mirror of
https://github.com/wneessen/go-hibp.git
synced 2024-11-22 12:50:50 +01:00
No description
Winni Neessen
179cd36d7f
This PR implements support for NTLM hashes as announced by Troy Hunt: https://s.pebcak.de/@troyhunt@infosec.exchange/109833758367903768 For this we needed to be able to calculate MD4 hashes, as NTLM basically is calculated like this: `MD4(UTF-16LE(pw))`. For this we ported the official golang.org/x/crypto/md4 package, so we can still claim that "only depends on Go stdlib" A new Client option has been introduced: `WithPwnedNTLMHash`. If the client is initalized with this option, all generic methods (`ListHashesPassword` and `CheckPassword`) will operate on NTLM hashes. Additionally, there are now equivalent methods for checking passwords and listing hashes for NTLM: `CheckNTLM` and `ListHashesNTLM` |
||
|---|---|---|
| .github | ||
| .idea | ||
| md4 | ||
| .cirrus.yml | ||
| .gitignore | ||
| .golangci.toml | ||
| breach.go | ||
| breach_test.go | ||
| codecov.yml | ||
| go.mod | ||
| hibp.go | ||
| hibp_test.go | ||
| LICENSE | ||
| password.go | ||
| password_test.go | ||
| paste.go | ||
| paste_test.go | ||
| README.md | ||
| sonar-project.properties | ||
go-hibp - Simple Go binding to the "Have I Been Pwned" API
This Go library provides simple bindings to the excellent "Have I Been Pwned" (HIBP) API by Troy Hunt. It implements all 3 APIs that are provided by HIBP (Breaches, Pastes, Passwords). API key support for the private API endpoints are supported as well. go-hibp follows idiomatic Go style and best practice. It's only dependency is the Go Standard Library.
Usage
The library is fully documented using the execellent GoDoc functionality. Check out the GoDocs Reference for details on how to implement access to any of the 3 APIs with this package. You will also find GoDoc code examples there for each of those APIs.