Identify Pwned accounts and passwords via the "Have I Been Pwned?" (https://haveibeenpwned.com/) API.
Use of some of these functions requires an API key. This module does not come with an API key.
An API key can be obtained from https://haveibeenpwned.com/API/Key
Minimum PowerShell version
(c) 2022 Mark Ukotic. All rights reserved.
This module has no dependencies.
Added additional response fields when using CSV in Get-PwnedAccount
Get-PwnedAccount now using PSCustomObject
Implemented Add-Padding header to Get-PwnedPassword with default true
Minor update to CSV rate-limiting (thanks to @JordanJenkinson)
Updated to use the HIBP v3 API which now requires authorisation
Parameter additions for better usability
Rewrite of catch handling to work with both Windows PowerShell and PowerShell Core
Added CSV import ability into Get-PwnedAccount
Switched to MailAddress Class for email address validation in Get-PwnedAccount
Added UserAgent string in Get-PwnedAccount to work with Have I Been Pwned v2 API
Fixed Get-PwnedPassword to work with PowerShell Core
Update Get-PwnedPassword to use K-anonymity only (contribution by @plaintextcity)
'Email address not found.' now returned as an object rather than a string