Launches
Coming soon
Upcoming launches to watch
Launch archive
Most-loved launches by the community
Launch Guide
Checklists and pro tips for launching
Products
News
Newsletter
The best of Product Hunt, every day
Stories
Tech news, interviews, and tips from makers
Changelog
New Product Hunt features and releases
Community
Discussions
Ask questions, find support, and connect
Streaks
The most active community members
Events
Meet others online and in-person
Advertise
How to post?
  1. Discussions
  2.  → How do you prevent exposed or breached passwords from...

How do you prevent exposed or breached passwords from being used in your application?

Devanand Premkumar
5 replies
As per the NIST800-63 special publication, we are expected to prevent exposed passwords or breached passwords from being used in our applications. Wonder if any one of us is making use of this and if yes, how?

Replies

Jan Mazurek
I shall upvote to follow the subject
Share
Vinh
You can make use of Haveibeenpawn database/api? https://haveibeenpwned.com/API/v...
Share
Devanand Premkumar
@kureikain That looks good for sure. Are you aware of any others offering such services?
Share
Jim Zhou
A bit tedious for sure now that hashes.org is down, most of their solved passwords are available, according to their discord, at https://hash.lol which is really just a publicly available ipfs gateway to the files.
Share
Devanand Premkumar
Yes, looks like they are down for a couple of days in a row. Not sure what happened to that useful site of theirs. If given a choice, would you look out for other such services?
Share