pwchecker
pwchecker is a simple password checker. It provides a password policy check, for instance length of password, minimum number of digits etc. The entropy of the password can be determined and classifies the password strength from "very weak" (score: 1) to "very strong" (score 5).
Entropy
The pwchecker module exports the function password_strength which will return a
result dictionary with the following keys:
entropy: # bitsscore: [1, 2, 3, 4, 5] where 1 means "very weak" and 5 means "very strong"text: [ "very weak", "weak", "reasonable", "strong", "very strong" ] where a password is classified as "very strong" if its entropy is at least 128 bitscracktime: how long it will take to get the password via bruteforce
Usage:
import { password_strength } from "./mod.ts";
var password: string = "jelly22Fi$h";
var output = {
entropy: password_strength(password).entropy,
cracktime: password_strength(password).cracktime,
score: password_strength(password).score,
text: password_strength(password).text
};
console.table(output);
┌───────────┬───────────────────┐
│ (idx) │ Values │
├───────────┼───────────────────┤
│ entropy │ 72.10047736845401 │
│ cracktime │ "centuries" │
│ score │ 4 │
│ text │ "strong" │
└───────────┴───────────────────┘Policy Check
The module contains the class PasswordPolicy that defined some check properties.
Usage:
const pwpolicy = new PasswordPolicy();
var policyResult = pwpolicy.password_policy_compliance("123456");
The policyResult contains for example:
{
hasMinLen: false,
hasMinUppercase: false,
hasMinLowercase: false,
hasMinSpecialChars: false,
hasMinDigits: true
}The password policies in PasswordPolicy can be overwritten to fit the security requirements for a password.
The default values are:
pwpolicy.minLen = 10;
pwpolicy.minUppercase = 1;
pwpolicy.minLowercase = 1;
pwpolicy.minSpecialChars = 1;
pwpolicy.minDigits = 1;