Initial commit

Danamir · Danamir · commit a94d9209913b · 2019-03-13T10:51:58.000+01:00
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,30 @@
+._*
+.~lock.*
+.buildpath
+.DS_Store
+.idea
+.project
+.settings
+.env
+__pycache__
+*.egg-info
+dist
+build
+*.pyc
+*.org
+*.old
+*.bak
+*.kdev4
+*~
+*.local
+.eggs
+.tox
+nosetests.xml
+.coverage
+coverage.xml
+cover
+config.ini
+.csync_*
+.owncloud*
+*.iml
+.vscode
diff --git a/README.md b/README.md
@@ -1,2 +1,38 @@
 # haveibeenpwned-query
-Simple query to Have I been Pwned API
+Simple query to Have I been Pwned API.
+
+#### Installation
+
+##### Installation from release :
+ - Download and extract the latest [release](https://github.com/Danamir/haveibeenpwned-query/releases). 
+ - Open a terminal to the extracted directory.
+
+##### Installation from sources :
+```shell
+$ curl --location https://github.com/Danamir/haveibeenpwned-query/archive/master.zip --output haveibeenpwned-query-master.zip
+$ unzip haveibeenpwned-query-master.zip
+$ mv haveibeenpwned-query-master/ haveibeenpwned-query
+$ cd haveibeenpwned-query
+```
+
+##### Setup :
+_(Optional)_ Configure Python virtual environment :
+```shell
+$ python -m venv .env
+$ . .env/bin/activate (Linux) 
+-or-
+$ .env/Script/activate.bat (Windows)
+```
+
+Install :
+```shell
+$ pip install -r requirements.txt
+```
+
+#### Running
+
+Display help :
+```shell
+$ python pwned-account.py --help
+$ python pwned-password.py --help
+```
diff --git a/pwned-account.py b/pwned-account.py
@@ -0,0 +1,112 @@
+#!python
+"""Have I been Pwned account database check.
+
+Usage: pwned-account [--help] [options] [ACCOUNT]
+
+Arguments:
+  ACCOUNT               The account to check, if empty prompt for account.
+
+Options:
+  -d --debug            Debug only (displays informations and quits).
+  -h --help             Displays the help.
+  -v --verbose          Displays more informations.
+"""
+
+import sys
+import hashlib
+import json
+import re
+
+import requests
+import docopt as docpt
+
+from docopt import docopt
+
+# options
+options = None  # type: dict
+debug = False  # type: bool
+verbose = False  # type: bool
+
+# arguments
+account = ""  # type: str
+
+
+def main():
+    """Main method."""
+
+    # options
+    global debug, verbose
+    debug, verbose = options['--debug'], options['--verbose']  # type: bool, bool
+
+    if debug:
+        verbose = True
+
+    # arguments
+    global account
+    account = options['ACCOUNT']  # type: str
+
+    if not account:
+        account = input('Account: ')
+        print()
+
+    if not account:
+        raise RuntimeWarning('Empty account.')
+
+    # API URL
+    url = 'https://haveibeenpwned.com/api/v2/breachedaccount/%s' % account
+
+    # verbose
+    if verbose:
+        print('API URL %s' % url)
+        print()
+
+    # fetch matching hashes
+    r = requests.get(url)
+
+    pwns = json.loads(r.content)
+
+    if debug:
+        print(json.dumps(pwns, indent=4))
+
+    # output
+    if not pwns:
+        print('Account not pwned.')
+    else:
+        print('Pwned in %d breach%s:' % (len(pwns), 'es' if len(pwns) > 1 else ''))
+        idx = 0
+        for pwned in pwns:  # type: dict
+            idx = idx + 1
+            label = pwned.get('Title', None)
+
+            if verbose:
+                desc = pwned.get('Description', '')
+                desc = re.sub(r'<a.*>(.*)</a>', r'\g<1>', desc)
+                
+                label = '%s: %s' % (label, desc)
+                label = '%s\n       [%s]' % (label, ', '.join(pwned.get('DataClasses', [])))
+
+            print('%5d. %s' % (idx, label))
+
+            if verbose:
+                print()
+    print()
+
+
+def cli():
+    """Command-line interface"""
+    global options
+    options = docopt(__doc__)
+    try:
+        main()
+    except RuntimeWarning as w:
+        print("  Warning: %s" % w, file=sys.stderr)
+        sys.exit(1)
+    except RuntimeError as w:
+        print("%s" % w, file=sys.stderr)
+        print(docpt.printable_usage(__doc__))
+        sys.exit(1)
+
+
+# main entry point
+if __name__ == '__main__':
+    cli()
diff --git a/pwned-password.py b/pwned-password.py
@@ -0,0 +1,109 @@
+#!python
+"""Have I been Pwned password database check.
+
+Usage: pwned-password [--help] [options] [PASSWORD]
+
+Arguments:
+  PASSWORD              The password to check, if empty prompt for password.
+
+Options:
+  -d --debug            Debug only (displays informations and quits).
+  -h --help             Displays the help.
+  -v --verbose          Displays more informations.
+"""
+
+import sys
+import hashlib
+from getpass import getpass
+
+import requests
+import docopt as docpt
+
+from docopt import docopt
+
+# options
+options = None  # type: dict
+debug = False  # type: bool
+verbose = False  # type: bool
+
+# arguments
+password = ""  # type: str
+
+
+def main():
+    """Main method."""
+
+    # options
+    global debug, verbose
+    debug, verbose = options['--debug'], options['--verbose']  # type: bool, bool
+
+    if debug:
+        verbose = True
+
+    # arguments
+    global password
+    password = options['PASSWORD']  # type: str
+
+    if not password:
+        password = getpass('Password: ')
+        print()
+
+    if not password:
+        raise RuntimeWarning('Empty password.')
+
+    # SHA-1 hash password
+    password_hash = hashlib.sha1(password.encode()).hexdigest().upper()
+    password = ''
+
+    password_hash_prefix = password_hash[:5]
+    password_hash_suffix = password_hash[5:]
+
+    # API URL
+    url = 'https://api.pwnedpasswords.com/range/%s' % password_hash_prefix
+
+    # verbose
+    if verbose:
+        print('Password hash split: %s %s' % (password_hash_prefix, password_hash_suffix))
+        print('API URL %s' % url)
+        print()
+
+    # fetch matching hashes
+    r = requests.get(url)
+
+    pwned_hashes = {}
+    for pwned_hash in r.content.decode().split('\r\n'):
+        if debug:
+            print(pwned_hash)
+
+        h, n = pwned_hash.split(':')
+        pwned_hashes[h] = n
+
+    # look for hash suffix
+    pwned = pwned_hashes.get(password_hash_suffix, None)
+
+    # output
+    if pwned is None:
+        print('Password not pwned.')
+    else:
+        print('Password pwned, %s occurences.' % pwned)
+    print()
+
+
+def cli():
+    """Command-line interface"""
+    global options
+    options = docopt(__doc__)
+    try:
+        main()
+    except RuntimeWarning as w:
+        print("  Warning: %s" % w, file=sys.stderr)
+        sys.exit(1)
+    except RuntimeError as w:
+        print("%s" % w, file=sys.stderr)
+        print(docpt.printable_usage(__doc__))
+        sys.exit(1)
+
+
+# main entry point
+if __name__ == '__main__':
+    cli()
diff --git a/requirements.txt b/requirements.txt
@@ -0,0 +1,2 @@
+requests
+docopt
