 4:     score += 2
    if pwned_count == 0:   score += 3
    if password not in common_passwords: score += 2

    print(f"\nPassword Strength Score: {score}/12")
    if score >= 10:
        print("Strong password!")
    elif score >= 7:
        print("Moderate – could be stronger")
    else:
        print("Weak – change it now!")

if __name__ == "__main__":
    print("Password Strength Analyzer (Cybersecurity Project)\n")
    common_passwords = download_common_passwords()

    if not common_passwords:
        print("Running in limited mode (no common-password check).")
    
    print("Tip: Press Ctrl+C to exit\n")

    while True:
        try:
            if sys.stdin.isatty():
                pwd = getpass.getpass("Enter a password(input hidden): ")
            else:
                pwd = input("Enter a password (NOT hidden in notebooks): ")
                
        except KeyboardInterrupt:
            print("\n\nGoodbye!")
            break

        if not pwd.strip():
            print("No password entered. Goodbye!")
            break

        analyze_password(pwd)
        print("-" * 60 + "\n")

Password Strength Analyzer (Cybersecurity Project)

Downloading list of 10,000 common passwords...
Downloaded 10,000 common passwords.

Tip: Press Ctrl+C to exit



Enter a password (NOT hidden in notebooks):  hello


Analyzing password: *****

Too short (minimum 8 characters)
Add uppercase, lowercase, numbers, and symbols
EXTREMELY WEAK: This is a very common password!
BREACHED! Found in 1,026,468 data breaches!

Password Strength Score: 0/12
Weak – change it now!
------------------------------------------------------------



Enter a password (NOT hidden in notebooks):  hello123


Analyzing password: ********

Weak length (8–11 characters)
Add uppercase, lowercase, numbers, and symbols
EXTREMELY WEAK: This is a very common password!
BREACHED! Found in 1,220,473 data breaches!

Password Strength Score: 0/12
Weak – change it now!
------------------------------------------------------------

