Thanks to awesome Troy hunt, this is based on APIV2 of Have I been passwords k-anonymity check.
https://haveibeenpwned.com/API/v2#PwnedPasswords
Steps:
1. Enter your password.
2. Before hitting submit, click on the link Check password(Source ...)
3. It hashes at sends (5 character) to the backend, and then compares locally the hash.
4. If it is found alerts saying password found in dump, else not found.
Caution: It's alpha version, need to polish it.
谷歌浏览器、其他Chromium内核的浏览器
为打击盗链困扰,本站已启用人机验证
微信扫码关注左侧公众号,发送“插件”二字获得验证码,验证码5分钟全站有效